Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223451	5	警告	freedesktop.org	-	Poppler の FormWidgetChoice::loadDefaults 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-0755	2012-12-20 19:10	2009-03-3	Show	GitHub Exploit DB Packet Storm

223452	10	危険	シックス・アパート株式会社	-	Movable Type Pro などにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-0752	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223453	5	警告	Yaws	-	Yaws におけるサービス運用妨害 (メモリ消費およびクラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0751	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223454	7.5	危険	tombstone	-	txtSQL 用の smNews example スクリプトにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0750	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223455	4.3	警告	Pebble	-	Pebble におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0736	2012-12-20 19:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

223456	7.5	危険	tony iha kazungu	-	taifajobs の jobdetails.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0727	2012-12-20 19:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

223457	7.5	危険	potato-scripts	-	Potato News の admin.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0722	2012-12-20 19:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

223458	5	警告	vlad alexa mancini	-	PHPFootball の filter.php におけるパスワードハッシュを取得される脆弱性	CWE-200 情報漏えい	CVE-2009-0711	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

223459	4.3	警告	vlad alexa mancini	-	PHPFootball におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0710	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

223460	7.5	危険	vlad alexa mancini	-	PHPFootball の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0709	2012-12-20 19:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1611	9.8	CRITICAL Network	sqlite	sqlite	Existe una vulnerabilidad en las versiones de SQLite anteriores a la 3.50.2 donde el número de términos agregados podría exceder el número de columnas disponibles. Esto podría causar un problema de c…	CWE-197 Numeric Truncation Error	CVE-2025-6965	2026-04-14 19:16	2025-07-15	Show	GitHub Exploit DB Packet Storm

1612	7.5	HIGH Network	-	-	A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions. This flaw allows an attacker to craft a malicious XML input to libxml2, leading to a denial of ser…	CWE-825 Expired Pointer Dereference	CVE-2025-49795	2026-04-14 19:16	2025-06-17	Show	GitHub Exploit DB Packet Storm

1613	7.5	HIGH Network	-	-	Se detectó una vulnerabilidad de desreferencia de puntero nulo en libxml2 al procesar expresiones XML XPath. Esta falla permite a un atacante manipular una entrada XML maliciosa en libxml2, lo que pr…	CWE-825 Expired Pointer Dereference	CVE-2025-49795	2026-04-14 19:16	2025-06-17	Show	GitHub Exploit DB Packet Storm

1614	8.1	HIGH Network	nozominetworks	cmc guardian	A path traversal vulnerability was discovered in the Import Arc data archive functionality due to insufficient validation of the input file. An authenticated user with limited privileges, by uploadin…	CWE-22 Path Traversal	CVE-2025-40898	2026-04-14 19:16	2025-12-18	Show	GitHub Exploit DB Packet Storm

1615	5.4	MEDIUM Network	nozominetworks	cmc guardian	A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. A malicious authenticated user with the required…	CWE-79 Cross-site Scripting	CVE-2025-40894	2026-04-14 19:16	2026-03-4	Show	GitHub Exploit DB Packet Storm

1616	5.4	MEDIUM Network	nozominetworks	cmc guardian	Se descubrió una vulnerabilidad de inyección HTML almacenada en la funcionalidad del Panel de Nodos Alertados debido a una validación inadecuada en un parámetro de entrada. Un usuario autenticado ma…	CWE-79 Cross-site Scripting	CVE-2025-40894	2026-04-14 19:16	2026-03-4	Show	GitHub Exploit DB Packet Storm

1617	6.1	MEDIUM Network	nozominetworks	cmc guardian	A Stored HTML Injection vulnerability was discovered in the Asset List functionality due to improper validation of network traffic data. An unauthenticated attacker can send specially crafted network…	CWE-79 Cross-site Scripting	CVE-2025-40893	2026-04-14 19:16	2025-12-18	Show	GitHub Exploit DB Packet Storm

1618	8.9	HIGH Network	nozominetworks	cmc guardian	A Stored Cross-Site Scripting vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a mal…	CWE-79 Cross-site Scripting	CVE-2025-40892	2026-04-14 19:16	2025-12-18	Show	GitHub Exploit DB Packet Storm

1619	4.7	MEDIUM Network	nozominetworks	cmc guardian	A Stored HTML Injection vulnerability was discovered in the Time Machine Snapshot Diff functionality due to improper validation of network traffic data. An unauthenticated attacker can send specially…	CWE-79 Cross-site Scripting	CVE-2025-40891	2026-04-14 19:16	2025-12-18	Show	GitHub Exploit DB Packet Storm

1620	6.6	MEDIUM Local	-	-	TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Erra…	CWE-125 Out-of-bounds Read	CVE-2025-2884	2026-04-14 19:16	2025-06-11	Show	GitHub Exploit DB Packet Storm