Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194431 9.8 緊急
Network 		Artifex Software - Artifex Software MuJS の regexp.c の regemit 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-10141 2017-01-30 11:10 2016-12-20 Show GitHub Exploit DB Packet Storm
194432 7.5 重要
Network 		OTR - Gajim 用 OTR プラグインにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-9107 2017-01-30 11:08 2016-10-9 Show GitHub Exploit DB Packet Storm
194433 8 重要
Network 		ブロケード コミュニケーションズ システムズ株式会社 - Brocade Virtual Traffic Manager におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-8201 2017-01-30 10:58 2016-09-13 Show GitHub Exploit DB Packet Storm
194434 5.5 警告
Local 		LG Electronics - MTK チップセットを使用する LG デバイスのにおける任意のサードパーティアプリケーションにアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2016-10135 2017-01-30 10:46 2016-11-17 Show GitHub Exploit DB Packet Storm
194435 8.8 重要
Network 		MetalGenix - GeniXCMS のメディアリネーム機能におけるファイルをリネームされる脆弱性 CWE-19
データ処理 		CVE-2017-5520 2017-01-30 10:44 2017-01-13 Show GitHub Exploit DB Packet Storm
194436 7.4 重要
Network 		MetalGenix - GeniXCMS のメディアファイルアップロード機能における SSRF 攻撃を実行される脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2017-5518 2017-01-30 10:44 2017-01-13 Show GitHub Exploit DB Packet Storm
194437 5.5 警告
Local 		PHPMailer project - PHPMailer の msgHTML メソッドにおける画像の相対 URL が絶対ローカルファイルパスとして処理される脆弱性 CWE-200
情報漏えい 		CVE-2017-5223 2017-01-30 10:20 2017-01-9 Show GitHub Exploit DB Packet Storm
194438 9.8 緊急
Network 		GNU Project
Fedora Project		 - GNU Guile の REPL サーバにおける任意のコードを実行される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-8606 2017-01-27 18:26 2016-10-11 Show GitHub Exploit DB Packet Storm
194439 5.3 警告
Network 		GNU Project
Fedora Project		 - GNU Guile の mkdir プロシージャにおけるプロセスの umask をゼロに変更される脆弱性 CWE-275
パーミッションの問題 		CVE-2016-8605 2017-01-27 18:25 2016-10-11 Show GitHub Exploit DB Packet Storm
194440 7 重要
Local 		Linux - Synaptics タッチスクリーンドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8451 2017-01-27 17:00 2016-10-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
31 9.8 CRITICAL
Network 		- - SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 45d48d1f2e8e0d73e80bc1fd5310cb57f4547302, the TGA codec's RLE de… New CWE-787
 Out-of-bounds Write 		CVE-2026-40494 2026-04-18 12:16 2026-04-18 Show GitHub Exploit DB Packet Storm
32 9.8 CRITICAL
Network 		- - SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit c930284445ea3ff94451ccd7a57c999eca3bc979, the PSD codec computes… New CWE-787
 Out-of-bounds Write 		CVE-2026-40493 2026-04-18 12:16 2026-04-18 Show GitHub Exploit DB Packet Storm
33 9.8 CRITICAL
Network 		- - SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02, the XWD codec resolves… New CWE-787
 Out-of-bounds Write 		CVE-2026-40492 2026-04-18 12:16 2026-04-18 Show GitHub Exploit DB Packet Storm
34 6.5 MEDIUM
Network 		- - gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP… New CWE-22
Path Traversal 		CVE-2026-40491 2026-04-18 12:16 2026-04-18 Show GitHub Exploit DB Packet Storm
35 7.2 HIGH
Network 		- - SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/manage_location.php. New CWE-89
SQL Injection 		CVE-2026-37344 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
36 7.2 HIGH
Network 		- - SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/manage_user.php. New CWE-89
SQL Injection 		CVE-2026-37343 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
37 7.2 HIGH
Network 		- - SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/view_parked_details.php. New CWE-89
SQL Injection 		CVE-2026-37342 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
38 7.2 HIGH
Network 		- - SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/manage_category.php. New CWE-89
SQL Injection 		CVE-2026-37341 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
39 9.8 CRITICAL
Network 		- - SourceCodester Simple Music Cloud Community System v1.0 is vulnerable to SQL Injection in the file /music/edit_music.php. New CWE-89
SQL Injection 		CVE-2026-37340 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
40 9.8 CRITICAL
Network 		- - SourceCodester Simple Music Cloud Community System v1.0 is vulnerable to SQL Injection in the file /music/view_genre.php. New CWE-89
SQL Injection 		CVE-2026-37339 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm