Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231271 5 警告 intralearn - IntraLearn Software IntraLearn における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-7146 2012-09-25 17:27 2009-09-1 Show GitHub Exploit DB Packet Storm
231272 4.3 警告 ICQ - ICQ Toolbar の toolbaru.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7136 2012-09-25 17:27 2009-09-1 Show GitHub Exploit DB Packet Storm
231273 4.3 警告 ICQ - ICQ Toolbar の toolbaru.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7135 2012-09-25 17:27 2009-09-1 Show GitHub Exploit DB Packet Storm
231274 4.3 警告 onlinetools - onlinetools.org EasyImageCatalogue におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7133 2012-09-25 17:27 2009-09-1 Show GitHub Exploit DB Packet Storm
231275 4.3 警告 Nuked-Klan - Nuked-Klan の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7132 2012-09-25 17:27 2009-09-1 Show GitHub Exploit DB Packet Storm
231276 6.8 警告 peter kohlmann - DB2 Monitoring Console におけるデータベースへのアクセス権を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-7131 2012-09-25 17:27 2009-08-31 Show GitHub Exploit DB Packet Storm
231277 5 警告 peter kohlmann - DB2 Monitoring Console における任意のファイルをアップロードされる脆弱性 CWE-noinfo
情報不足 		CVE-2008-7130 2012-09-25 17:27 2009-08-31 Show GitHub Exploit DB Packet Storm
231278 5 警告 マイクロフォーカス株式会社 - Borland VisiBroker Smart Agent の osagent.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7127 2012-09-25 17:27 2009-08-31 Show GitHub Exploit DB Packet Storm
231279 10 危険 マイクロフォーカス株式会社 - Borland VisiVroker Smart Agent における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-7126 2012-09-25 17:27 2009-08-31 Show GitHub Exploit DB Packet Storm
231280 6.8 警告 gurpartap singh - Drupal 用の Live モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7151 2012-09-25 17:27 2008-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
31 9.8 CRITICAL
Network 		- - SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 45d48d1f2e8e0d73e80bc1fd5310cb57f4547302, the TGA codec's RLE de… New CWE-787
 Out-of-bounds Write 		CVE-2026-40494 2026-04-18 12:16 2026-04-18 Show GitHub Exploit DB Packet Storm
32 9.8 CRITICAL
Network 		- - SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit c930284445ea3ff94451ccd7a57c999eca3bc979, the PSD codec computes… New CWE-787
 Out-of-bounds Write 		CVE-2026-40493 2026-04-18 12:16 2026-04-18 Show GitHub Exploit DB Packet Storm
33 9.8 CRITICAL
Network 		- - SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02, the XWD codec resolves… New CWE-787
 Out-of-bounds Write 		CVE-2026-40492 2026-04-18 12:16 2026-04-18 Show GitHub Exploit DB Packet Storm
34 6.5 MEDIUM
Network 		- - gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP… New CWE-22
Path Traversal 		CVE-2026-40491 2026-04-18 12:16 2026-04-18 Show GitHub Exploit DB Packet Storm
35 7.2 HIGH
Network 		- - SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/manage_location.php. New CWE-89
SQL Injection 		CVE-2026-37344 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
36 7.2 HIGH
Network 		- - SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/manage_user.php. New CWE-89
SQL Injection 		CVE-2026-37343 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
37 7.2 HIGH
Network 		- - SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/view_parked_details.php. New CWE-89
SQL Injection 		CVE-2026-37342 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
38 7.2 HIGH
Network 		- - SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/manage_category.php. New CWE-89
SQL Injection 		CVE-2026-37341 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
39 9.8 CRITICAL
Network 		- - SourceCodester Simple Music Cloud Community System v1.0 is vulnerable to SQL Injection in the file /music/edit_music.php. New CWE-89
SQL Injection 		CVE-2026-37340 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm
40 9.8 CRITICAL
Network 		- - SourceCodester Simple Music Cloud Community System v1.0 is vulnerable to SQL Injection in the file /music/view_genre.php. New CWE-89
SQL Injection 		CVE-2026-37339 2026-04-18 12:16 2026-04-17 Show GitHub Exploit DB Packet Storm