Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2091 9.8 緊急
Network 		Datadog guarddog Datadogのguarddogにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-22871 2026-01-23 14:17 2026-01-13 Show GitHub Exploit DB Packet Storm
2092 9.8 緊急
Network 		ASUSTeK Computer Inc. 3.0.0.4_386 シリーズ
3.0.0.4_382 シリーズ
3.0.0.4_388 シリーズ
3.0.0.6_102 シリーズ 		複数のASUSTeK COMPUTER製ルーターにおけるコマンドインジェクションの脆弱性 CWE-Other
その他 		CVE-2025-2492 2026-01-23 12:07 2026-01-23 Show GitHub Exploit DB Packet Storm
2093 - - Rockwell Automation Verve Asset Manager Rockwell Automation製Verve Asset Managerにおける複数の脆弱性 CWE-312
CWE-922
CVE-2025-14376
CVE-2025-14377 		2026-01-23 10:52 2026-01-22 Show GitHub Exploit DB Packet Storm
2094 - - Schneider Electric
クアルコム		 EcoStruxure Foxboro DCS V91 DCS Virtualization Server
EcoStruxure Foxboro H92 DCS Standard Workstation
(複数の製品) 		複数のSchneider Electric製品における複数の脆弱性 CWE-119
CWE-121
CWE-1288
CWE-20
CWE-200
CWE-307
CWE-354
CWE-427
CWE-552
CWE-668
CWE-787
CWE-822
CWE-924
CVE-2018-12130
CVE-2022-4046
CVE-2022-47378
CVE-2022-47379
CVE-2022-47380
CVE-2022-47381
CVE-2022-47382
CVE-2022-47383
CVE-2022-47384
CVE-2022-47385
CVE-2022-47386
CV… 		2026-01-23 10:52 2026-01-22 Show GitHub Exploit DB Packet Storm
2095 - - クアルコム (複数の製品) PRIMERGYが搭載する「iRMC S5/S6」における不適切な権限設定の脆弱性 CWE-863
不正な認証 		CVE-2025-65002 2026-01-23 10:52 2026-01-22 Show GitHub Exploit DB Packet Storm
2096 - - トレンドマイクロ Apex Central Trend Micro Apex Centralにおける複数の脆弱性(2026年1月) - CVE-2025-69258
CVE-2025-69259
CVE-2025-69260 		2026-01-23 10:52 2026-01-22 Show GitHub Exploit DB Packet Storm
2097 - - ISC, Inc. BIND ISC BINDにサービス運用妨害(DoS)につながる脆弱性(CVE-2025-13878) CWE-617
到達可能なアサーション 		CVE-2025-13878 2026-01-23 10:52 2026-01-22 Show GitHub Exploit DB Packet Storm
2098 5.3 警告
Network 		Haxx cURL HaxxのcURLにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-10148 2026-01-22 11:35 2025-09-12 Show GitHub Exploit DB Packet Storm
2099 4.3 警告
Network 		Haxx cURL HaxxのcURLにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-10966 2026-01-22 11:35 2025-11-7 Show GitHub Exploit DB Packet Storm
2100 5.9 警告
Network 		Haxx cURL HaxxのcURLにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2025-13034 2026-01-22 11:34 2026-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283321 - macrovision flexnet_connect
update_service 		Multiple buffer overflows in an ActiveX control (boisweb.dll) in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allow remote attackers to execute arbitrary code via the (1) the second … NVD-CWE-Other
CVE-2007-2419 2018-10-17 01:43 2007-06-6 Show GitHub Exploit DB Packet Storm
283322 - burak_yilmaz burak_yilmaz_blog SQL injection vulnerability in bry.asp in Burak Yilmaz Blog 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2007-2420 2018-10-17 01:43 2007-05-2 Show GitHub Exploit DB Packet Storm
283323 - ahhp-portal ahhp-portal Multiple PHP remote file inclusion vulnerabilities in page.php in Ahhp-Portal allow remote attackers to execute arbitrary PHP code via a URL in the (1) fp or (2) sc parameter. CWE-94
Code Injection 		CVE-2007-2428 2018-10-17 01:43 2007-05-2 Show GitHub Exploit DB Packet Storm
283324 - vim_development_group vim The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines. NVD-CWE-Other
CVE-2007-2438 2018-10-17 01:43 2007-05-3 Show GitHub Exploit DB Packet Storm
283325 - vim_development_group vim Successful exploitation requires that the "modelines" option is enabled and the user is tricked into opening a malicious file. NVD-CWE-Other
CVE-2007-2438 2018-10-17 01:43 2007-05-3 Show GitHub Exploit DB Packet Storm
283326 - vim_development_group vim The vendor has addressed this issue with the following patches: VIM Development Group VIM 7.0- VIM Development Group patch 7.0.234 ftp://ftp.vim.org/pub/vim/patches/7.0/7.0.234 VIM Developm… NVD-CWE-Other
CVE-2007-2438 2018-10-17 01:43 2007-05-3 Show GitHub Exploit DB Packet Storm
283327 - png_reference_library libpng The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and 1.2.x before 1.2.17 allows remote attackers to cause a denial of service (application crash) via a grayscale PNG image with a ba… NVD-CWE-noinfo
CVE-2007-2445 2018-10-17 01:43 2007-05-17 Show GitHub Exploit DB Packet Storm
283328 - samba samba Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (ne… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-2446 2018-10-17 01:43 2007-05-15 Show GitHub Exploit DB Packet Storm
283329 - samba samba The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when th… NVD-CWE-Other
CVE-2007-2447 2018-10-17 01:43 2007-05-15 Show GitHub Exploit DB Packet Storm
283330 - oracle database_server Unspecified vulnerability in the Authentication component for Oracle Database 10.1.0.5 and 10.2.0.3 has unknown impact and attack vectors, aka DB05. NOTE: as of 20070424, Oracle has not disputed rel… NVD-CWE-noinfo
CVE-2007-2112 2018-10-17 01:42 2007-04-19 Show GitHub Exploit DB Packet Storm