Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1401 9.8 緊急
Network 		Centreon Centreon AWIE CentreonのCentreon AWIEにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2025-15026 2026-01-28 12:30 2026-01-5 Show GitHub Exploit DB Packet Storm
1402 6.8 警告
Adjacent 		TP-LINK Technologies Archer MR600 Archer MR600におけるOSコマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-14756 2026-01-28 09:58 2026-01-27 Show GitHub Exploit DB Packet Storm
1403 9.8 緊急
Network 		Sagemcom F@ST 3686 Firmware SagemcomのF@ST 3686 Firmwareにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2025-29329 2026-01-27 17:41 2026-01-12 Show GitHub Exploit DB Packet Storm
1404 8.8 重要
Network 		デル data domain operating system
powerprotect data domain
PowerProtect DM5500 Firmware 		デル等の複数ベンダの製品におけるアクセス制御の不十分な粒度に関する脆弱性 CWE-1220
CWE-Other
CVE-2025-29987 2026-01-27 17:41 2025-04-3 Show GitHub Exploit DB Packet Storm
1405 8.1 重要
Network 		ThemeGoods Photography ThemeGoodsのWordPress用Photographyにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2025-47579 2026-01-27 17:41 2025-09-9 Show GitHub Exploit DB Packet Storm
1406 7.5 重要
Network 		ThemeGoods Photography ThemeGoodsのWordPress用Photographyにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2025-47584 2026-01-27 17:41 2025-06-6 Show GitHub Exploit DB Packet Storm
1407 6.5 警告
Network 		XiaoLiuChu pss.sale.com XiaoLiuChuのpss.sale.comにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-51626 2026-01-27 17:41 2026-01-9 Show GitHub Exploit DB Packet Storm
1408 9.8 緊急
Network 		アドバンテック株式会社 IoT Edge Windows
IoT Edge Linux docker
IoTSuite Starter Linux docker
IoTSuite Growth Linux docker
IoTSuite/ SaaSComposer 		アドバンテック株式会社のIoT Edge Linux docker等の複数製品におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-52694 2026-01-27 17:41 2026-01-12 Show GitHub Exploit DB Packet Storm
1409 9.1 緊急
Network 		OPTIMAL SYSTEMS GmbH enaio OPTIMAL SYSTEMS GmbHのenaioにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2025-56425 2026-01-27 17:41 2026-01-8 Show GitHub Exploit DB Packet Storm
1410 7.5 重要
Network 		QNAP Systems Qfiling QNAP SystemsのQfilingにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-59384 2026-01-27 17:40 2026-01-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
304371 - bogofilter
ubuntu 		email_filter
ubuntu_linux 		The quoted-printable decoder in bogofilter 0.17.4 to 0.92.7 allows remote attackers to cause a denial of service (application crash) via mail headers that cause a line feed (LF) to be replaced by a n… NVD-CWE-Other
CVE-2004-1007 2017-07-11 10:30 2005-03-1 Show GitHub Exploit DB Packet Storm
304372 - putty
tortoisecvs 		putty
tortoisecvs 		Integer signedness error in the ssh2_rdpkt function in PuTTY before 0.56 allows remote attackers to execute arbitrary code via a SSH2_MSG_DEBUG packet with a modified stringlen parameter, which leads… NVD-CWE-Other
CVE-2004-1008 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304373 - midnight_commander
debian
gentoo
redhat
suse
turbolinux 		midnight_commander
debian_linux
linux
enterprise_linux
linux_advanced_workstation
suse_linux
turbolinux_server
turbolinux_workstation 		Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. NVD-CWE-Other
CVE-2004-1009 2017-07-11 10:30 2005-04-14 Show GitHub Exploit DB Packet Storm
304374 - carnegie_mellon_university
openpkg
conectiva
redhat
trustix
ubuntu 		cyrus_imap_server
openpkg
linux
fedora_core
secure_linux
ubuntu_linux 		Stack-based buffer overflow in Cyrus IMAP Server 2.2.4 through 2.2.8, with the imapmagicplus option enabled, allows remote attackers to execute arbitrary code via a long (1) PROXY or (2) LOGIN comman… NVD-CWE-Other
CVE-2004-1011 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304375 - carnegie_mellon_university
openpkg
conectiva
redhat
trustix
ubuntu 		cyrus_imap_server
openpkg
linux
fedora_core
secure_linux
ubuntu_linux 		The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command ("body[p") that is treated as a dif… NVD-CWE-Other
CVE-2004-1012 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304376 - carnegie_mellon_university
redhat
ubuntu 		cyrus_imap_server
fedora_core
ubuntu_linux 		Buffer overflow in proxyd for Cyrus IMAP Server 2.2.9 and earlier, with the imapmagicplus option enabled, may allow remote attackers to execute arbitrary code, a different vulnerability than CVE-2004… NVD-CWE-Other
CVE-2004-1015 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304377 - php php The addslashes function in PHP 4.3.9 does not properly escape a NULL (/0) character, which may allow remote attackers to read arbitrary files in PHP applications that contain a directory traversal vu… NVD-CWE-Other
CVE-2004-1020 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304378 - apple ical iCal before 1.5.4 on Mac OS X 10.2.3, and other later versions, does not alert the user when handling calendars that use alarms, which allows attackers to execute programs and send e-mail via alarms. NVD-CWE-Other
CVE-2004-1021 2017-07-11 10:30 2005-03-1 Show GitHub Exploit DB Packet Storm
304379 - kerio kerio_mailserver
serverfirewall
winroute_firewall 		Kerio Winroute Firewall before 6.0.7, ServerFirewall before 1.0.1, and MailServer before 6.0.5 use symmetric encryption for user passwords, which allows attackers to decrypt the user database and obt… NVD-CWE-Other
CVE-2004-1022 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
304380 - kerio kerio_mailserver
serverfirewall
winroute_firewall 		Kerio Winroute Firewall before 6.0.9, ServerFirewall before 1.0.1, and MailServer before 6.0.5, when installed on Windows based systems, do not modify the ACLs for critical files, which allows local … NVD-CWE-Other
CVE-2004-1023 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm