Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223991 4.3 警告 Tribal Ltd. - Tribiq CMS Community の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5961 2012-12-20 19:10 2009-01-23 Show GitHub Exploit DB Packet Storm
223992 7.5 危険 Tribal Ltd. - Tribiq CMS Community の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5960 2012-12-20 19:10 2009-01-23 Show GitHub Exploit DB Packet Storm
223993 5 警告 phpstreet - Wbstreet におけるデータベースの資格情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5956 2012-12-20 19:10 2009-01-23 Show GitHub Exploit DB Packet Storm
223994 7.5 危険 phpstreet - Wbstreet の show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5955 2012-12-20 19:10 2009-01-23 Show GitHub Exploit DB Packet Storm
223995 7.5 危険 tiddlywiki - ccTiddly における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5949 2012-12-20 19:10 2009-01-23 Show GitHub Exploit DB Packet Storm
223996 6.8 警告 yapbb - YapBB の include/class_yapbbcooker.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5947 2012-12-20 19:10 2009-01-22 Show GitHub Exploit DB Packet Storm
223997 7.5 危険 PHP-Fusion - PHP-Fusion の readmore.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5946 2012-12-20 19:10 2009-01-22 Show GitHub Exploit DB Packet Storm
223998 7.8 危険 zkesoft - AyeView におけるサービス運用妨害 (メモリ消費またはアプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5937 2012-12-20 19:10 2009-01-21 Show GitHub Exploit DB Packet Storm
223999 5 警告 the net guys - The Net Guys ASPired2Blog におけるユーザ名などを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5931 2012-12-20 19:10 2009-01-21 Show GitHub Exploit DB Packet Storm
224000 7.5 危険 the net guys - The Net Guys ASPired2Blog の admin/blog_comments.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5930 2012-12-20 19:10 2009-01-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1451 4.3 MEDIUM
Network 		google chrome Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page… CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-5891 2026-04-14 20:44 2026-04-9 Show GitHub Exploit DB Packet Storm
1452 8.2 HIGH
Network 		gnu
redhat 		gnutls
openshift_container_platform
enterprise_linux 		A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an … CWE-122
Heap-based Buffer Overflow 		CVE-2025-32990 2026-04-14 20:16 2025-07-10 Show GitHub Exploit DB Packet Storm
1453 8.2 HIGH
Network 		gnu
redhat 		gnutls
openshift_container_platform
enterprise_linux 		Se detectó una falla de desbordamiento de búfer de pila (desviación de uno) en el software GnuTLS, en la lógica de análisis de plantillas de la utilidad certtool. Al leer ciertas configuraciones de u… CWE-122
Heap-based Buffer Overflow 		CVE-2025-32990 2026-04-14 20:16 2025-07-10 Show GitHub Exploit DB Packet Storm
1454 5.3 MEDIUM
Network 		gnu
redhat 		gnutls
openshift_container_platform
enterprise_linux 		A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency (CT) Signed Certificate Timestamp (SCT) extension during X.509 certificate parsing. This flaw a… CWE-295
Improper Certificate Validation  		CVE-2025-32989 2026-04-14 20:16 2025-07-10 Show GitHub Exploit DB Packet Storm
1455 5.3 MEDIUM
Network 		gnu
redhat 		gnutls
openshift_container_platform
enterprise_linux 		Se detectó una vulnerabilidad de sobrelectura del búfer de montón en GnuTLS en la gestión de la extensión de marca de tiempo del certificado firmado (SCT) de Transparencia de Certificado (CT) durante… CWE-295
Improper Certificate Validation  		CVE-2025-32989 2026-04-14 20:16 2025-07-10 Show GitHub Exploit DB Packet Storm
1456 - - - Improper path validation vulnerability in the Gleam compiler's handling of git dependencies allows arbitrary file system modification during dependency download. Dependency names from gleam.toml and… CWE-22
Path Traversal 		CVE-2026-32146 2026-04-14 19:16 2026-04-11 Show GitHub Exploit DB Packet Storm
1457 9.8 CRITICAL
Network 		sqlite sqlite There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recomm… CWE-197
 Numeric Truncation Error 		CVE-2025-6965 2026-04-14 19:16 2025-07-15 Show GitHub Exploit DB Packet Storm
1458 9.8 CRITICAL
Network 		sqlite sqlite Existe una vulnerabilidad en las versiones de SQLite anteriores a la 3.50.2 donde el número de términos agregados podría exceder el número de columnas disponibles. Esto podría causar un problema de c… CWE-197
 Numeric Truncation Error 		CVE-2025-6965 2026-04-14 19:16 2025-07-15 Show GitHub Exploit DB Packet Storm
1459 7.5 HIGH
Network 		- - A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions. This flaw allows an attacker to craft a malicious XML input to libxml2, leading to a denial of ser… CWE-825
 Expired Pointer Dereference 		CVE-2025-49795 2026-04-14 19:16 2025-06-17 Show GitHub Exploit DB Packet Storm
1460 7.5 HIGH
Network 		- - Se detectó una vulnerabilidad de desreferencia de puntero nulo en libxml2 al procesar expresiones XML XPath. Esta falla permite a un atacante manipular una entrada XML maliciosa en libxml2, lo que pr… CWE-825
 Expired Pointer Dereference 		CVE-2025-49795 2026-04-14 19:16 2025-06-17 Show GitHub Exploit DB Packet Storm