Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1001	9.8	緊急 Network	Blue Access Technologies Inc.	Cobalt X1	Blue Access Technologies Inc.のCobalt X1における認証に関する脆弱性	CWE-287 不適切な認証	CVE-2025-60534	2026-01-30 14:13	2026-01-6	Show	GitHub Exploit DB Packet Storm

1002	6.5	警告 Network	Marquitos	mcp-shell	Marquitosのmcp-shellにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2025-61489	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

1003	9.8	緊急 Network	NJHYST	HY511 POE core devices Firmware	NJHYSTのHY511 POE core devices Firmwareにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性	CWE-565 検証および完全性チェックを行っていない Cookie への依存	CVE-2025-65212	2026-01-30 14:13	2026-01-6	Show	GitHub Exploit DB Packet Storm

1004	7.5	重要 Network	OpenAirInterface Software Alliance	OpenAir CN 5G for AMF	OpenAirInterface Software AllianceのOpenAir CN 5G for AMFにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2025-65805	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

1005	7.5	重要 Network	OpenAirInterface Software Alliance	OpenAir CN 5G for AMF	OpenAirInterface Software AllianceのOpenAir CN 5G for AMFにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2025-66786	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

1006	7.5	重要 Network	efforthye	fast-filesystem-mcp	efforthyeのfast-filesystem-mcpにおけるパストラバーサルの脆弱性	CWE-24 パストラバーサル (../filedir)	CVE-2025-67364	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

1007	7.5	重要 Network	Sylphx	Filesystem MCP	SylphxのFilesystem MCPにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2025-67366	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

1008	3.8	低 Network	Eli Hanna	Compress & Upload	Eli HannaのWordPress用Compress & Uploadにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2025-8889	2026-01-30 14:13	2025-09-9	Show	GitHub Exploit DB Packet Storm

1009	5.4	警告 Network	ngsurvey	ngsurvey	ngsurveyにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-15479	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

1010	6.1	警告 Network	WPForms	wpforms	WPFormsのWordPress用wpformsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-36919	2026-01-30 14:13	2026-01-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 27, 2026, 1:20 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
283691	-	rsyslog	rsyslog	Double free vulnerability in the writeDataError function in the ElasticSearch plugin (omelasticsearch) in rsyslog before 7.4.2 and before 7.5.2 devel, when errorfile is set to local logging, allows r…	CWE-399 Resource Management Errors	CVE-2013-4758	2024-11-21 10:56	2013-10-5	Show	GitHub Exploit DB Packet Storm

283692	-	accelatech	bizsearch	Cross-site scripting (XSS) vulnerability in Accela BizSearch 3.2 on Linux and Solaris allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-4711	2024-11-21 10:56	2013-10-4	Show	GitHub Exploit DB Packet Storm

283693	-	hp	laserjet_enterprise_color_flow_m575c laserjet_m525f laserjet_m4555 color_laserjet_cm4540fskm laserjet_m725f color_laserjet_m775dn laserjet_m4555h color_laserjet_cm4540f laserj…	HP LaserJet M4555, M525, and M725; LaserJet flow MFP M525c; LaserJet Enterprise color flow MFP M575c; Color LaserJet CM4540, M575, and M775; and ScanJet Enterprise 8500fn1 FutureSmart devices allow l…	CWE-200 Information Exposure	CVE-2013-4829	2024-11-21 10:56	2013-10-4	Show	GitHub Exploit DB Packet Storm

283694	-	hp	laserjet_enterprise_color_flow_m575c laserjet_m525f laserjet_m4555 color_laserjet_cm4540fskm laserjet_m725f color_laserjet_m775dn laserjet_m4555h color_laserjet_cm4540f laserj…	HP LaserJet M4555, M525, and M725; LaserJet flow MFP M525c; LaserJet Enterprise color flow MFP M575c; Color LaserJet CM4540, M575, and M775; and ScanJet Enterprise 8500fn1 FutureSmart devices do not …	CWE-310 Cryptographic Issues	CVE-2013-4828	2024-11-21 10:56	2013-10-4	Show	GitHub Exploit DB Packet Storm

283695	-	iij	seil\%2fx1_firmware seil\/x1 seil\%2fb1_firmware seil\/b1 seil\%2fx2_firmware seil\/x2 seil\%2fx86_firmware seil\/x86 seil\%2fturbo_firmware seil\/turbo seil\%2fneu_2fe_…	The PPP Access Concentrator (PPPAC) in Internet Initiative Japan Inc. SEIL/x86 1.00 through 2.80, SEIL/X1 1.00 through 4.30, SEIL/X2 1.00 through 4.30, SEIL/B1 1.00 through 4.30, SEIL/Turbo 1.80 thro…	CWE-310 Cryptographic Issues	CVE-2013-4708	2024-11-21 10:56	2013-10-2	Show	GitHub Exploit DB Packet Storm

283696	-	google motorola	android defy_xt	A certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless uses init to create a /dev/socket/init_runit socket that listens for shell commands, which allows local us…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4777	2024-11-21 10:56	2013-09-25	Show	GitHub Exploit DB Packet Storm

283697	-	hp	system_management_homepage	Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors.	NVD-CWE-noinfo	CVE-2013-4821	2024-11-21 10:56	2013-09-23	Show	GitHub Exploit DB Packet Storm

283698	-	hp	icewall_smart_device_option icewall_sso_agent icewall_sso_saml2_option icewall_file_manager icewall_java_agent_library icewall_federation_agent icewall_sso_agent_option	Unspecified vulnerability in HP IceWall SSO 8.0 through 10.0, IceWall SSO Agent Option 8.0 through 10.0, IceWall SSO Smart Device Option 10.0, IceWall SSO SAML2 Agent Option 8.0, IceWall SSO JAVA Age…	NVD-CWE-noinfo	CVE-2013-4820	2024-11-21 10:56	2013-09-23	Show	GitHub Exploit DB Packet Storm

283699	-	hp	icewall_sso_agent_option	Unspecified vulnerability in HP IceWall SSO Agent Option 8.0 through 10.0 allows remote authenticated users to obtain sensitive information via unknown vectors.	NVD-CWE-noinfo	CVE-2013-4819	2024-11-21 10:56	2013-09-23	Show	GitHub Exploit DB Packet Storm

283700	-	hp	icewall_smart_device_option icewall_file_manager icewall_sso_agent icewall_sso_agent_option	Unspecified vulnerability in HP IceWall SSO 8.0 through 10.0, IceWall SSO Agent Option 8.0 through 10.0, IceWall SSO Smart Device Option 10.0, and IceWall File Manager 3.0 through SP4 allows remote a…	NVD-CWE-noinfo	CVE-2013-4818	2024-11-21 10:56	2013-09-23	Show	GitHub Exploit DB Packet Storm