Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254111	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品におけるクロスサイトスクリプティングに対する保護メカニズムを回避される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2768	2011-05-17 09:00	2010-09-7	Show	GitHub Exploit DB Packet Storm

254112	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品におけるイントラネット上の Web サーバの存在を発見される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2764	2011-05-17 08:59	2010-09-7	Show	GitHub Exploit DB Packet Storm

254113	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla 製品の SafeJSObjectWrapper 実装におけるクローム特権で任意の JavaScript コードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2762	2011-05-17 08:56	2010-09-7	Show	GitHub Exploit DB Packet Storm

254114	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3169	2011-05-17 08:55	2010-09-7	Show	GitHub Exploit DB Packet Storm

254115	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3168	2011-05-17 08:53	2010-09-7	Show	GitHub Exploit DB Packet Storm

254116	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品の nsTreeContentView 関数における任意のコードを実行される脆弱性	CWE-119 CWE-399	CVE-2010-3167	2011-05-17 08:52	2010-09-7	Show	GitHub Exploit DB Packet Storm

254117	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品の nsTextFrameUtils::TransformText 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3166	2011-05-17 08:50	2010-09-7	Show	GitHub Exploit DB Packet Storm

254118	4	警告	オラクル	-	OpenSSO Enterprise および Sun Java System Access Manager における脆弱性	CWE-noinfo 情報不足	CVE-2011-0847	2011-05-16 11:38	2011-04-19	Show	GitHub Exploit DB Packet Storm

254119	5	警告	オラクル	-	Oracle Sun Java System Access Manager Policy Agent における脆弱性	CWE-noinfo 情報不足	CVE-2011-0846	2011-05-16 11:37	2011-04-19	Show	GitHub Exploit DB Packet Storm

254120	4.3	警告	オラクル	-	OpenSSO Enterprise および Sun Java System Access Manager における脆弱性	CWE-noinfo 情報不足	CVE-2011-0844	2011-05-16 11:36	2011-04-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220181	9.8	CRITICAL Network	ibm	financial_transaction_manager	IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the at…	CWE-89 SQL Injection	CVE-2019-4032	2024-11-21 13:43	2019-03-6	Show	GitHub Exploit DB Packet Storm

220182	5.4	MEDIUM Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended …	CWE-79 Cross-site Scripting	CVE-2019-4029	2024-11-21 13:43	2019-03-6	Show	GitHub Exploit DB Packet Storm

220183	5.4	MEDIUM Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended …	CWE-79 Cross-site Scripting	CVE-2019-4028	2024-11-21 13:43	2019-03-6	Show	GitHub Exploit DB Packet Storm

220184	5.4	MEDIUM Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended …	CWE-79 Cross-site Scripting	CVE-2019-4027	2024-11-21 13:43	2019-03-6	Show	GitHub Exploit DB Packet Storm

220185	5.3	MEDIUM Network	ibm	bigfix_platform	IBM BigFix Platform 9.2 and 9.5 could allow an attacker to query the relay remotely and gather information about the updates and fixlets deployed to the associated sites due to not enabling authentic…	CWE-200 Information Exposure	CVE-2019-4061	2024-11-21 13:43	2019-02-28	Show	GitHub Exploit DB Packet Storm

220186	9.8	CRITICAL Network	ibm	rational_clearcase	IBM Rational ClearCase 1.0.0.0 GIT connector does not sufficiently protect the document database password. An attacker could obtain the password and gain unauthorized access to the document database.…	CWE-522 Insufficiently Protected Credentials	CVE-2019-4059	2024-11-21 13:43	2019-02-16	Show	GitHub Exploit DB Packet Storm

220187	9.8	CRITICAL Network	ibm	api_connect	API Connect V2018.1 through 2018.4.1.1 is impacted by access token leak. Authorization tokens in some URLs can result in the tokens being written to log files. IBM X-Force ID: 155626.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2019-4008	2024-11-21 13:43	2019-02-8	Show	GitHub Exploit DB Packet Storm

220188	6.2	MEDIUM Physics	ibm	security_identity_manager	IBM Security Identity Manager 6.0 and 7.0 could allow an attacker to create unexpected control flow paths through the application, potentially bypassing security checks. Exploitation of this weakness…	CWE-94 Code Injection	CVE-2019-4038	2024-11-21 13:43	2019-02-5	Show	GitHub Exploit DB Packet Storm

220189	6.1	MEDIUM Network	ibm	i	IBM I 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading …	CWE-79 Cross-site Scripting	CVE-2019-4040	2024-11-21 13:43	2019-02-1	Show	GitHub Exploit DB Packet Storm

220190	8.1	HIGH Network	facebook	hhvm	HHVM supports the use of an "admin" server which accepts administrative requests over HTTP. One of those request handlers, dump-pcre-cache, can be used to output cached regular expressions from the c…	CWE-22 Path Traversal	CVE-2019-3556	2024-11-21 13:42	2021-10-27	Show	GitHub Exploit DB Packet Storm