Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1621	6.7	警告 Local	デル	PowerFlex Manager Powerflex Rack Release Certification Matrix PowerFlex appliance Intelligent Catalog Software data lakehouse insightiq	デルのdata lakehouse等の複数製品における重要な情報のセキュアでない格納に関する脆弱性	CWE-922 重要な情報のセキュアでない格納	CVE-2024-37144	2026-01-27 17:29	2024-12-10	Show	GitHub Exploit DB Packet Storm

1622	8.8	重要 Network	ジュニパーネットワークス	J-Web Junos OS	ジュニパーネットワークス等の複数ベンダの製品におけるXpath インジェクションの脆弱性	CWE-643 Xpathインジェクション	CVE-2024-39565	2026-01-27 17:29	2024-07-10	Show	GitHub Exploit DB Packet Storm

1623	9.8	緊急 Network	Sangfor Technologies	Operation and Maintenance Security Management System	Sangfor TechnologiesのOperation and Maintenance Security Management Systemにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2025-15499	2026-01-27 17:29	2026-01-9	Show	GitHub Exploit DB Packet Storm

1624	9.8	緊急 Network	Sangfor Technologies	Operation and Maintenance Security Management System	Sangfor TechnologiesのOperation and Maintenance Security Management Systemにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2025-15500	2026-01-27 17:29	2026-01-9	Show	GitHub Exploit DB Packet Storm

1625	-	-	Delta Electronics, INC.	DIAView	Delta Electronics製DIAViewにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-0975	2026-01-27 12:25	2026-01-26	Show	GitHub Exploit DB Packet Storm

1626	-	-	Schneider Electric	EcoStruxure Process Expert	Schneider Electric製EcoStruxure Process Expertにおけるインストール時のファイルアクセス権の設定が不適切な脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-13905	2026-01-27 12:25	2026-01-26	Show	GitHub Exploit DB Packet Storm

1627	-	-	AutomationDirect	CLICK Programmable Logic Controller	AutomationDirect製CLICK Programmable Logic Controllerにおける複数の脆弱性	CWE-256 CWE-261	CVE-2025-25051 CVE-2025-67652	2026-01-27 12:25	2026-01-26	Show	GitHub Exploit DB Packet Storm

1628	-	-	David Reid	dr_flac	dr_flacにおける整数オーバーフローの脆弱性	-	CVE-2025-14369	2026-01-27 12:25	2026-01-26	Show	GitHub Exploit DB Packet Storm

1629	-	-	Rockwell Automation	CompactLogix	Rockwell Automation製CompactLogix 5370における数値の入力に対する不適切な検証の脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2025-11743	2026-01-27 12:25	2026-01-26	Show	GitHub Exploit DB Packet Storm

1630	-	-	ジョンソンコントロールズ	iSTAR Configuration Utility (ICU) tool	Johnson Controls製iSTAR Configuration Utility (ICU) toolにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2025-26386	2026-01-27 12:25	2026-01-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
304331	-	phpgroupware	phpgroupware	Multiple cross-site scripting (XSS) vulnerabilities in Phpgroupware (aka webdistro) 0.9.16.002 and earlier allow remote attackers to insert arbitrary HTML or web script, as demonstrated with a reques…	NVD-CWE-Other	CVE-2004-0875	2017-07-11 10:30	2004-12-23	Show	GitHub Exploit DB Packet Storm

304332	-	getmail gentoo slackware	getmail linux slackware_linux	getmail 4.x before 4.2.0, when run as root, allows local users to overwrite arbitrary files via a symlink attack on an mbox file.	NVD-CWE-Other	CVE-2004-0880	2017-07-11 10:30	2005-01-27	Show	GitHub Exploit DB Packet Storm

304333	-	getmail gentoo slackware	getmail linux slackware_linux	getmail 4.x before 4.2.0, and other versions before 3.2.5, when run as root, allows local users to write files in arbitrary directories via a symlink attack on subdirectories in the maildir.	NVD-CWE-Other	CVE-2004-0881	2017-07-11 10:30	2005-01-27	Show	GitHub Exploit DB Packet Storm

304334	-	linux suse	linux_kernel suse_linux	SUSE Linux Enterprise Server 9 on the S/390 platform does not properly handle a certain privileged instruction, which allows local users to gain root privileges.	NVD-CWE-Other	CVE-2004-0887	2017-07-11 10:30	2005-01-27	Show	GitHub Exploit DB Packet Storm

304335	-	easy_software_products gnome kde pdftohtml tetex xpdf debian gentoo redhat suse ubuntu	cups gpdf koffice kpdf pdftohtml tetex xpdf debian_linux linux kde enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linu…	Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a differen…	NVD-CWE-Other	CVE-2004-0889	2017-07-11 10:30	2005-01-27	Show	GitHub Exploit DB Packet Storm

304336	-	mozilla	mozilla thunderbird	The Linux install .tar.gz archives for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8, create certain files with insecure permissions, which could allow …	NVD-CWE-Other	CVE-2004-0907	2017-07-11 10:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

304337	-	mozilla	mozilla thunderbird	Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers to trick users into performing unexpected actions, including installing softwar…	NVD-CWE-Other	CVE-2004-0909	2017-07-11 10:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

304338	-	debian	netkit	telnetd for netkit 0.17 and earlier, and possibly other versions, on Debian GNU/Linux allows remote attackers to cause a denial of service (free of an invalid pointer), a different vulnerability than…	NVD-CWE-Other	CVE-2004-0911	2017-07-11 10:30	2004-11-3	Show	GitHub Exploit DB Packet Storm

304339	-	ecartis	ecartis	Unknown vulnerability in ecartis 0.x before 0.129a+1.0.0-snap20020514-1.3 and 1.x before 1.0.0+cvs.20030911-8 allows attackers in the same domain to gain administrator privileges and modify configura…	NVD-CWE-Other	CVE-2004-0913	2017-07-11 10:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

304340	-	viewcvs debian	viewcvs debian_linux	Multiple unknown vulnerabilities in viewcvs before 0.9.2, when exporting a repository as a tar archive, does not properly implement the hide_cvsroot and forbidden settings, which could allow remote a…	NVD-CWE-Other	CVE-2004-0915	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm