Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1931 5.4 警告
Network 		Altium Altium On-Prem Enterprise Server AltiumのAltium On-Prem Enterprise Serverにおける複数の脆弱性 CWE-269
CWE-79
CWE-79
CVE-2026-1010 2026-01-26 19:29 2026-01-15 Show GitHub Exploit DB Packet Storm
1932 6.1 警告
Network 		Altium Altium Live AltiumのAltium Liveにおける複数の脆弱性 CWE-116
CWE-79
CWE-79
CVE-2026-1011 2026-01-26 19:29 2026-01-16 Show GitHub Exploit DB Packet Storm
1933 6.5 警告
Network 		ジュニパーネットワークス Junos OS ジュニパーネットワークスのJunos OSにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-21903 2026-01-26 19:29 2026-01-15 Show GitHub Exploit DB Packet Storm
1934 7.5 重要
Network 		ジュニパーネットワークス Junos OS ジュニパーネットワークスのJunos OSにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-21905 2026-01-26 19:29 2026-01-15 Show GitHub Exploit DB Packet Storm
1935 7.5 重要
Network 		ジュニパーネットワークス Junos OS ジュニパーネットワークスのJunos OSにおける例外的な状態の処理に関する脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2026-21906 2026-01-26 19:29 2026-01-15 Show GitHub Exploit DB Packet Storm
1936 5.9 警告
Network 		ジュニパーネットワークス Junos Space ジュニパーネットワークスのJunos Spaceにおける暗号アルゴリズムの使用に関する脆弱性 CWE-327
不完全、または危険な暗号アルゴリズムの使用 		CVE-2026-21907 2026-01-26 19:29 2026-01-15 Show GitHub Exploit DB Packet Storm
1937 7.1 重要
Adjacent 		ジュニパーネットワークス Junos OS Evolved
Junos OS 		ジュニパーネットワークスのJunos OS等の複数製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-21908 2026-01-26 19:29 2026-01-15 Show GitHub Exploit DB Packet Storm
1938 6.5 警告
Adjacent 		ジュニパーネットワークス Junos OS Evolved
Junos OS 		ジュニパーネットワークスのJunos OS等の複数製品における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-21909 2026-01-26 19:29 2026-01-15 Show GitHub Exploit DB Packet Storm
1939 6.5 警告
Adjacent 		ジュニパーネットワークス Junos OS Evolved ジュニパーネットワークスのJunos OS Evolvedにおける計算の誤りに関する脆弱性 CWE-682
計算の誤り 		CVE-2026-21911 2026-01-26 19:29 2026-01-15 Show GitHub Exploit DB Packet Storm
1940 7.5 重要
Network 		ジュニパーネットワークス Junos OS ジュニパーネットワークスのJunos OSにおける初期化に関する脆弱性 CWE-665
不適切な初期化 		CVE-2026-21913 2026-01-26 19:29 2026-01-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283451 - wabbit wabbit_php_gallery Multiple cross-site scripting (XSS) vulnerabilities in showpic.php in Wabbit PHP Gallery 0.9 allow remote attackers to inject arbitrary web script or HTML via the (1) pic and (2) gal parameters. NVD-CWE-Other
CVE-2007-2098 2018-10-17 01:41 2007-04-18 Show GitHub Exploit DB Packet Storm
283452 - openconcept back-end_cms Cross-site scripting (XSS) vulnerability in htdocs/php.php in OpenConcept Back-End CMS 0.4.7 allows remote attackers to inject arbitrary web script or HTML via the page[] parameter. NVD-CWE-Other
CVE-2007-2099 2018-10-17 01:41 2007-04-18 Show GitHub Exploit DB Packet Storm
283453 - fac_guestbook fac_guestbook FAC Guestbook 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/Gdb.mdb. NVD-CWE-Other
CVE-2007-2100 2018-10-17 01:41 2007-04-18 Show GitHub Exploit DB Packet Storm
283454 - my_little_homepage my_little_weblog Cross-site scripting (XSS) vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vector than CVE-2006-6087. NVD-CWE-Other
CVE-2007-2102 2018-10-17 01:41 2007-04-18 Show GitHub Exploit DB Packet Storm
283455 - my_little_homepage my_little_forum Multiple PHP remote file inclusion vulnerabilities in my little forum 1.7 allow remote attackers to execute arbitrary PHP code via a URL in the lang parameter to (1) admin.php and (2) timedifference.… NVD-CWE-Other
CVE-2007-2103 2018-10-17 01:41 2007-04-18 Show GitHub Exploit DB Packet Storm
283456 - ixon_cms ixon_cms Multiple directory traversal vulnerabilities in iXon CMS 0.30 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the theme_url parameter to (1) index.php, (2) p… NVD-CWE-Other
CVE-2007-2104 2018-10-17 01:41 2007-04-18 Show GitHub Exploit DB Packet Storm
283457 - monkey_cms monkey_cms Directory traversal vulnerability in admin/index.php in Monkey CMS 0.0.3 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the admin_skin parameter. NVD-CWE-Other
CVE-2007-2105 2018-10-17 01:41 2007-04-18 Show GitHub Exploit DB Packet Storm
283458 - kai_content_management_system kai_content_management_system Directory traversal vulnerability in index.php in Kai Content Management System (K-CMS) 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the current_them… NVD-CWE-Other
CVE-2007-2106 2018-10-17 01:41 2007-04-18 Show GitHub Exploit DB Packet Storm
283459 - microsoft
oracle 		windows
database_server 		Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.0.1.5, 9.2.0.8, 10.1.0.5, and 10.2.0.2 on Windows allows remote attackers to have an unknown impact, aka DB01. NOTE: as of … NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-2108 2018-10-17 01:41 2007-04-19 Show GitHub Exploit DB Packet Storm
283460 - oracle database_server Unspecified vulnerability in the Core RDBMS component for Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.4 on Windows systems has unknown impact and attack vectors, aka DB03. NOTE: as of 20070424, Or… NVD-CWE-noinfo
CVE-2007-2110 2018-10-17 01:41 2007-04-19 Show GitHub Exploit DB Packet Storm