Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
121 5.4 警告
Network 		dnnsoftware dotnetnuke dnnsoftwareのdotnetnukeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-24838 2026-02-6 10:36 2026-01-28 Show GitHub Exploit DB Packet Storm
122 6.1 警告
Network 		Dokploy Dokploy Dokployにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性 CWE-1021
レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限 		CVE-2026-24839 2026-02-6 10:36 2026-01-28 Show GitHub Exploit DB Packet Storm
123 8.8 重要
Network 		Dokploy Dokploy Dokployにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-24840 2026-02-6 10:36 2026-01-28 Show GitHub Exploit DB Packet Storm
124 9.9 緊急
Network 		Dokploy Dokploy DokployにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-24841 2026-02-6 10:36 2026-01-28 Show GitHub Exploit DB Packet Storm
125 - - 三菱電機 MELSEC iQ-R シリーズ 三菱電機製FA製品における専用プロトコル通信およびSLMP通信からの入力内容に対する検証不備の脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2025-15080 2026-02-6 09:36 2026-02-5 Show GitHub Exploit DB Packet Storm
126 7.2 重要
Network 		Google Google Security Operations SOAR GoogleのGoogle Security Operations SOARにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2025-13428 2026-02-5 15:51 2025-12-9 Show GitHub Exploit DB Packet Storm
127 9.8 緊急
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおける保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2025-40536 2026-02-5 15:51 2026-01-28 Show GitHub Exploit DB Packet Storm
128 7.5 重要
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2025-40537 2026-02-5 15:51 2026-01-28 Show GitHub Exploit DB Packet Storm
129 9.8 緊急
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2025-40551 2026-02-5 15:51 2026-01-28 Show GitHub Exploit DB Packet Storm
130 9.8 緊急
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおける弱い認証に関する脆弱性 CWE-1390
脆弱な認証 		CVE-2025-40552 2026-02-5 15:51 2026-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306791 - oreilly website_pro O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.e… NVD-CWE-Other
CVE-2000-0769 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
306792 - ipswitch imail The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack. NVD-CWE-Other
CVE-2000-0780 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
306793 - wircsrv irc_server WircSrv IRC Server 5.07s allows IRC operators to read arbitrary files via the importmotd command, which sets the Message of the Day (MOTD) to the specified file. NVD-CWE-Other
CVE-2000-0785 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
306794 - gnu userv GNU userv 1.0.0 and earlier does not properly perform file descriptor swapping, which can corrupt the USERV_GROUPS and USERV_GIDS environmental variables and allow local users to bypass some access r… NVD-CWE-Other
CVE-2000-0786 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
306795 - pgp personal_privacy The BAIR program does not properly restrict access to the Internet Explorer Internet options menu, which allows local users to obtain access to the menu by modifying the registry key that starts BAIR. NVD-CWE-Other
CVE-2000-0802 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
306796 - max_feoktistov small_http_server Small HTTP Server 2.01 does not properly process Server Side Includes (SSI) tags that contain null values, which allows local users, and possibly remote attackers, to cause the server to crash by ins… NVD-CWE-Other
CVE-2000-0898 2016-10-18 11:07 2001-01-9 Show GitHub Exploit DB Packet Storm
306797 - max_feoktistov small_http_server Small HTTP Server 2.01 allows remote attackers to cause a denial of service by connecting to the server and sending out multiple GET, HEAD, or POST requests and closing the connection before the serv… NVD-CWE-Other
CVE-2000-0899 2016-10-18 11:07 2001-01-9 Show GitHub Exploit DB Packet Storm
306798 - caldera openserver Buffer overflow in sar for OpenServer 5.0.5 allows local users to gain root privileges via a long -o parameter. NVD-CWE-Other
CVE-1999-1570 2016-10-18 11:06 2002-05-1 Show GitHub Exploit DB Packet Storm
306799 - sco openserver Buffer overflow in sar for SCO OpenServer 5.0.0 through 5.0.5 may allow local users to gain root privileges via a long -f parameter, a different vulnerability than CVE-1999-1570. NVD-CWE-Other
CVE-1999-1571 2016-10-18 11:06 1999-11-4 Show GitHub Exploit DB Packet Storm
306800 - sco unixware Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable. NVD-CWE-Other
CVE-2000-0003 2016-10-18 11:06 1999-12-30 Show GitHub Exploit DB Packet Storm