Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224161	10	危険	Xine	-	xine-lib における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-5237	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

224162	9.3	危険	Xine	-	xine-lib におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5236	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

224163	9.3	危険	Xine	-	xine-lib の src/demuxers/demux_real.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5235	2012-12-20 18:52	2008-11-25	Show	GitHub Exploit DB Packet Storm

224164	9.3	危険	Xine	-	xine-lib におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5234	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

224165	4.3	警告	Xine	-	xine-lib におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2008-5233	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

224166	10	危険	phpcow	-	PHPCow における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-5227	2012-12-20 18:52	2008-11-25	Show	GitHub Exploit DB Packet Storm

224167	7.5	危険	wportfolio	-	wPortfolio の admin/userinfo.php における admin アカウントのパスワードを変更される脆弱性	CWE-287 不適切な認証	CVE-2008-5221	2012-12-20 18:52	2008-11-25	Show	GitHub Exploit DB Packet Storm

224168	10	危険	wportfolio	-	wPortfolio の admin/upload_form.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5220	2012-12-20 18:52	2008-11-25	Show	GitHub Exploit DB Packet Storm

224169	7.5	危険	videoscript	-	VVideoScript のパスワード変更機能における admin アカウントパスワードを変更される脆弱性	CWE-287 不適切な認証	CVE-2008-5219	2012-12-20 18:52	2008-11-25	Show	GitHub Exploit DB Packet Storm

224170	5	警告	Scriptsez.net	-	ScriptsEz FREEze Greetings における平文パスワードを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5218	2012-12-20 18:52	2008-11-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1431	9.8	CRITICAL Network	telesquare	sdt-cs3b1_firmware	La versión de firmware 1.2.0 del Telesquare SKT LTE Router SDT-CS3B1 contiene una vulnerabilidad de referencia directa a objeto insegura que permite a los atacantes eludir la autorización y acceder a…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2017-20223	2026-04-15 01:57	2026-03-16	Show	GitHub Exploit DB Packet Storm

1432	4.3	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that under certain circumstances could have allowed an authent…	CWE-863 Incorrect Authorization	CVE-2026-2619	2026-04-15 01:55	2026-04-9	Show	GitHub Exploit DB Packet Storm

1433	9.8	CRITICAL Network	telesquare	sdt-cs3b1_firmware	Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious content by exploiting enabled WebDAV HTTP m…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-20224	2026-04-15 01:52	2026-03-16	Show	GitHub Exploit DB Packet Storm

1434	9.8	CRITICAL Network	telesquare	sdt-cs3b1_firmware	El router Telesquare SKT LTE SDT-CS3B1 versión 1.2.0 contiene una vulnerabilidad de carga arbitraria de archivos que permite a atacantes no autenticados cargar contenido malicioso explotando métodos …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-20224	2026-04-15 01:52	2026-03-16	Show	GitHub Exploit DB Packet Storm

1435	8.8	HIGH Network	lfprojects	mlflow	A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the `mlflow/sagemaker/__init__.py` file at lines 161-167. The vulnerability arises from the direct in…	CWE-94 Code Injection	CVE-2025-14287	2026-04-15 01:48	2026-03-16	Show	GitHub Exploit DB Packet Storm

1436	8.8	HIGH Network	lfprojects	mlflow	Una vulnerabilidad de inyección de comandos existe en las versiones de mlflow/mlflow anteriores a la v3.7.0, específicamente en el archivo 'mlflow/sagemaker/__init__.py' en las líneas 161-167. La vul…	CWE-94 Code Injection	CVE-2025-14287	2026-04-15 01:48	2026-03-16	Show	GitHub Exploit DB Packet Storm

1437	9.8	CRITICAL Network	microsoft	bing_images	Improper neutralization of special elements used in an os command ('os command injection') in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.	CWE-78 OS Command	CVE-2026-32191	2026-04-15 01:35	2026-03-20	Show	GitHub Exploit DB Packet Storm

1438	9.8	CRITICAL Network	microsoft	bing_images	Neutralización incorrecta de elementos especiales utilizados en un comando de sistema operativo ('inyección de comandos de sistema operativo') en Microsoft Bing Images permite a un atacante no autori…	CWE-78 OS Command	CVE-2026-32191	2026-04-15 01:35	2026-03-20	Show	GitHub Exploit DB Packet Storm

1439	9.8	CRITICAL Network	microsoft	bing_images	Improper neutralization of special elements used in a command ('command injection') in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.	CWE-77 Command Injection	CVE-2026-32194	2026-04-15 01:35	2026-03-20	Show	GitHub Exploit DB Packet Storm

1440	9.8	CRITICAL Network	microsoft	bing_images	Neutralización incorrecta de elementos especiales utilizados en un comando ('inyección de comandos') en Microsoft Bing Images permite a un atacante no autorizado ejecutar código a través de una red.	CWE-77 Command Injection	CVE-2026-32194	2026-04-15 01:35	2026-03-20	Show	GitHub Exploit DB Packet Storm