Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254321	7.5	危険	DeltaScripts	-	PHP Classifieds の tools/phpmailer/class.phpmailer.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4914	2012-02-28 10:43	2011-10-8	Show	GitHub Exploit DB Packet Storm

254322	4.3	警告	ColdGen	-	ColdGen ColdUserGroup の search 機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4913	2012-02-28 10:41	2011-10-8	Show	GitHub Exploit DB Packet Storm

254323	7.5	危険	Discuz	-	UCenter Home の shop.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4912	2012-02-28 10:40	2011-10-8	Show	GitHub Exploit DB Packet Storm

254324	7.5	危険	Sell@Site	-	PHP Classifieds Ads の classi/detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4911	2012-02-28 10:39	2011-10-8	Show	GitHub Exploit DB Packet Storm

254325	7.5	危険	ColdGen	-	ColdGen ColdCalendar の index.cfm におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4910	2012-02-28 10:37	2011-10-8	Show	GitHub Exploit DB Packet Storm

254326	4.3	警告	Mechbunny	-	PaysiteReviewCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4909	2012-02-28 10:36	2011-10-8	Show	GitHub Exploit DB Packet Storm

254327	7.5	危険	Virtue Netz	-	Virtue Shopping Mall の detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4908	2012-02-28 10:35	2011-10-8	Show	GitHub Exploit DB Packet Storm

254328	4.3	警告	Powie	-	Powie pFile の pfile/kommentar.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1211	2012-02-27 17:12	2012-02-24	Show	GitHub Exploit DB Packet Storm

254329	4.3	警告	Apache Software Foundation	-	Apache HTTP Server の mod_proxy モジュールにおけるイントラネットサーバにリクエストを送信される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3639	2012-02-27 17:01	2011-10-25	Show	GitHub Exploit DB Packet Storm

254330	4.3	警告	Zimbra	-	Zimbra Web Client の zimbra/h/calendar におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1213	2012-02-27 16:48	2012-02-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
217771	6.5	MEDIUM Network	openclinic_ga_project	openclinic_ga	OpenClinic GA versions 5.09.02 and 5.89.05b do not properly check permissions before executing SQL queries, which may allow a low-privilege user to access privileged information.	CWE-862 Missing Authorization	CVE-2020-14491	2024-11-21 14:03	2020-07-21	Show	GitHub Exploit DB Packet Storm

217772	9.8	CRITICAL Network	openclinic_ga_project	openclinic_ga	OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass client-side access controls or use a crafted request to initiate a session with limited functionality, which may allow exec…	CWE-287 Improper Authentication	CVE-2020-14485	2024-11-21 14:03	2020-07-21	Show	GitHub Exploit DB Packet Storm

217773	9.8	CRITICAL Network	openclinic_ga_project	openclinic_ga	OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass the system’s account lockout protection, which may allow brute force password attacks.	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-14484	2024-11-21 14:03	2020-07-21	Show	GitHub Exploit DB Packet Storm

217774	7.3	HIGH Local	oracle	solaris	Vulnerability in the Oracle Solaris product of Oracle Systems (component: Device Driver Utility). The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged …	NVD-CWE-noinfo	CVE-2020-14724	2024-11-21 14:03	2020-07-16	Show	GitHub Exploit DB Packet Storm

217775	8.2	HIGH Network	oracle	help_technologies	Vulnerability in the Oracle Help Technologies product of Oracle Fusion Middleware (component: Web UIX). Supported versions that are affected are 11.1.1.9.0 and 12.2.1.3.0. Easily exploitable vulnerab…	NVD-CWE-noinfo	CVE-2020-14723	2024-11-21 14:03	2020-07-16	Show	GitHub Exploit DB Packet Storm

217776	5.8	MEDIUM Network	oracle	enterprise_communications_broker	Vulnerability in the Oracle Enterprise Communications Broker product of Oracle Communications Applications (component: WebGUI). Supported versions that are affected are 3.0.0-3.2.0. Difficult to expl…	NVD-CWE-noinfo	CVE-2020-14722	2024-11-21 14:03	2020-07-16	Show	GitHub Exploit DB Packet Storm

217777	6.3	MEDIUM Network	oracle	enterprise_communications_broker	Vulnerability in the Oracle Enterprise Communications Broker product of Oracle Communications Applications (component: WebGUI). Supported versions that are affected are 3.0.0-3.2.0. Easily exploitabl…	NVD-CWE-noinfo	CVE-2020-14721	2024-11-21 14:03	2020-07-16	Show	GitHub Exploit DB Packet Storm

217778	7.7	HIGH Network	oracle	internet_expenses	Vulnerability in the Oracle Internet Expenses product of Oracle E-Business Suite (component: Mobile Expenses Admin Utilities). Supported versions that are affected are 12.2.4-12.2.9. Easily exploitab…	NVD-CWE-noinfo	CVE-2020-14720	2024-11-21 14:03	2020-07-16	Show	GitHub Exploit DB Packet Storm

217779	9.8	CRITICAL Network	moxa	edr-g902-t_firmware edr-g902_firmware edr-g903-t_firmware edr-g903_firmware	Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers (versions prior to 5.4).	CWE-787 Out-of-bounds Write	CVE-2020-14511	2024-11-21 14:03	2020-07-15	Show	GitHub Exploit DB Packet Storm

217780	7.7	HIGH Network	oracle	internet_expenses	Vulnerability in the Oracle Internet Expenses product of Oracle E-Business Suite (component: Mobile Expenses Admin Utilities). Supported versions that are affected are 12.2.4-12.2.9. Easily exploitab…	NVD-CWE-noinfo	CVE-2020-14719	2024-11-21 14:03	2020-07-16	Show	GitHub Exploit DB Packet Storm