Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210461 5 警告 ULTRAPOP.JP - i-HTTPD 付属「おまけ BBS」におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7262 2014-12-15 19:15 2014-12-9 Show GitHub Exploit DB Packet Storm
210462 7.5 危険 SAP - SAP SQL Anywhere の .NET Data Provider におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9264 2014-12-15 18:25 2014-12-9 Show GitHub Exploit DB Packet Storm
210463 5 警告 Trihedral Engineering Ltd. - Trihedral Engineering VTScada における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2014-9192 2014-12-15 18:23 2014-12-9 Show GitHub Exploit DB Packet Storm
210464 9 危険 VMware - VMware vCloud Automation Center の VMware Remote Console 機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8373 2014-12-15 18:22 2014-12-9 Show GitHub Exploit DB Packet Storm
210465 4 警告 VMware - AirWatch by VMware On-Premise における任意のテナントから組織の情報および統計データを取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-8372 2014-12-15 18:21 2014-12-10 Show GitHub Exploit DB Packet Storm
210466 4.3 警告 レッドハット - Red Hat JBoss Portal で使用される JBoss RichFaces におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7852 2014-12-15 18:21 2014-12-9 Show GitHub Exploit DB Packet Storm
210467 2.1 注意 ヒューレット・パッカード - Windows および Linux 上で稼働する HP Smart Update Manager における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2608 2014-12-15 18:20 2014-12-9 Show GitHub Exploit DB Packet Storm
210468 4 警告 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるグリッドデータのアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2014-6138 2014-12-15 18:19 2014-12-8 Show GitHub Exploit DB Packet Storm
210469 3.5 注意 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6163 2014-12-15 18:18 2014-12-8 Show GitHub Exploit DB Packet Storm
210470 2.1 注意 IBM - IBM WebSphere DataPower XC10 アプライアンスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-6143 2014-12-15 18:17 2014-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 15, 2026, 12:17 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
21 7.8 HIGH
Local 		- - Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structur… New CWE-125
Out-of-bounds Read 		CVE-2026-27294 2026-04-15 08:16 2026-04-15 Show GitHub Exploit DB Packet Storm
22 7.8 HIGH
Local 		- - Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation … New CWE-122
Heap-based Buffer Overflow 		CVE-2026-27293 2026-04-15 08:16 2026-04-15 Show GitHub Exploit DB Packet Storm
23 7.8 HIGH
Local 		- - Adobe Framemaker versions 2022.8 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issu… New CWE-416
 Use After Free 		CVE-2026-27292 2026-04-15 08:16 2026-04-15 Show GitHub Exploit DB Packet Storm
24 8.6 HIGH
Local 		- - Adobe Framemaker versions 2022.8 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code in the context of the current user. If the app… New CWE-426
 Untrusted Search Path 		CVE-2026-27290 2026-04-15 08:16 2026-04-15 Show GitHub Exploit DB Packet Storm
25 8.8 HIGH
Network 		- - Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, an insecure direct object modification vulnerability in the PUT /api/users/{id} endpoint allows any authenti… New CWE-269
CWE-863
 Improper Privilege Management
 Incorrect Authorization 		CVE-2026-40291 2026-04-15 07:16 2026-04-15 Show GitHub Exploit DB Packet Storm
26 - - - Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose an unauthenticated WCF SOAP endpoint on TCP port 1208 that accepts unsanitized file paths in the ReadLicense action's L… New CWE-73
 External Control of File Name or Path 		CVE-2026-39907 2026-04-15 07:16 2026-04-15 Show GitHub Exploit DB Packet Storm
27 - - - Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose a deprecated .NET Remoting TCP channel that allows remote unauthenticated attackers to leak NTLMv2 machine-account hash… New CWE-441
Confused Deputy 		CVE-2026-39906 2026-04-15 07:16 2026-04-15 Show GitHub Exploit DB Packet Storm
28 8.8 HIGH
Network 		- - Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, an OS Command Injection vulnerability exists in the main/inc/ajax/gradebook.ajax.php endpoint within the exp… New CWE-78
OS Command  		CVE-2026-35196 2026-04-15 07:16 2026-04-15 Show GitHub Exploit DB Packet Storm
29 7.8 HIGH
Local 		- - InCopy versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this is… New CWE-787
 Out-of-bounds Write 		CVE-2026-34631 2026-04-15 07:16 2026-04-15 Show GitHub Exploit DB Packet Storm
30 7.7 HIGH
Network 		- - ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in a Security feature… New CWE-22
Path Traversal 		CVE-2026-34619 2026-04-15 07:16 2026-04-15 Show GitHub Exploit DB Packet Storm