Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249241 3.6 注意 オラクル - Oracle FLEXCUBE Universal Banking における Core の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0545 2012-05-9 16:02 2012-04-17 Show GitHub Exploit DB Packet Storm
249242 4 警告 オラクル - Oracle FLEXCUBE Universal Banking における Core の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0571 2012-05-9 15:59 2012-04-17 Show GitHub Exploit DB Packet Storm
249243 4 警告 オラクル - Oracle FLEXCUBE Direct Banking における Core-Help の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0576 2012-05-9 15:57 2012-04-17 Show GitHub Exploit DB Packet Storm
249244 4 警告 オラクル - Oracle FLEXCUBE Direct Banking における Core-Base の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1707 2012-05-9 15:53 2012-04-17 Show GitHub Exploit DB Packet Storm
249245 4.7 警告 オラクル - Oracle FLEXCUBE Direct Banking におけるロギングの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1706 2012-05-9 15:43 2012-04-17 Show GitHub Exploit DB Packet Storm
249246 4.9 警告 オラクル - Oracle FLEXCUBE Universal Banking における Core の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0573 2012-05-9 15:34 2012-04-17 Show GitHub Exploit DB Packet Storm
249247 5.5 警告 オラクル - Oracle FLEXCUBE Universal Banking における Core の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0567 2012-05-9 15:28 2012-04-17 Show GitHub Exploit DB Packet Storm
249248 6.8 警告 オラクル - Oracle FLEXCUBE Universal Banking における Core の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0575 2012-05-9 15:23 2012-04-17 Show GitHub Exploit DB Packet Storm
249249 4.3 警告 オラクル - Oracle Supply Chain Products Suite の Oracle Agile PLM for Process における Supplier Portal の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0566 2012-05-9 15:09 2012-04-17 Show GitHub Exploit DB Packet Storm
249250 4.3 警告 オラクル - Oracle Supply Chain Products Suite の Oracle Agile PLM for Process における SCRM - Company プロファイルの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0581 2012-05-9 15:08 2012-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200441 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via an uploaded document, when the attacker has write access to a project. CWE-79
Cross-site Scripting 		CVE-2020-8778 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
200442 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via a user profile photo, as demonstrated by a SCRIPT element in an SVG document. CWE-79
Cross-site Scripting 		CVE-2020-8777 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
200443 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via the URL property of a file. CWE-79
Cross-site Scripting 		CVE-2020-8776 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
200444 6.1 MEDIUM
Network 		fiserv accurate_reconciliation Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows XSS via the logout.jsp timeOut parameter. CWE-79
Cross-site Scripting 		CVE-2020-8952 2024-11-21 14:39 2020-02-27 Show GitHub Exploit DB Packet Storm
200445 5.4 MEDIUM
Network 		fiserv accurate_reconciliation Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows XSS via the Source or Destination field of the Configuration Manager (Configuration Parameter Translation) page. CWE-79
Cross-site Scripting 		CVE-2020-8951 2024-11-21 14:39 2020-02-27 Show GitHub Exploit DB Packet Storm
200446 8.1 HIGH
Network 		gurux device_language_message_specification_director An issue was discovered in Gurux GXDLMS Director through 8.5.1905.1301. When downloading OBIS codes, it does not verify that the downloaded files are actual OBIS codes and doesn't check for path trav… CWE-22
Path Traversal 		CVE-2020-8810 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
200447 8.1 HIGH
Network 		gurux device_language_message_specification_director Gurux GXDLMS Director prior to 8.5.1905.1301 downloads updates to add-ins and OBIS code over an unencrypted HTTP connection. A man-in-the-middle attacker can prompt the user to download updates by mo… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-8809 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
200448 6.1 MEDIUM
Network 		wpjobboard wpjobboard The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via the Add Job form, as demonstrated by title and Description. CWE-79
Cross-site Scripting 		CVE-2020-9019 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
200449 5.3 MEDIUM
Network 		litecart litecart LiteCart through 2.2.1 allows admin/?app=users&doc=edit_user CSRF to add a user. CWE-352
 Origin Validation Error 		CVE-2020-9018 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
200450 5.4 MEDIUM
Network 		blackboard blackboard_learn Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows users to inject arbitrary web script via the Tile widget in the People Tool profile editor. CWE-79
Cross-site Scripting 		CVE-2020-9008 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm