Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
121 5.4 警告
Network 		dnnsoftware dotnetnuke dnnsoftwareのdotnetnukeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-24838 2026-02-6 10:36 2026-01-28 Show GitHub Exploit DB Packet Storm
122 6.1 警告
Network 		Dokploy Dokploy Dokployにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性 CWE-1021
レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限 		CVE-2026-24839 2026-02-6 10:36 2026-01-28 Show GitHub Exploit DB Packet Storm
123 8.8 重要
Network 		Dokploy Dokploy Dokployにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-24840 2026-02-6 10:36 2026-01-28 Show GitHub Exploit DB Packet Storm
124 9.9 緊急
Network 		Dokploy Dokploy DokployにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-24841 2026-02-6 10:36 2026-01-28 Show GitHub Exploit DB Packet Storm
125 - - 三菱電機 MELSEC iQ-R シリーズ 三菱電機製FA製品における専用プロトコル通信およびSLMP通信からの入力内容に対する検証不備の脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2025-15080 2026-02-6 09:36 2026-02-5 Show GitHub Exploit DB Packet Storm
126 7.2 重要
Network 		Google Google Security Operations SOAR GoogleのGoogle Security Operations SOARにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2025-13428 2026-02-5 15:51 2025-12-9 Show GitHub Exploit DB Packet Storm
127 9.8 緊急
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおける保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2025-40536 2026-02-5 15:51 2026-01-28 Show GitHub Exploit DB Packet Storm
128 7.5 重要
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2025-40537 2026-02-5 15:51 2026-01-28 Show GitHub Exploit DB Packet Storm
129 9.8 緊急
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2025-40551 2026-02-5 15:51 2026-01-28 Show GitHub Exploit DB Packet Storm
130 9.8 緊急
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおける弱い認証に関する脆弱性 CWE-1390
脆弱な認証 		CVE-2025-40552 2026-02-5 15:51 2026-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307511 - c-3.co.jp webcalenderc3 Directory traversal vulnerability in C3 Corp. WebCalenderC3 0.32 and earlier allows remote attackers to read arbitrary files via unknown vectors. CWE-22
Path Traversal 		CVE-2010-0348 2011-04-29 13:00 2010-01-16 Show GitHub Exploit DB Packet Storm
307512 - c-3.co.jp webcalenderc3 Cross-site scripting (XSS) vulnerability in C3 Corp. WebCalenderC3 0.32 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: this issue could not be … CWE-79
Cross-site Scripting 		CVE-2010-0349 2011-04-29 13:00 2010-01-16 Show GitHub Exploit DB Packet Storm
307513 - juniper junos Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session fla… CWE-20
 Improper Input Validation  		CVE-2007-6372 2011-04-29 13:00 2007-12-15 Show GitHub Exploit DB Packet Storm
307514 - suse opensuse
suse_linux 		SUSE Linux Enterprise 10 SP3 (SLE10-SP3) and openSUSE 11.2 configures postfix to listen on all network interfaces, which might allow remote attackers to bypass intended access restrictions. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0230 2011-04-28 13:00 2010-01-23 Show GitHub Exploit DB Packet Storm
307515 - ibm lotus_domino Heap-based buffer overflow in the server in IBM Lotus Domino 7 and 8.5 FP1 allows remote attackers to cause a denial of service (daemon exit) and possibly have unspecified other impact via a long str… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0358 2011-04-28 13:00 2010-01-21 Show GitHub Exploit DB Packet Storm
307516 - sun java_system_web_server Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to overwrite memory locations in the heap, and discover the contents of memory locations, via a malformed HTTP TRACE request… CWE-20
 Improper Input Validation  		CVE-2010-0360 2011-04-28 13:00 2010-01-21 Show GitHub Exploit DB Packet Storm
307517 - sun java_system_web_server Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to cause a denial of service (daemon crash) and poss… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0361 2011-04-28 13:00 2010-01-21 Show GitHub Exploit DB Packet Storm
307518 - tor tor Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent logging of the client IP address upon detection of erroneous client behavior, which might make it easier for… CWE-200
Information Exposure 		CVE-2010-0384 2011-04-27 13:00 2010-01-26 Show GitHub Exploit DB Packet Storm
307519 - fetchmail fetchmail The sdump function in sdump.c in fetchmail 6.3.11, 6.3.12, and 6.3.13, when running in verbose mode on platforms for which char is signed, allows remote attackers to cause a denial of service (applic… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0562 2011-04-27 13:00 2010-02-9 Show GitHub Exploit DB Packet Storm
307520 - ssl-explorer ssl-explorer Unspecified vulnerability in SSL-Explorer before 0.2.13 allows remote authenticated users to enter redirect URLs containing (1) JavaScript or (2) HTTP headers via an unspecified vector, possibly the … NVD-CWE-noinfo
CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-2907 2011-04-7 13:00 2007-05-30 Show GitHub Exploit DB Packet Storm