Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1201 5.3 警告
Network 		Sick Enterprise Analytics SickのEnterprise Analyticsにおける不適切なログ出力の無効化に関する脆弱性 CWE-117
不適切なログ出力の無効化 		CVE-2025-58580 2026-01-28 12:41 2025-10-6 Show GitHub Exploit DB Packet Storm
1202 4.3 警告
Network 		Sick Enterprise Analytics SickのEnterprise Analyticsにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2025-58581 2026-01-28 12:41 2025-10-6 Show GitHub Exploit DB Packet Storm
1203 7.5 重要
Network 		Sick Enterprise Analytics SickのEnterprise Analyticsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2025-58582 2026-01-28 12:41 2025-10-6 Show GitHub Exploit DB Packet Storm
1204 5.3 警告
Network 		Sick Enterprise Analytics SickのEnterprise Analyticsにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性 CWE-497
認可されていない制御領域への重要情報の漏えい 		CVE-2025-58583 2026-01-28 12:41 2025-10-6 Show GitHub Exploit DB Packet Storm
1205 7.5 重要
Network 		Sick Enterprise Analytics
Package Analytics
Tire Analytics
Logistics Diagnostic Analytics
Baggage Analytics 		SickのBaggage Analytics等の複数製品におけるGET リクエストにおけるクエリ文字列からの情報漏えいに関する脆弱性 CWE-598
GET リクエストにおけるクエリ文字列からの情報漏えい 		CVE-2025-58584 2026-01-28 12:41 2025-10-6 Show GitHub Exploit DB Packet Storm
1206 6.1 警告
Network 		Astun Technology Ltd iShare Maps Astun Technology LtdのiShare Mapsにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2025-6089 2026-01-28 12:41 2025-06-15 Show GitHub Exploit DB Packet Storm
1207 9.8 緊急
Network 		Nitro Software Inc. Nitro PDF Pro Nitro Software Inc.のNitro PDF Proにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2025-67825 2026-01-28 12:41 2026-01-8 Show GitHub Exploit DB Packet Storm
1208 8.1 重要
Network 		Qode Interactive Wellspring Qode InteractiveのWordPress用WellspringにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-67934 2026-01-28 12:41 2026-01-8 Show GitHub Exploit DB Packet Storm
1209 6.5 警告
Network 		Apache Software Foundation Apache Spatial Information System (SIS) Apache Software FoundationのApache Spatial Information System (SIS)におけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2025-68280 2026-01-28 12:41 2026-01-5 Show GitHub Exploit DB Packet Storm
1210 4.8 警告
Network 		Centreon Centreon Open Tickets CentreonのCentreon Open Ticketsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-8460 2026-01-28 12:41 2025-12-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314621 - mozilla firefox Mozilla Firefox before 0.10.1 allows remote attackers to delete arbitrary files in the download directory via a crafted data: URI that is not properly handled when the user clicks the Save button. NVD-CWE-Other
CVE-2004-2225 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
314622 - - - Unknown vulnerability in Moodle before 1.2 allows teachers to log in as administrators. NVD-CWE-Other
CVE-2004-2234 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
314623 - moodle moodle Unknown vulnerability in Moodle before 1.2 has unknown impact and attack vectors, related to improper filtering of text. NVD-CWE-Other
CVE-2004-2235 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
314624 - goollery goollery Cross-site scripting (XSS) vulnerability in Goollery before 0.04b allows remote attackers to inject arbitrary HTML or web script via the conversation_id parameter to viewpic.php. NVD-CWE-Other
CVE-2004-2246 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
314625 - goosequill audienceconnect Unknown vulnerability in the "admin of paypal email addresses" in AudienceConnect before 1.0.beta.21 has unknown impact and attack vectors. NVD-CWE-Other
CVE-2004-2247 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
314626 - evan_sims effingerd efFingerD 0.2.12 allows remote attackers to cause a denial of service (daemon crash) via a packet with a single byte, which triggers a "Wrong protocol or connection state" error. NVD-CWE-Other
CVE-2004-2273 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
314627 - ibm lotus_notes Buffer overflow in IBM Lotus Notes 6.5.x before 6.5.3 and 6.0.x before 6.0.5 allows remote attackers to cause a denial of service (crash) via unknown vectors related to Java applets, as identified by… NVD-CWE-Other
CVE-2004-2280 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
314628 - ibm lotus_notes Multiple unknown vulnerabilities in IBM Lotus Notes 6.5.x before 6.5.4 and 6.0.x before 6.0.5 have unknown impact and attack vectors, related to Java applets, as identified by (1) KSPR5YS6GR and (2) … NVD-CWE-Other
CVE-2004-2281 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
314629 - daniel_barron dansguardian DansGuardian before 2.7.7-2 allows remote attackers to bypass URL filters via a ".." in the request. NVD-CWE-Other
CVE-2004-2282 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
314630 - daniel_barron dansguardian Unknown vulnerability in DansGuardian before 2.6.1-13 allows remote attackers to bypass URL filters via a crafted request that causes a page to be added to the clean page cache. NVD-CWE-Other
CVE-2004-2283 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm