Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229831	7.5	危険	joenasejes	-	JE CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2047	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229832	4.3	警告	magnoware	-	DataTrack System の Home.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2043	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229833	7.5	危険	percha	-	Joomla! 用の Percha Downloads Attach コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2037	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229834	7.5	危険	percha	-	Joomla! 用の Percha Fields Attach コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2036	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229835	7.5	危険	percha	-	Joomla! 用の Percha Gallery コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2035	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229836	7.5	危険	percha	-	Joomla! 用の Percha Image Attach コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2034	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229837	7.5	危険	percha	-	Joomla! 用の perchacategoriestree コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2033	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229838	7.2	危険	キングソフト株式会社	-	Kingsoft Webshield で使用される KAVSafe.sys における任意のカーネルメモリを上書きされる脆弱性	CWE-119 バッファエラー	CVE-2010-2031	2012-09-25 17:38	2010-05-24	Show	GitHub Exploit DB Packet Storm

229839	10	危険	mgenti	-	k23productions TFTPUtil GUI におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2028	2012-09-25 17:38	2010-05-24	Show	GitHub Exploit DB Packet Storm

229840	7.5	危険	imagetraders	-	Iceberg CMS の details.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2016	2012-09-25 17:38	2010-05-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
41	2.4	LOW Adjacent	-	-	ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. A high-privileged attacker could e… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-27307	2026-04-15 07:16	2026-04-15	Show	GitHub Exploit DB Packet Storm

42	8.4	HIGH Adjacent	-	-	ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Attacker r… New	CWE-20 Improper Input Validation	CVE-2026-27306	2026-04-15 07:16	2026-04-15	Show	GitHub Exploit DB Packet Storm

43	8.6	HIGH Network	-	-	ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to arbitrary file syste… New	CWE-22 Path Traversal	CVE-2026-27305	2026-04-15 07:16	2026-04-15	Show	GitHub Exploit DB Packet Storm

44	9.3	CRITICAL Adjacent	-	-	ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitati… New	CWE-20 Improper Input Validation	CVE-2026-27304	2026-04-15 07:16	2026-04-15	Show	GitHub Exploit DB Packet Storm

45	7.5	HIGH Network	-	-	ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerabilit… New	CWE-20 Improper Input Validation	CVE-2026-27282	2026-04-15 07:16	2026-04-15	Show	GitHub Exploit DB Packet Storm

46	5.4	MEDIUM Network	docmost	docmost	Docmost is open-source collaborative wiki and documentation software. From 0.20.0 and before 0.25.0, the public share page functionality in Docmost does not properly HTML-escape page titles before in… New	CWE-79 Cross-site Scripting	CVE-2026-24045	2026-04-15 07:16	2026-02-11	Show	GitHub Exploit DB Packet Storm

47	5.4	MEDIUM Network	docmost	docmost	Docmost es un software de wiki y documentación colaborativo de código abierto. Desde g y antes de 0.25.0, la funcionalidad de página compartida pública en Docmost no escapa correctamente los títulos … New	CWE-79 Cross-site Scripting	CVE-2026-24045	2026-04-15 07:16	2026-02-11	Show	GitHub Exploit DB Packet Storm

48	7.8	HIGH Local	-	-	A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragm… Update	CWE-416 Use After Free	CVE-2025-7425	2026-04-15 07:16	2025-07-10	Show	GitHub Exploit DB Packet Storm

49	7.8	HIGH Local	-	-	Se encontró una falla en libxslt donde los atributos type, atype y flags se modifican de forma que corrompe la gestión de memoria interna. Cuando las funciones XSLT, como el proceso key(), generan fr… Update	CWE-416 Use After Free	CVE-2025-7425	2026-04-15 07:16	2025-07-10	Show	GitHub Exploit DB Packet Storm

50	7.5	HIGH Network	xmlsoft redhat	libxslt openshift_container_platform enterprise_linux	A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type confusion during XML transformations. This vulnerability allow… Update	CWE-843 Type Confusion	CVE-2025-7424	2026-04-15 07:16	2025-07-10	Show	GitHub Exploit DB Packet Storm