Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225591	7.5	危険	vergenet	-	Perdition Mail Retrieval Proxy の IMAPD における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2007-5740	2012-12-20 18:33	2007-10-31	Show	GitHub Exploit DB Packet Storm

225592	6.4	警告	seeblick	-	SeeBlick の upload.php における任意のファイルをアップロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2007-5736	2012-12-20 18:33	2007-10-30	Show	GitHub Exploit DB Packet Storm

225593	4.3	警告	phpPgAdmin	-	phpPgAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5728	2012-12-20 18:33	2007-10-30	Show	GitHub Exploit DB Packet Storm

225594	4.3	警告	smart-shop	-	Smart-Shop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5725	2012-12-20 18:33	2007-10-30	Show	GitHub Exploit DB Packet Storm

225595	6.8	警告	profilecms	-	ProfileCMS の profiles スクリプトにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-5720	2012-12-20 18:33	2007-10-30	Show	GitHub Exploit DB Packet Storm

225596	4.9	警告	vobcopy	-	vobcopy における任意のファイルへデータを追加される脆弱性	CWE-59 リンク解釈の問題	CVE-2007-5718	2012-12-20 18:33	2007-10-30	Show	GitHub Exploit DB Packet Storm

225597	4.4	警告	VMware	-	VMware Workstation などの VMware Tools パッケージにおけるゲストカーネルメモリ内で任意のメモリ領域を変更される脆弱性	CWE-20 不適切な入力確認	CVE-2007-5671	2012-12-20 18:33	2008-06-4	Show	GitHub Exploit DB Packet Storm

225598	10	危険	TIBCO Software	-	TIBCO SmartSockets RTserver などの製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-20 不適切な入力確認	CVE-2007-5658	2012-12-20 18:33	2008-01-15	Show	GitHub Exploit DB Packet Storm

225599	10	危険	TIBCO Software	-	TIBCO SmartSockets Rtserver などの製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2007-5657	2012-12-20 18:33	2008-01-15	Show	GitHub Exploit DB Packet Storm

225600	10	危険	TIBCO Software	-	TIBCO SmartSockets RTserver などの製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-5656	2012-12-20 18:33	2008-01-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
11	4.7	MEDIUM Network	-	-	A vulnerability was identified in pagekit up to 1.0.18. Affected by this issue is some unknown functionality of the file /index.php/admin/system/update/download. The manipulation of the argument url … New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-6983	2026-04-26 01:16	2026-04-26	Show	GitHub Exploit DB Packet Storm

12	6.3	MEDIUM Network	-	-	A vulnerability was determined in star7th ShowDoc up to 2.10.10/3.6.2/3.8.0. Affected by this vulnerability is an unknown functionality of the file server/Application/Api/Controller/PageController.cl… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-6982	2026-04-26 00:16	2026-04-26	Show	GitHub Exploit DB Packet Storm

13	6.3	MEDIUM Network	-	-	A vulnerability was found in IhateCreatingUserNames2 AiraHub2 up to 3e4b77fd7d48ed811ffe5b8d222068c17c76495e. Affected is the function connect_stream_endpoint/sync_agents of the file AiraHub.py of th… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-6981	2026-04-26 00:16	2026-04-26	Show	GitHub Exploit DB Packet Storm

14	7.3	HIGH Network	-	-	A vulnerability has been found in Divyanshu-hash GitPilot-MCP up to 9ed9f153ba4158a2ad230ee4871b25130da29ffd. This impacts the function repo_path of the file main.py. Such manipulation of the argumen… New	CWE-74 CWE-77 Injection Command Injection	CVE-2026-6980	2026-04-25 23:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

15	6.3	MEDIUM Network	-	-	A flaw has been found in devlikeapro WAHA up to 2026.3.4. This affects an unknown function of the file src/api/media.controller.ts of the component API Request Handler. This manipulation causes serve… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-6979	2026-04-25 21:15	2026-04-25	Show	GitHub Exploit DB Packet Storm

16	4.7	MEDIUM Network	-	-	A vulnerability was detected in JiZhiCMS up to 2.5.6. The impacted element is the function htmlspecialchars_decode of the file /index.php/admins/Sys/addcache.html. The manipulation of the argument sq… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-6978	2026-04-25 21:15	2026-04-25	Show	GitHub Exploit DB Packet Storm

17	7.3	HIGH Network	-	-	A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. The affected element is an unknown function of the component Legacy Flask API. The manipulation leads to improper authorizati… New	CWE-266 CWE-285 Incorrect Privilege Assignment Improper Authorization	CVE-2026-6977	2026-04-25 20:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

18	9.8	CRITICAL Network	-	-	Versions of the package simple-git before 3.36.0 are vulnerable to Remote Code Execution (RCE) due to an incomplete fix for [CVE-2022-25912](https://security.snyk.io/vuln/SNYK-JS-SIMPLEGIT-3112221) t… New	CWE-94 Code Injection	CVE-2026-6951	2026-04-25 20:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

19	-		-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_eui64: reject invalid MAC header for all packets `eui64_mt6()` derives a modified EUI-64 from the Ethernet source… New	-	CVE-2026-31685	2026-04-25 18:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

20	-		-	-	In the Linux kernel, the following vulnerability has been resolved: net: sched: act_csum: validate nested VLAN headers tcf_csum_act() walks nested VLAN headers directly from skb->data when an skb s… New	-	CVE-2026-31684	2026-04-25 18:16	2026-04-25	Show	GitHub Exploit DB Packet Storm