Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1141 9.1 緊急
Network 		mindsdb MindsDB MindsDB IncのMindsDBにおける複数の脆弱性 CWE-22
CWE-23
CWE-36
CVE-2025-68472 2026-01-29 16:00 2026-01-12 Show GitHub Exploit DB Packet Storm
1142 6.1 警告
Network 		shopfiles ebook store shopfilesのWordPress用ebook storeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-8113 2026-01-29 16:00 2025-08-16 Show GitHub Exploit DB Packet Storm
1143 8.8 重要
Network 		SAP SAP HANA Database SAPのSAP HANA Databaseにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-0492 2026-01-29 16:00 2026-01-13 Show GitHub Exploit DB Packet Storm
1144 9.9 緊急
Network 		Cloudflare, Inc. wrangler Cloudflare, Inc.のwranglerにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-0933 2026-01-29 15:59 2026-01-20 Show GitHub Exploit DB Packet Storm
1145 8.8 重要
Network 		PHPGurukul News Portal Project in PHP and MySql PHPGurukulのNews Portal Project in PHP and MySqlにおける複数の脆弱性 CWE-266
CWE-285
CVE-2026-1141 2026-01-29 15:59 2026-01-19 Show GitHub Exploit DB Packet Storm
1146 6.5 警告
Network 		PHPGurukul News Portal Project in PHP and MySql PHPGurukulのNews Portal Project in PHP and MySqlにおける複数の脆弱性 CWE-352
CWE-862
CVE-2026-1142 2026-01-29 15:59 2026-01-19 Show GitHub Exploit DB Packet Storm
1147 3.3
Local 		GPAC GPAC GPACにおける複数の脆弱性 CWE-404
CWE-476
CWE-476
CVE-2026-1415 2026-01-29 15:59 2026-01-26 Show GitHub Exploit DB Packet Storm
1148 3.3
Local 		GPAC GPAC GPACにおける複数の脆弱性 CWE-404
CWE-476
CWE-476
CVE-2026-1416 2026-01-29 15:59 2026-01-26 Show GitHub Exploit DB Packet Storm
1149 3.3
Local 		GPAC GPAC GPACにおける複数の脆弱性 CWE-404
CWE-476
CWE-476
CVE-2026-1417 2026-01-29 15:59 2026-01-26 Show GitHub Exploit DB Packet Storm
1150 7.8 重要
Local 		GPAC GPAC GPACにおける複数の脆弱性 CWE-119
CWE-787
CWE-787
CVE-2026-1418 2026-01-29 15:59 2026-01-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
304231 - recipants recipants Multiple SQL injection vulnerabilities in ReciPants 1.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) user id, (2) recipe id, (3) category id, and (4) other ID number fields. NVD-CWE-Other
CVE-2004-2567 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm
304232 - david_stes ipmenu ipmenu 0.0.3 before Debian GNU/Linux ipmenu_0.0.3-5 allows local users to overwrite arbitrary files via a symlink attack on the ipmenu.log temporary file. NVD-CWE-Other
CVE-2004-2569 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm
304233 - enderunix isoqlog Multiple buffer overflows in EnderUNIX isoqlog 2.1.1 allow remote attackers to execute arbitrary code via the (1) parseQmailFromBytesLine, (2) parseQmailToRemoteLine, (3) parseQmailToLocalLine, (4) p… NVD-CWE-Other
CVE-2004-2571 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm
304234 - amax_information_technologies magic_winmail_server AMAX Magic Winmail Server 3.6 allows remote attackers to obtain sensitive information by entering (1) invalid characters such as "()" or (2) a large number of characters in the Lookup field on the ne… NVD-CWE-Other
CVE-2004-2572 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm
304235 - phpgroupware phpgroupware class.vfs_dav.inc.php in phpGroupWare 0.9.16.000 does not create .htaccess files to enable authorization checks for access to users' home-directory files, which allows remote attackers to obtain sens… NVD-CWE-Other
CVE-2004-2576 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm
304236 - phpgroupware phpgroupware phpGroupWare before 0.9.16.002 transmits the (1) header admin and (2) setup passwords in plaintext via cookies, which allows remote attackers to sniff passwords. NVD-CWE-Other
CVE-2004-2578 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm
304237 - novell ichain ACLCHECK module in Novell iChain 2.3 allows attackers to bypass access control rules of an unspecified component via an unspecified attack vector involving a string that contains escape sequences rep… NVD-CWE-Other
CVE-2004-2579 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm
304238 - novell ichain Cross-site scripting (XSS) vulnerability in Novell iChain 2.3 allows remote attackers to obtain login credentials via unspecified vectors. NVD-CWE-Other
CVE-2004-2580 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm
304239 - novell ichain Novell iChain 2.3 allows attackers to cause a denial of service via a URL with a "specific string." NVD-CWE-Other
CVE-2004-2581 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm
304240 - novell ichain Novell iChain 2.3 includes the build number in the VIA line of the proxy server's HTTP headers, which allows remote attackers to obtain sensitive information. NVD-CWE-Other
CVE-2004-2582 2017-07-11 10:32 2004-12-31 Show GitHub Exploit DB Packet Storm