Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1271	5.4	警告 Network	HasThemes	ht politic	HasThemesのWordPress用ht politicにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-51673	2026-01-28 12:38	2024-11-9	Show	GitHub Exploit DB Packet Storm

1272	7.2	重要 Network	Openfind	Mail2000	OpenfindのMail2000におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2024-5399	2026-01-28 12:38	2024-05-27	Show	GitHub Exploit DB Packet Storm

1273	8.8	重要 Network	Openfind	Mail2000	OpenfindのMail2000におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2024-5400	2026-01-28 12:38	2024-05-27	Show	GitHub Exploit DB Packet Storm

1274	6.1	警告 Network	Backdrop	backdrop	Backdropのbackdropにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-54123	2026-01-28 12:38	2024-11-29	Show	GitHub Exploit DB Packet Storm

1275	4.8	警告 Network	Centreon	Centreon Web	CentreonのCentreon Webにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-10023	2026-01-28 12:38	2025-10-27	Show	GitHub Exploit DB Packet Storm

1276	4.8	警告 Network	Centreon	Centreon Web	CentreonのCentreon Webにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-12513	2026-01-28 12:38	2026-01-5	Show	GitHub Exploit DB Packet Storm

1277	5.3	警告 Network	Centreon	Centreon Web	CentreonのCentreon Webにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-12519	2026-01-28 12:38	2026-01-5	Show	GitHub Exploit DB Packet Storm

1278	4.8	警告 Network	Centreon	Centreon Web	CentreonのCentreon Webにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-13056	2026-01-28 12:38	2026-01-5	Show	GitHub Exploit DB Packet Storm

1279	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2025-13335	2026-01-28 12:38	2026-01-22	Show	GitHub Exploit DB Packet Storm

1280	7.5	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-13927	2026-01-28 12:38	2026-01-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
304071	-	kryloff_technologies	subject_search_server	Cross-site scripting (XSS) vulnerability in Kryloff Technologies Subject Search Server (SSServer) 1.1 allows remote attackers to inject arbitrary web script or HTML via the "Search For" field.	NVD-CWE-Other	CVE-2005-1599	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

304072	-	libtomcrypt	libtomcrypt	A "mathematical flaw" in the implementation of the El Gamal signature algorithm for LibTomCrypt 1.0 to 1.0.2 allows attackers to generate valid signatures without having the private key.	NVD-CWE-Other	CVE-2005-1600	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

304073	-	mro_software	maximo_self_service	MRO Maximo Self Service 4 and 5 stores certain information under the web document root using file extensions that are not processed by Tomcat, which allows remote attackers to obtain sensitive inform…	NVD-CWE-Other	CVE-2005-1601	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

304074	-	net56	file_manager	SQL injection vulnerability in login.asp for Net56 Browser Based File Manager 1.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the password field.	NVD-CWE-Other	CVE-2005-1602	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

304075	-	positive_software	sitestudio	Cross-site scripting (XSS) vulnerability in the guestbook for SiteStudio 1.6 allows remote attackers to inject arbitrary web script or HTML via the name field to (1) psoft.guestbook.GuestBookServ in …	NVD-CWE-Other	CVE-2005-1605	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

304076	-	positive_software	h-sphere_winbox	H-Sphere Winbox 2.4.2 and 2.4.3 RC1 stores sensitive information such as username and password in plaintext in world-readable log files, which allows local users to gain privileges.	NVD-CWE-Other	CVE-2005-1606	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

304077	-	spidean	at-lite autotheme	Multiple unknown vulnerabilities in the Blocks module in Spidean AutoTheme 1.7 and AT-Lite for PostNuke have unknown impact.	NVD-CWE-Other	CVE-2005-1608	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

304078	-	sun	storedge_6130_arrays	Unknown vulnerability in Sun StorEdge 6130 Arrays (SE6130) with serial numbers between 0451AWF00G and 0513AWF00J allows local users and remote attackers to delete data.	NVD-CWE-Other	CVE-2005-1609	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

304079	-	tru-zone	nukeet	Cross-site scripting (XSS) vulnerability in security.php for Tru-Zone NukeET 3.0 and 3.1 allows remote attackers to inject arbitrary web script or HTML via a base64 encoded Codigo parameter.	NVD-CWE-Other	CVE-2005-1610	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

304080	-	web_crossing_inc	web_crossing	Cross-site scripting (XSS) vulnerability in WebX in Web Crossing 5.x allows remote attackers to inject arbitrary web script or HTML via a URL with an "@" followed by the desired script.	NVD-CWE-Other	CVE-2005-1611	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm