Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2031	2.3	低 Local	デル	secure connect gateway	デルのsecure connect gatewayにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2024-51539	2026-01-23 14:20	2025-02-25	Show	GitHub Exploit DB Packet Storm

2032	7.5	重要 Network	LlamaIndex	LlamaIndex	LlamaIndexにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2024-58339	2026-01-23 14:20	2026-01-12	Show	GitHub Exploit DB Packet Storm

2033	7.5	重要 Network	langchain	langchain	langchainにおける非効率的な正規表現の複雑さに関する脆弱性	CWE-1333 非効率的な正規表現の複雑さ	CVE-2024-58340	2026-01-23 14:20	2026-01-12	Show	GitHub Exploit DB Packet Storm

2034	5.4	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-11224	2026-01-23 14:20	2026-01-14	Show	GitHub Exploit DB Packet Storm

2035	8.8	重要 Network	ヒューレット・パッカードヒューレット・パッカード・エンタープライズ	OMEN Gaming Hub HP System Event Utility	ヒューレット・パッカードのOMEN Gaming Hub等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-11531	2026-01-23 14:20	2025-12-9	Show	GitHub Exploit DB Packet Storm

2036	6.5	警告 Network	rymcu	forest	rymcuのforestにおける複数の脆弱性	CWE-862 CWE-862 CWE-863	CVE-2025-12924	2026-01-23 14:20	2025-11-10	Show	GitHub Exploit DB Packet Storm

2037	9.8	緊急 Network	rymcu	forest	rymcuのforestにおける複数の脆弱性	CWE-862 CWE-862 CWE-863	CVE-2025-12925	2026-01-23 14:20	2025-11-10	Show	GitHub Exploit DB Packet Storm

2038	7.8	重要 Local	SUPERAntiSpyware	SUPERAntiSpyware	SUPERAntiSpywareにおける危険なメソッドや機能の公開に関する脆弱性	CWE-749 危険なメソッドや機能の公開	CVE-2025-14491	2026-01-23 14:20	2025-12-23	Show	GitHub Exploit DB Packet Storm

2039	7.8	重要 Local	huggingface	transformers	huggingfaceのtransformersにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2025-14920	2026-01-23 14:20	2025-12-23	Show	GitHub Exploit DB Packet Storm

2040	7.8	重要 Local	huggingface	transformers	huggingfaceのtransformersにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2025-14921	2026-01-23 14:19	2025-12-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316371	-	allaire	coldfusion_server	The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not restrict access to the server properly.	NVD-CWE-Other	CVE-1999-0477	2008-09-6 05:17	1999-12-25	Show	GitHub Exploit DB Packet Storm

316372	-	netscape	enterprise_server fasttrack_server	Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request.	NVD-CWE-Other	CVE-1999-0744	2008-09-6 05:17	2000-01-4	Show	GitHub Exploit DB Packet Storm

316373	-	oracle	database_server	Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP.	NVD-CWE-Other	CVE-1999-0784	2008-09-6 05:17	2001-03-12	Show	GitHub Exploit DB Packet Storm

316374	-	freebsd	freebsd	TCP RST denial of service in FreeBSD.	NVD-CWE-Other	CVE-1999-0053	2008-09-6 05:16	1998-10-13	Show	GitHub Exploit DB Packet Storm

316375	-	ssh	ssh	A race condition in the authentication agent mechanism of sshd 1.2.17 allows an attacker to steal another user's credentials.	NVD-CWE-Other	CVE-1999-0248	2008-09-6 05:16	1999-01-1	Show	GitHub Exploit DB Packet Storm

316376	-	freebsd	freebsd	Buffer overflow in FreeBSD lpd through long DNS hostnames.	NVD-CWE-Other	CVE-1999-0299	2008-09-6 05:16	1997-03-5	Show	GitHub Exploit DB Packet Storm

316377	-	d-ic	shop_v50 shop_v52	Cross-site scripting (XSS) vulnerability in DIC shop_v50 3.0 and earlier and shop_v52 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2008-3935	2008-09-6 00:08	2008-09-6	Show	GitHub Exploit DB Packet Storm

316378	-	opendb	opendb	Multiple cross-site scripting (XSS) vulnerabilities in Open Media Collectors Database (OpenDb) 1.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) user_id parameter in an …	CWE-79 Cross-site Scripting	CVE-2008-3937	2008-09-6 00:08	2008-09-6	Show	GitHub Exploit DB Packet Storm

316379	-	opendb	opendb	Cross-site request forgery (CSRF) vulnerability in user_admin.php in Open Media Collectors Database (OpenDb) 1.0.6 allows remote attackers to change arbitrary passwords via an update_password action.	CWE-352 Origin Validation Error	CVE-2008-3938	2008-09-6 00:08	2008-09-6	Show	GitHub Exploit DB Packet Storm

316380	-	avtech	pager_enterprise	Directory traversal vulnerability in the web interface in AVTECH PageR Enterprise before 5.0.7 allows remote attackers to read arbitrary files via directory traversal sequences in the URI.	CWE-22 Path Traversal	CVE-2008-3939	2008-09-6 00:08	2008-09-6	Show	GitHub Exploit DB Packet Storm