Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1761	5.3	警告 Network	アルバネットワークス株式会社	ArubaOS	アルバネットワークス株式会社のArubaOSにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2025-37179	2026-01-26 19:38	2026-01-13	Show	GitHub Exploit DB Packet Storm

1762	7.8	重要 Local	Linux Debian	Linux Kernel Debian GNU/Linux	Debian等の複数ベンダの製品における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2025-38702	2026-01-26 19:38	2025-09-4	Show	GitHub Exploit DB Packet Storm

1763	5.5	警告 Local	Linux Debian	Linux Kernel Debian GNU/Linux	Debian等の複数ベンダの製品におけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-38706	2026-01-26 19:38	2025-09-4	Show	GitHub Exploit DB Packet Storm

1764	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-39934	2026-01-26 19:37	2025-10-4	Show	GitHub Exploit DB Packet Storm

1765	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-39938	2026-01-26 19:37	2025-10-4	Show	GitHub Exploit DB Packet Storm

1766	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2025-39940	2026-01-26 19:37	2025-10-4	Show	GitHub Exploit DB Packet Storm

1767	4.7	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2025-39941	2026-01-26 19:37	2025-10-4	Show	GitHub Exploit DB Packet Storm

1768	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2025-39945	2026-01-26 19:37	2025-10-4	Show	GitHub Exploit DB Packet Storm

1769	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-39950	2026-01-26 19:37	2025-10-4	Show	GitHub Exploit DB Packet Storm

1770	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2025-39951	2026-01-26 19:37	2025-10-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
283011	-	elxis	elxis_cms	SQL injection vulnerability in mod_banners.php in Elxis CMS before 2006.4 20070613 allows remote attackers to execute arbitrary SQL commands via the mb_tracker cookie. NOTE: the product was patched …	NVD-CWE-Other	CVE-2007-3250	2018-10-17 01:48	2007-06-18	Show	GitHub Exploit DB Packet Storm

283012	-	portalapp	portalapp	PortalApp stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for 8691.mdb, a different vector …	NVD-CWE-Other	CVE-2007-3252	2018-10-17 01:48	2007-06-18	Show	GitHub Exploit DB Packet Storm

283013	-	xythos	enterprise_document_manager	Multiple cross-site scripting (XSS) vulnerabilities in Xythos Enterprise Document Manager (XEDM) before 5.0.25.8, and 6.x before 6.0.46.1, allow remote authenticated users to inject arbitrary web scr…	NVD-CWE-Other	CVE-2007-3254	2018-10-17 01:48	2007-06-28	Show	GitHub Exploit DB Packet Storm

283014	-	xythos	enterprise_document_manager	Multiple cross-site request forgery (CSRF) vulnerabilities in Xythos Enterprise Document Manager (XEDM) before 5.0.25.8, and 6.x before 6.0.46.1, allow remote authenticated users to execute commands …	NVD-CWE-Other	CVE-2007-3255	2018-10-17 01:48	2007-06-28	Show	GitHub Exploit DB Packet Storm

283015	-	xythos	digital_locker enterprise_document_manager webfile_server	Xythos Enterprise Document Manager (XEDM), Digital Locker (XDL), and possibly WebFile Server before 6.0.46.1 allow remote authenticated users to associate arbitrary Content-Type HTTP headers with doc…	NVD-CWE-Other	CVE-2007-3256	2018-10-17 01:48	2007-06-28	Show	GitHub Exploit DB Packet Storm

283016	-	gnome	evolution	Camel (camel-imap-folder.c) in the mailer component for Evolution Data Server 1.11 allows remote IMAP servers to execute arbitrary code via a negative SEQUENCE value in GData, which is used as an arr…	NVD-CWE-Other	CVE-2007-3257	2018-10-17 01:48	2007-06-20	Show	GitHub Exploit DB Packet Storm

283017	-	vincent_hor	calendarix	Calendarix 0.7.20070307 allows remote attackers to obtain sensitive information via (1) an invalid month[] parameter to calendar.php, (2) an invalid catview[] parameter to cal_week.php in a week oper…	NVD-CWE-Other	CVE-2007-3259	2018-10-17 01:48	2007-06-27	Show	GitHub Exploit DB Packet Storm

283018	-	ifnet	webif.cgi	Directory traversal vulnerability in webif.cgi in ifnet WEBIF allows remote attackers to include and execute arbitrary local files a .. (dot dot) in the outconfig parameter.	NVD-CWE-Other	CVE-2007-3266	2018-10-17 01:48	2007-06-20	Show	GitHub Exploit DB Packet Storm

283019	-	fuzzylime_forum	fuzzylime_forum	Cross-site scripting (XSS) vulnerability in low.php in Fuzzylime Forum 1.01b and earlier allows remote attackers to inject arbitrary web script or HTML via the fromaction parameter in a log action, a…	NVD-CWE-Other	CVE-2007-3267	2018-10-17 01:48	2007-06-20	Show	GitHub Exploit DB Packet Storm

283020	-	papoo	papoo_cms_light	Multiple cross-site scripting (XSS) vulnerabilities in Papoo Light 3.6 before 20070611 allow remote attackers to inject arbitrary web script or HTML via (1) the URI in a GET request or (2) the Title …	NVD-CWE-Other	CVE-2007-3269	2018-10-17 01:48	2007-06-20	Show	GitHub Exploit DB Packet Storm