Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
121	5.4	警告 Network	dnnsoftware	dotnetnuke	dnnsoftwareのdotnetnukeにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-24838	2026-02-6 10:36	2026-01-28	Show	GitHub Exploit DB Packet Storm

122	6.1	警告 Network	Dokploy	Dokploy	Dokployにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性	CWE-1021 レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限	CVE-2026-24839	2026-02-6 10:36	2026-01-28	Show	GitHub Exploit DB Packet Storm

123	8.8	重要 Network	Dokploy	Dokploy	Dokployにおけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2026-24840	2026-02-6 10:36	2026-01-28	Show	GitHub Exploit DB Packet Storm

124	9.9	緊急 Network	Dokploy	Dokploy	DokployにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-24841	2026-02-6 10:36	2026-01-28	Show	GitHub Exploit DB Packet Storm

125	-	-	三菱電機	MELSEC iQ-R シリーズ	三菱電機製FA製品における専用プロトコル通信およびSLMP通信からの入力内容に対する検証不備の脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2025-15080	2026-02-6 09:36	2026-02-5	Show	GitHub Exploit DB Packet Storm

126	7.2	重要 Network	Google	Google Security Operations SOAR	GoogleのGoogle Security Operations SOARにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2025-13428	2026-02-5 15:51	2025-12-9	Show	GitHub Exploit DB Packet Storm

127	9.8	緊急 Network	SolarWinds	Web Help Desk	SolarWindsのWeb Help Deskにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2025-40536	2026-02-5 15:51	2026-01-28	Show	GitHub Exploit DB Packet Storm

128	7.5	重要 Network	SolarWinds	Web Help Desk	SolarWindsのWeb Help Deskにおけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2025-40537	2026-02-5 15:51	2026-01-28	Show	GitHub Exploit DB Packet Storm

129	9.8	緊急 Network	SolarWinds	Web Help Desk	SolarWindsのWeb Help Deskにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2025-40551	2026-02-5 15:51	2026-01-28	Show	GitHub Exploit DB Packet Storm

130	9.8	緊急 Network	SolarWinds	Web Help Desk	SolarWindsのWeb Help Deskにおける弱い認証に関する脆弱性	CWE-1390 脆弱な認証	CVE-2025-40552	2026-02-5 15:51	2026-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306451	-	freebsd	freebsd	FreeBSD kernel 4.6 and earlier closes the file descriptors 0, 1, and 2 after they have already been assigned to /dev/null when the descriptors reference procfs or linprocfs, which could allow local u…	NVD-CWE-Other	CVE-2002-0820	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

306452	-	freebsd	freebsd	Integer overflow in the Berkeley Fast File System (FFS) in FreeBSD 4.6.1 RELEASE-p4 and earlier allows local users to access arbitrary file contents within FFS to gain privileges by creating a file t…	NVD-CWE-Other	CVE-2002-0829	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

306453	-	freebsd	freebsd	The kqueue mechanism in FreeBSD 4.3 through 4.6 STABLE allows local users to cause a denial of service (kernel panic) via a pipe call in which one end is terminated and an EVFILT_WRITE filter is regi…	NVD-CWE-Other	CVE-2002-0831	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

306454	-	qualcomm	eudora	Buffer overflow in Eudora 5.1.1 and 5.0-J for Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a multi-part message with a long boundary string.	NVD-CWE-Other	CVE-2002-0833	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

306455	-	hp mandrakesoft redhat	secure_os mandrake_linux linux	dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involvin…	NVD-CWE-Other	CVE-2002-0836	2016-10-18 11:22	2002-10-28	Show	GitHub Exploit DB Packet Storm

306456	-	wordtrans	wordtrans-web	wordtrans 1.1pre8 and earlier in the wordtrans-web package allows remote attackers to (1) execute arbitrary code or (2) conduct cross-site scripting attacks via certain parameters (possibly "dict") t…	NVD-CWE-Other	CVE-2002-0837	2016-10-18 11:22	2002-10-4	Show	GitHub Exploit DB Packet Storm

306457	-	ggv ghostview gv	ggv ghostview gv	Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arb…	NVD-CWE-Other	CVE-2002-0838	2016-10-18 11:22	2002-10-10	Show	GitHub Exploit DB Packet Storm

306458	-	oracle	application_server	Format string vulnerability in certain third party modifications to mod_dav for logging bad gateway messages (e.g. Oracle9i Application Server 9.0.2) allows remote attackers to execute arbitrary code…	NVD-CWE-Other	CVE-2002-0842	2016-10-18 11:22	2003-03-3	Show	GitHub Exploit DB Packet Storm

306459	-	iplanet	iplanet_web_server	Buffer overflow in Sun ONE / iPlanet Web Server 4.1 and 6.0 allows remote attackers to execute arbitrary code via an HTTP request using chunked transfer encoding.	NVD-CWE-Other	CVE-2002-0845	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

306460	-	macromedia	shockwave_flash	The decoder for Macromedia Shockwave Flash allows remote attackers to execute arbitrary code via a malformed SWF header that contains more data than the specified length.	NVD-CWE-Other	CVE-2002-0846	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm