Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224471 4.9 警告 レッドハット - Fedora 上で稼動している Linux カーネルの utrace サブシステム用の特定の Fedora パッチにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-3832 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
224472 5 警告 swfdec - Swfdec におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3796 2012-12-20 18:52 2008-08-27 Show GitHub Exploit DB Packet Storm
224473 6.8 警告 VideoLAN - VLC Media Player の modules/access/mms/mmstu.c 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2008-3794 2012-12-20 18:52 2008-08-26 Show GitHub Exploit DB Packet Storm
224474 6.8 警告 PicturesPro - PICTURESPRO Photo Cart における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3788 2012-12-20 18:52 2008-08-26 Show GitHub Exploit DB Packet Storm
224475 4.3 警告 PicturesPro - PICTURESPRO Photo Cart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3786 2012-12-20 18:52 2008-08-26 Show GitHub Exploit DB Packet Storm
224476 7.5 危険 review-script - Five Star Review Script の recommend.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3780 2012-12-20 18:52 2008-08-26 Show GitHub Exploit DB Packet Storm
224477 4.3 警告 review-script - Five Star Review Script の search/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3779 2012-12-20 18:52 2008-08-26 Show GitHub Exploit DB Packet Storm
224478 7.5 危険 simasy - Simasy CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3774 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
224479 4.3 警告 vBulletin Solutions, Inc. - vBulletin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3773 2012-12-20 18:52 2008-08-18 Show GitHub Exploit DB Packet Storm
224480 7.5 危険 turnkey web tools - Turnkey Web Tools SunShop Shopping Cart の class.ajax.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3768 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2091 5.3 MEDIUM
Network 		- - Insertion of Sensitive Information Into Sent Data vulnerability in Pär Thernström Simple History simple-history allows Retrieve Embedded Sensitive Data.This issue affects Simple History: from n/a thr… CWE-201
 Insertion of Sensitive Information Into Sent Data 		CVE-2026-39473 2026-04-14 02:16 2026-04-8 Show GitHub Exploit DB Packet Storm
2092 7.6 HIGH
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPMU DEV - Your All-in-One WordPress Platform Broken Link Checker broken-link-checker allows Blin… CWE-89
SQL Injection 		CVE-2026-39466 2026-04-14 02:16 2026-04-8 Show GitHub Exploit DB Packet Storm
2093 - - - Rejected reason: This CVE is a duplicate of another CVE.** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-39940. Reason: This candidate is a reservation duplicate of CVE-2026-399… - CVE-2026-35578 2026-04-14 02:16 2026-04-8 Show GitHub Exploit DB Packet Storm
2094 9.8 CRITICAL
Network 		h3 h3 H3 is a minimal H(TTP) framework built for high performance and portability. Prior to 1.15.5, there is a critical HTTP Request Smuggling vulnerability. readRawBody is doing a strict case-sensitive ch… CWE-444
HTTP Request Smuggling 		CVE-2026-23527 2026-04-14 02:16 2026-01-16 Show GitHub Exploit DB Packet Storm
2095 9.8 CRITICAL
Network 		h3 h3 H3 es un framework H(TTP) mínimo diseñado para alto rendimiento y portabilidad. Antes de 1.15.5, existe una vulnerabilidad crítica de contrabando de solicitudes HTTP. readRawBody realiza una comproba… CWE-444
HTTP Request Smuggling 		CVE-2026-23527 2026-04-14 02:16 2026-01-16 Show GitHub Exploit DB Packet Storm
2096 8.3 HIGH
Network 		scitokens scitokens_cpp_library SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass when processing path-based scopes in … CWE-23
 Relative Path Traversal 		CVE-2026-32725 2026-04-14 02:16 2026-04-1 Show GitHub Exploit DB Packet Storm
2097 8.1 HIGH
Network 		scitokens scitokens_cpp_library SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The e… CWE-863
 Incorrect Authorization 		CVE-2026-32726 2026-04-14 02:03 2026-04-1 Show GitHub Exploit DB Packet Storm
2098 6.5 MEDIUM
Network 		pdfding pdfding PdfDing is a selfhosted PDF manager, viewer and editor offering a seamless user experience on multiple devices. Prior to version 1.7.1, check_shared_access_allowed() validates only session existence … CWE-863
 Incorrect Authorization 		CVE-2026-34586 2026-04-14 01:53 2026-04-1 Show GitHub Exploit DB Packet Storm
2099 4.8 MEDIUM
Network 		sonicwall email_security A stored Cross-Site Scripting (XSS) vulnerability has been identified in the SonicWall Email Security appliance due to improper neutralization of user-supplied input during web page generation, allow… CWE-79
Cross-site Scripting 		CVE-2026-3468 2026-04-14 01:50 2026-04-1 Show GitHub Exploit DB Packet Storm
2100 2.7 LOW
Network 		sonicwall email_security A denial-of-service (DoS) vulnerability exists due to improper input validation in the SonicWall Email Security appliance, allowing a remote authenticated attacker as admin user to cause the applicat… CWE-20
NVD-CWE-noinfo
 Improper Input Validation  		CVE-2026-3469 2026-04-14 01:49 2026-04-1 Show GitHub Exploit DB Packet Storm