Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200741	4.3	警告 Network	サイボウズ	-	サイボウズ Office におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-1151	2016-02-23 16:28	2016-02-15	Show	GitHub Exploit DB Packet Storm

200742	5.4	警告 Network	サイボウズ	-	サイボウズ Office におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-8484 CVE-2015-8485 CVE-2015-8486 CVE-2016-1152	2016-02-23 16:27	2016-02-15	Show	GitHub Exploit DB Packet Storm

200743	4.3	警告 Network	サイボウズ	-	サイボウズ Office における情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2015-8487	2016-02-23 16:27	2016-02-15	Show	GitHub Exploit DB Packet Storm

200744	4.3	警告 Network	サイボウズ	-	サイボウズ Office における情報漏えいの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-8488	2016-02-23 16:26	2016-02-15	Show	GitHub Exploit DB Packet Storm

200745	6.5	警告 Network	サイボウズ	-	サイボウズ Office におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2015-8489 CVE-2016-1153	2016-02-23 16:25	2016-02-15	Show	GitHub Exploit DB Packet Storm

200746	4.3	警告	Apache Software Foundation	-	Apache Solr の Admin UI の Stats ページの webapp/web/js/scripts/plugins.js におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8797	2016-02-23 16:20	2015-08-24	Show	GitHub Exploit DB Packet Storm

200747	4.3	警告	Apache Software Foundation	-	Apache Solr の Admin UI の webapp/web/js/scripts/schema-browser.js におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8796	2016-02-23 16:20	2015-08-16	Show	GitHub Exploit DB Packet Storm

200748	4.3	警告	Apache Software Foundation	-	Apache Solr の Admin UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8795	2016-02-23 16:20	2015-04-6	Show	GitHub Exploit DB Packet Storm

200749	4.3	警告	Roundcube.net	-	Roundcube の program/include/rcmail.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8793	2016-02-23 16:15	2015-06-5	Show	GitHub Exploit DB Packet Storm

200750	6.1	警告	シスコシステムズ	-	Cisco Industrial Ethernet 2000 デバイス上で稼動する Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-1330	2016-02-23 13:58	2016-02-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 17, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
161	4.3	MEDIUM Network	-	-	In Wago Smart Designer in versions up to 2.33.1 a low privileged remote attacker may enumerate projects and usernames through iterative requests to an specific endpoint. New	CWE-203 Information Exposure Through Discrepancy	CVE-2023-5872	2026-04-16 14:16	2026-04-16	Show	GitHub Exploit DB Packet Storm

162	8.8	HIGH Network	-	-	In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, i… New	CWE-1242 Inclusion of Undocumented Features or Chicken Bits	CVE-2023-3634	2026-04-16 14:16	2026-04-16	Show	GitHub Exploit DB Packet Storm

163	5.9	MEDIUM Network	huawei	harmonyos	Race condition vulnerability in the notification service. Impact: Successful exploitation of this vulnerability may affect availability. New	CWE-362 Race Condition	CVE-2026-34850	2026-04-16 14:05	2026-04-13	Show	GitHub Exploit DB Packet Storm

164	7.5	HIGH Network	huawei	harmonyos	Race condition vulnerability in the event notification module. Impact: Successful exploitation of this vulnerability may affect availability. New	CWE-362 Race Condition	CVE-2026-34851	2026-04-16 14:01	2026-04-13	Show	GitHub Exploit DB Packet Storm

165	6.5	MEDIUM Network	huawei	harmonyos	Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability. New	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-34852	2026-04-16 13:54	2026-04-13	Show	GitHub Exploit DB Packet Storm

166	7.5	HIGH Network	huawei	harmonyos emui	Permission bypass vulnerability in the LBS module. Impact: Successful exploitation of this vulnerability may affect availability. New	CWE-270 Privilege Context Switching Error	CVE-2026-34853	2026-04-16 13:52	2026-04-13	Show	GitHub Exploit DB Packet Storm

167	7.5	HIGH Network	huawei	harmonyos	UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability. New	CWE-362 Race Condition	CVE-2026-34856	2026-04-16 13:47	2026-04-13	Show	GitHub Exploit DB Packet Storm

168	6.5	MEDIUM Network	huawei	harmonyos	Access control vulnerability in the memo module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. New	CWE-284 Improper Access Control	CVE-2026-34860	2026-04-16 13:45	2026-04-13	Show	GitHub Exploit DB Packet Storm

169	6.4	MEDIUM Network	-	-	The Vantage theme for WordPress is vulnerable to Stored Cross-Site Scripting via Gallery block text content in versions up to, and including, 1.20.32 due to insufficient output escaping in the galler… New	CWE-79 Cross-site Scripting	CVE-2026-5070	2026-04-16 13:17	2026-04-16	Show	GitHub Exploit DB Packet Storm

170	6.1	MEDIUM Network	-	-	The CodeColorer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'class' parameter in 'cc' comment shortcode in versions up to, and including, 0.10.1 due to insufficient inpu… New	CWE-79 Cross-site Scripting	CVE-2026-4032	2026-04-16 13:17	2026-04-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed