Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1271 5.4 警告
Network 		HasThemes ht politic HasThemesのWordPress用ht politicにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-51673 2026-01-28 12:38 2024-11-9 Show GitHub Exploit DB Packet Storm
1272 7.2 重要
Network 		Openfind Mail2000 OpenfindのMail2000におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-5399 2026-01-28 12:38 2024-05-27 Show GitHub Exploit DB Packet Storm
1273 8.8 重要
Network 		Openfind Mail2000 OpenfindのMail2000におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-5400 2026-01-28 12:38 2024-05-27 Show GitHub Exploit DB Packet Storm
1274 6.1 警告
Network 		Backdrop backdrop Backdropのbackdropにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-54123 2026-01-28 12:38 2024-11-29 Show GitHub Exploit DB Packet Storm
1275 4.8 警告
Network 		Centreon Centreon Web CentreonのCentreon Webにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-10023 2026-01-28 12:38 2025-10-27 Show GitHub Exploit DB Packet Storm
1276 4.8 警告
Network 		Centreon Centreon Web CentreonのCentreon Webにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-12513 2026-01-28 12:38 2026-01-5 Show GitHub Exploit DB Packet Storm
1277 5.3 警告
Network 		Centreon Centreon Web CentreonのCentreon Webにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-12519 2026-01-28 12:38 2026-01-5 Show GitHub Exploit DB Packet Storm
1278 4.8 警告
Network 		Centreon Centreon Web CentreonのCentreon Webにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-13056 2026-01-28 12:38 2026-01-5 Show GitHub Exploit DB Packet Storm
1279 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2025-13335 2026-01-28 12:38 2026-01-22 Show GitHub Exploit DB Packet Storm
1280 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2025-13927 2026-01-28 12:38 2026-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
304491 - hosting_controller hosting_controller Hosting Controller 6.1 Hotfix 1.4, and possibly other versions, allows remote attackers to view arbitrary directories by specifying the target pathname in the FilePath parameter to (1) Statsbrowse.as… NVD-CWE-Other
CVE-2004-1217 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304492 - ibex_software remote_execute Remote Execute 2.30 allows remote attackers to cause a denial of service (application crash) by making 7 simultaneous connections. NVD-CWE-Other
CVE-2004-1218 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304493 - php_arena pafiledb paFileDB 3.1, when using sessions authentication and while the administrator logs on, allows remote attackers to read the administrator's password hash and conduct brute force password guessing attac… NVD-CWE-Other
CVE-2004-1219 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304494 - digital_illusions battlefield_1942
battlefield_vietnam 		Battlefield 1942 1.6.19 and earlier, and Battlefield Vietnam 1.2 and earlier, allows a remote master server to cause a denial of service (client crash) via a server reply that contains a large numpla… NVD-CWE-Other
CVE-2004-1220 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304495 - darryl_burgdorf weblibs Directory traversal vulnerability in weblibs.pl in WebLibs 1.0 allows remote attackers to read arbitrary files via .. sequences in the TextFile parameter. NVD-CWE-Other
CVE-2004-1221 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304496 - darryl_burgdorf weblibs weblibs.pl in WebLibs 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the TextFile parameter. NVD-CWE-Other
CVE-2004-1222 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304497 - f-secure policy_manager The Management Agent in F-Secure Policy Manager 5.11.2810 allows remote attackers to gain sensitive information, such as the absolute path for the web server, via an HTTP request to fsmsh.dll without… NVD-CWE-Other
CVE-2004-1223 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304498 - mtr mtr Off-by-one error in the mtr_curses_keyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NUL… NVD-CWE-Other
CVE-2004-1224 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304499 - sugarcrm sugarcrm SQL injection vulnerability in SugarCRM Sugar Sales before 2.0.1a allows remote attackers to execute arbitrary SQL commands and gain privileges via the record parameter in a DetailView action to inde… NVD-CWE-Other
CVE-2004-1225 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304500 - sugarcrm sugarcrm SugarCRM Sugar Sales 2.0.1c and earlier allows remote attackers to gain sensitive information via certain requests to scripts that contain invalid input, which reveals the path in an error message, a… NVD-CWE-Other
CVE-2004-1226 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm