Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1651 9.8 緊急
Network 		10-Strike Software network inventory explorer 10-Strike Softwareのnetwork inventory explorerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-47772 2026-01-26 19:42 2026-01-15 Show GitHub Exploit DB Packet Storm
1652 5.3 警告
Network 		Umbraco Umbraco CMS UmbracoのUmbraco CMSにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2021-47776 2026-01-26 19:42 2026-01-15 Show GitHub Exploit DB Packet Storm
1653 4.3 警告
Network 		- AvertaのWordPress用Popup and Slider Builder by Depicter - Add Email collecting Popup, Popup Modal, Coupon Popup, Image Slider, Carousel Slider, Post Slider Carouselにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2022-47176 2026-01-26 19:42 2024-12-13 Show GitHub Exploit DB Packet Storm
1654 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2022-49852 2026-01-26 19:42 2025-05-1 Show GitHub Exploit DB Packet Storm
1655 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおけるリソースの初期化の不備に関する脆弱性 CWE-909
リソースの初期化の不備 		CVE-2022-49865 2026-01-26 19:42 2025-05-1 Show GitHub Exploit DB Packet Storm
1656 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2022-49970 2026-01-26 19:42 2025-06-18 Show GitHub Exploit DB Packet Storm
1657 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおけるリソースの初期化の不備に関する脆弱性 CWE-909
リソースの初期化の不備 		CVE-2022-50169 2026-01-26 19:42 2025-06-18 Show GitHub Exploit DB Packet Storm
1658 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効なライフタイム後のリソースの解放の欠如に関する脆弱性 CWE-772
有効なライフタイム後のリソースの解放の欠如 		CVE-2022-50189 2026-01-26 19:42 2025-06-18 Show GitHub Exploit DB Packet Storm
1659 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2022-50270 2026-01-26 19:42 2025-09-15 Show GitHub Exploit DB Packet Storm
1660 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2022-50470 2026-01-26 19:42 2025-10-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283771 - reamday_enterprises magic_news_plus Cross-site scripting (XSS) vulnerability in Magic News Plus 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the link_parameters parameter in (1) news.php and (2) n_layouts.ph… CWE-79
Cross-site Scripting 		CVE-2007-1142 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm
283772 - jeunes-webmasters j-web_pics_navigator Directory traversal vulnerability in pn-menu.php in J-Web Pics Navigator 1.0 allows remote attackers to list arbitrary directories via a .. (dot dot) in the dir parameter. CWE-22
Path Traversal 		CVE-2007-1143 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm
283773 - comscripts j-web_pics_navigator Directory traversal vulnerability in jwpn-photos.php in J-Web Pics Navigator 2.0 allows remote attackers to list arbitrary directories via a .. (dot dot) in the dir parameter. CWE-22
Path Traversal 		CVE-2007-1144 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm
283774 - comscripts j-web_pics_navigator J-Web Pics Navigator is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve and edit the… CWE-22
Path Traversal 		CVE-2007-1144 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm
283775 - kayako esupport Multiple cross-site scripting (XSS) vulnerabilities in Kayako SupportSuite - ESupport 3.00.13 and 3.04.10 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related… CWE-79
Cross-site Scripting 		CVE-2007-1145 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm
283776 - delmaa.com arabhost PHP remote file inclusion vulnerability in function.php in arabhost allows remote attackers to execute arbitrary PHP code via a URL in the adminfolder parameter. NVD-CWE-Other
CVE-2007-1146 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm
283777 - hbm hbm PHP remote file inclusion vulnerability in view.php in hbm allows remote attackers to execute arbitrary PHP code via a URL in the hbmpath parameter. CWE-94
Code Injection 		CVE-2007-1147 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm
283778 - lovecms lovecms PHP remote file inclusion vulnerability in install/index.php in LoveCMS 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the step parameter. CWE-94
Code Injection 		CVE-2007-1148 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm
283779 - lovecms lovecms Multiple directory traversal vulnerabilities in LoveCMS 1.4 allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the step parameter to install/index.php or (2) the load parameter … CWE-22
Path Traversal 		CVE-2007-1149 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm
283780 - lovecms lovecms Unrestricted file upload vulnerability in LoveCMS 1.4 allows remote authenticated administrators to upload arbitrary files to /modules/content/pictures/tmp/. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-1150 2018-10-17 01:36 2007-03-3 Show GitHub Exploit DB Packet Storm