Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1141 9.1 緊急
Network 		mindsdb MindsDB MindsDB IncのMindsDBにおける複数の脆弱性 CWE-22
CWE-23
CWE-36
CVE-2025-68472 2026-01-29 16:00 2026-01-12 Show GitHub Exploit DB Packet Storm
1142 6.1 警告
Network 		shopfiles ebook store shopfilesのWordPress用ebook storeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-8113 2026-01-29 16:00 2025-08-16 Show GitHub Exploit DB Packet Storm
1143 8.8 重要
Network 		SAP SAP HANA Database SAPのSAP HANA Databaseにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-0492 2026-01-29 16:00 2026-01-13 Show GitHub Exploit DB Packet Storm
1144 9.9 緊急
Network 		Cloudflare, Inc. wrangler Cloudflare, Inc.のwranglerにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-0933 2026-01-29 15:59 2026-01-20 Show GitHub Exploit DB Packet Storm
1145 8.8 重要
Network 		PHPGurukul News Portal Project in PHP and MySql PHPGurukulのNews Portal Project in PHP and MySqlにおける複数の脆弱性 CWE-266
CWE-285
CVE-2026-1141 2026-01-29 15:59 2026-01-19 Show GitHub Exploit DB Packet Storm
1146 6.5 警告
Network 		PHPGurukul News Portal Project in PHP and MySql PHPGurukulのNews Portal Project in PHP and MySqlにおける複数の脆弱性 CWE-352
CWE-862
CVE-2026-1142 2026-01-29 15:59 2026-01-19 Show GitHub Exploit DB Packet Storm
1147 3.3
Local 		GPAC GPAC GPACにおける複数の脆弱性 CWE-404
CWE-476
CWE-476
CVE-2026-1415 2026-01-29 15:59 2026-01-26 Show GitHub Exploit DB Packet Storm
1148 3.3
Local 		GPAC GPAC GPACにおける複数の脆弱性 CWE-404
CWE-476
CWE-476
CVE-2026-1416 2026-01-29 15:59 2026-01-26 Show GitHub Exploit DB Packet Storm
1149 3.3
Local 		GPAC GPAC GPACにおける複数の脆弱性 CWE-404
CWE-476
CWE-476
CVE-2026-1417 2026-01-29 15:59 2026-01-26 Show GitHub Exploit DB Packet Storm
1150 7.8 重要
Local 		GPAC GPAC GPACにおける複数の脆弱性 CWE-119
CWE-787
CWE-787
CVE-2026-1418 2026-01-29 15:59 2026-01-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283141 - level_platforms managed_workplace_service_center Level Platforms, Inc. (LPI) Managed Workplace Service Center 4.x, 5.x and 6.x allows remote attackers to obtain sensitive information via a direct request to About/SC_About.htm, which provides versio… CWE-200
Information Exposure 		CVE-2008-0636 2018-10-16 07:02 2008-02-13 Show GitHub Exploit DB Packet Storm
283142 - symantec veritas_storage_foundation Heap-based buffer overflow in the Veritas Enterprise Administrator (VEA) service (aka vxsvc.exe) in Symantec Veritas Storage Foundation 5.0 allows remote attackers to execute arbitrary code via a pac… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0638 2018-10-16 07:02 2008-02-22 Show GitHub Exploit DB Packet Storm
283143 - novell client Stack-based buffer overflow in the EnumPrinters function in the Spooler service (nwspool.dll) in Novell Client 4.91 SP2, SP3, and SP4 for Windows allows remote attackers to execute arbitrary code via… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0639 2018-10-16 07:02 2008-02-14 Show GitHub Exploit DB Packet Storm
283144 - azucar_cms azucar_cms Multiple directory traversal vulnerabilities in Azucar CMS 1.3 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the _VIEW (view) parameter to (1) index.php, (… CWE-22
Path Traversal 		CVE-2008-0654 2018-10-16 07:02 2008-02-8 Show GitHub Exploit DB Packet Storm
283145 - emc documentum_administrator
documentum_webtop 		Unrestricted file upload vulnerability in dmclTrace.jsp in EMC Documentum Administrator 5.3.0.313 and Webtop 5.3.0.317 allows remote attackers to overwrite arbitrary files via the filename attribute. CWE-20
 Improper Input Validation  		CVE-2008-0656 2018-10-16 07:02 2008-02-8 Show GitHub Exploit DB Packet Storm
283146 - openldap openldap slapd/back-bdb/modrdn.c in the BDB backend for slapd in OpenLDAP 2.3.39 allows remote authenticated users to cause a denial of service (daemon crash) via a modrdn operation with a NOOP (LDAP_X_NO_OPE… CWE-399
 Resource Management Errors 		CVE-2008-0658 2018-10-16 07:02 2008-02-14 Show GitHub Exploit DB Packet Storm
283147 - illustrate dbpoweramp_audio_player Buffer overflow in dBpowerAMP Audio Player Release 2 allows remote attackers to execute arbitrary code via a .M3U file with a long URI. NOTE: this might be the same issue as CVE-2004-1569. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0661 2018-10-16 07:02 2008-02-8 Show GitHub Exploit DB Packet Storm
283148 - adobe acrobat_reader The DOC.print function in the Adobe JavaScript API, as used by Adobe Acrobat and Reader before 8.1.2, allows remote attackers to configure silent non-interactive printing, and trigger the printing of… CWE-399
 Resource Management Errors 		CVE-2008-0667 2018-10-16 07:02 2008-02-12 Show GitHub Exploit DB Packet Storm
283149 - tintin tintin\+\+
wintin\+\+ 		Stack-based buffer overflow in the add_line_buffer function in TinTin++ 1.97.9 and WinTin++ 1.97.9 allows remote attackers to execute arbitrary code via a long chat message, related to conversion fro… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0671 2018-10-16 07:02 2008-02-12 Show GitHub Exploit DB Packet Storm
283150 - tintin tintin\+\+
wintin\+\+ 		The process_chat_input function in TinTin++ 1.97.9 and WinTin++ 1.97.9 allows remote attackers to cause a denial of service (application crash) via a YES message without a newline character, which tr… CWE-20
 Improper Input Validation  		CVE-2008-0672 2018-10-16 07:02 2008-02-12 Show GitHub Exploit DB Packet Storm