Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224341 7.5 危険 stash - Stash における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4590 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
224342 5 警告 Matthias Wandel - jhead の DoCommand 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4575 2012-12-20 18:52 2008-10-15 Show GitHub Exploit DB Packet Storm
224343 7.5 危険 real-estate-scripts - Real Estate Classifieds の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4570 2012-12-20 18:52 2008-10-15 Show GitHub Exploit DB Packet Storm
224344 7.5 危険 xigla - XIGLA Software Absolute Poll Manager XE の xlacomments.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4569 2012-12-20 18:52 2008-10-15 Show GitHub Exploit DB Packet Storm
224345 6.8 警告 VideoLAN - VLC Media Player における任意のメモリを上書きされる脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4558 2012-12-20 18:52 2008-10-14 Show GitHub Exploit DB Packet Storm
224346 7.2 危険 Fabrice Bellard - Debian GNU/Linux 上で稼動する qemu の qemu-make-debian-root における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4553 2012-12-20 18:52 2008-10-15 Show GitHub Exploit DB Packet Storm
224347 5 警告 strongSwan - strongSwan におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4551 2012-12-20 18:52 2008-10-14 Show GitHub Exploit DB Packet Storm
224348 9.3 危険 rtssentry - RTS Sentry の PTZCamPanelCtrl ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4548 2012-12-20 18:52 2008-10-14 Show GitHub Exploit DB Packet Storm
224349 7.5 危険 PHP-Fusion - PHP-Fusion 用の Recepies モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4527 2012-12-20 18:52 2008-10-9 Show GitHub Exploit DB Packet Storm
224350 7.5 危険 PHP-Fusion - PHP-Fusion 用の World of Warcraft tracker infusion モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4521 2012-12-20 18:52 2008-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1511 10.0 CRITICAL
Network 		praison praisonaiagents PraisonAI is a multi-agent teams system. Prior to version 1.5.90, execute_code() in praisonai-agents runs attacker-controlled Python inside a three-layer sandbox that can be fully bypassed by passing… CWE-693
 Protection Mechanism Failure 		CVE-2026-34938 2026-04-15 03:07 2026-04-4 Show GitHub Exploit DB Packet Storm
1512 6.5 MEDIUM
Network 		rti connext_professional Buffer Over-read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.This issue affects Connext Professional: from 7.4.0 before 7.7.0, from 7.0.0 before 7.3.1.1, from 6… CWE-126
CWE-125
 Buffer Over-read
Out-of-bounds Read 		CVE-2026-2394 2026-04-15 03:00 2026-04-1 Show GitHub Exploit DB Packet Storm
1513 6.5 MEDIUM
Network 		rti connext_professional Vulnerabilidad de lectura excesiva de búfer en RTI Connext Professional (Core Libraries) permite la lectura excesiva de búferes. Este problema afecta a Connext Professional: desde 7.4.0 antes de 7.7.… CWE-126
CWE-125
 Buffer Over-read
Out-of-bounds Read 		CVE-2026-2394 2026-04-15 03:00 2026-04-1 Show GitHub Exploit DB Packet Storm
1514 5.4 MEDIUM
Network 		jexactyl jexactyl Jexactyl is a customisable game management panel and billing system. Commits after 025e8dbb0daaa04054276bda814d922cf4af58da and before e28edb204e80efab628d1241198ea4f079779cfd inject server-side obje… CWE-79
Cross-site Scripting 		CVE-2026-33061 2026-04-15 02:56 2026-03-20 Show GitHub Exploit DB Packet Storm
1515 5.4 MEDIUM
Network 		jexactyl jexactyl exactyl es un panel de gestión de juegos y sistema de facturación personalizable. Commits después de 025e8dbb0daaa04054276bda814d922cf4af58da y antes de e28edb204e80efab628d1241198ea4f079779cfd inyec… CWE-79
Cross-site Scripting 		CVE-2026-33061 2026-04-15 02:56 2026-03-20 Show GitHub Exploit DB Packet Storm
1516 7.8 HIGH
Local 		foxit pdf_editor
pdf_reader 		The application's update service, when checking for updates, loads certain system libraries from a search path that includes directories writable by low‑privileged users and is not strictly restricte… CWE-427
 Uncontrolled Search Path Element 		CVE-2026-3775 2026-04-15 02:56 2026-04-1 Show GitHub Exploit DB Packet Storm
1517 7.8 HIGH
Local 		foxit pdf_editor
pdf_reader 		El servicio de actualización de la aplicación, al buscar actualizaciones, carga ciertas bibliotecas del sistema desde una ruta de búsqueda que incluye directorios escribibles por usuarios con pocos p… CWE-427
 Uncontrolled Search Path Element 		CVE-2026-3775 2026-04-15 02:56 2026-04-1 Show GitHub Exploit DB Packet Storm
1518 5.5 MEDIUM
Local 		foxit pdf_editor
pdf_reader 		The application does not validate the presence of required appearance (AP) data before accessing stamp annotation resources. When a PDF contains a stamp annotation missing its AP entry, the code cont… CWE-476
 NULL Pointer Dereference 		CVE-2026-3776 2026-04-15 02:55 2026-04-1 Show GitHub Exploit DB Packet Storm
1519 5.5 MEDIUM
Local 		foxit pdf_editor
pdf_reader 		La aplicación no valida la presencia de los datos de apariencia (AP) requeridos antes de acceder a los recursos de anotación de sello. Cuando un PDF contiene una anotación de sello a la que le falta … CWE-476
 NULL Pointer Dereference 		CVE-2026-3776 2026-04-15 02:55 2026-04-1 Show GitHub Exploit DB Packet Storm
1520 7.8 HIGH
Local 		foxit pdf_editor
pdf_reader 		The application does not properly validate the lifetime and validity of internal view cache pointers after JavaScript changes the document zoom and page state. When a script modifies the zoom propert… CWE-416
 Use After Free 		CVE-2026-3777 2026-04-15 02:54 2026-04-1 Show GitHub Exploit DB Packet Storm