Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1411 9.8 緊急
Network 		QNAP Systems Hyper Data Protector QNAP SystemsのHyper Data ProtectorにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-59389 2026-01-27 17:40 2026-01-2 Show GitHub Exploit DB Packet Storm
1412 6.5 警告
Network 		Shiori Shiori Shioriにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2025-60538 2026-01-27 17:40 2026-01-9 Show GitHub Exploit DB Packet Storm
1413 10 緊急
Network 		DDSN Interactive cm3 Acora CMS DDSN Interactiveのcm3 Acora CMSにおけるパスワード管理機能に関する脆弱性 CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み 		CVE-2025-63314 2026-01-27 17:40 2026-01-12 Show GitHub Exploit DB Packet Storm
1414 7.1 重要
Network 		ThemeGoods Photography ThemeGoodsのWordPress用Photographyにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-64217 2026-01-27 17:40 2025-12-18 Show GitHub Exploit DB Packet Storm
1415 6.1 警告
Network 		CodeWithCJ SparkyFitness CodeWithCJのSparkyFitnessにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-65368 2026-01-27 17:40 2026-01-15 Show GitHub Exploit DB Packet Storm
1416 9.8 緊急
Network 		d3dsecurity ZX G12 Firmware d3dsecurityのZX G12 FirmwareにおけるCapture-replay による認証回避に関する脆弱性 CWE-294
Capture-replayによる認証回避 		CVE-2025-65552 2026-01-27 17:40 2026-01-12 Show GitHub Exploit DB Packet Storm
1417 6.5 警告
Adjacent 		d3dsecurity ZX G12 Firmware d3dsecurityのZX G12 FirmwareにおけるCapture-replay による認証回避に関する脆弱性 CWE-294
Capture-replayによる認証回避 		CVE-2025-65553 2026-01-27 17:40 2026-01-12 Show GitHub Exploit DB Packet Storm
1418 8.8 重要
Adjacent 		Hangzhou Hikvision Digital Technology DS-K1T323 Firmware
DS-K5033 Firmware
DS-K1T8005 Firmware
DS-K1T510 Firmware
DS-K1T343 Firmware
DS-K1T673 Firmware
DS-K1T320 Firmware
DS-K1T670&… 		Hangzhou Hikvision Digital TechnologyのDS-K1T105A Firmware等の複数製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2025-66176 2026-01-27 17:40 2026-01-13 Show GitHub Exploit DB Packet Storm
1419 6.5 警告
Network 		Beehive Innovations PAL MCP Server Beehive InnovationsのPAL MCP Serverにおける複数の脆弱性 CWE-22
CWE-552
CVE-2025-66689 2026-01-27 17:40 2026-01-12 Show GitHub Exploit DB Packet Storm
1420 5.4 警告
Network 		AltumCode 66biolinks AltumCodeの66biolinksにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-66939 2026-01-27 17:40 2026-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
304641 - clearswift
f-secure
paul_l_daniels 		mailsweeper
internet_gatekeeper
ripmime 		Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use RFC2231 encoding, which may be interpreted differently by mai… NVD-CWE-Other
CVE-2004-0161 2017-07-11 10:29 2004-10-20 Show GitHub Exploit DB Packet Storm
304642 - clearswift
f-secure
paul_l_daniels 		mailsweeper
internet_gatekeeper
ripmime 		Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME encapsulation that uses RFC822 comment fields, which may be interpreted as othe… NVD-CWE-Other
CVE-2004-0162 2017-07-11 10:29 2004-10-20 Show GitHub Exploit DB Packet Storm
304643 - sygate_technologies secure_enterprise Sygate Secure Enterprise (SSE) 3.5MR3 and earlier does not change the key used to encrypt data, which allows remote attackers to cause a denial of service (resource exhaustion) by capturing a session… NVD-CWE-Other
CVE-2004-0163 2017-07-11 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
304644 - apple mac_os_x
mac_os_x_server 		Unknown vulnerability in Safari web browser for Mac OS X 10.2.8 related to "the display of URLs in the status bar." NVD-CWE-Other
CVE-2004-0166 2017-07-11 10:29 2004-03-15 Show GitHub Exploit DB Packet Storm
304645 - juan_cespedes ltrace Heap-based buffer overflow in the search_for_command function of ltrace 0.3.10, if it is installed setuid, could allow local users to execute arbitrary code via a long filename. NOTE: It is unclear … NVD-CWE-Other
CVE-2004-0172 2017-07-11 10:29 2004-03-15 Show GitHub Exploit DB Packet Storm
304646 - symantec gateway_security_5400 Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote attackers to steal cookies and hijack a management session via a /sgmi URL that cont… NVD-CWE-Other
CVE-2004-0192 2017-07-11 10:29 2004-03-15 Show GitHub Exploit DB Packet Storm
304647 - openbsd openbsd isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service (infinite loop) via an ISAKMP packet with a zero-length payload, as demonstrated by the Striker ISAKMP Protocol… NVD-CWE-Other
CVE-2004-0218 2017-07-11 10:29 2004-05-4 Show GitHub Exploit DB Packet Storm
304648 - openbsd openbsd isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with a malformed IPSEC SA payload, as demonstrated by the Striker ISAKMP Protocol … NVD-CWE-Other
CVE-2004-0219 2017-07-11 10:29 2004-05-4 Show GitHub Exploit DB Packet Storm
304649 - openbsd openbsd isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service via an ISAKMP packet with a malformed Cert Request payload, which causes an integer underflow that is used in a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2004-0220 2017-07-11 10:29 2004-05-4 Show GitHub Exploit DB Packet Storm
304650 - double_precision_incorporated
inter7
gentoo 		courier_mta
sqwebmail
courier-imap
linux 		Multiple buffer overflows in (1) iso2022jp.c or (2) shiftjis.c for Courier-IMAP before 3.0.0, Courier before 0.45, and SqWebMail before 4.0.0 may allow remote attackers to execute arbitrary code "whe… NVD-CWE-Other
CVE-2004-0224 2017-07-11 10:29 2004-04-15 Show GitHub Exploit DB Packet Storm