Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231751 7.5 危険 net2ftp - net2ftp のアーカイブ解凍などにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5275 2012-09-25 17:17 2008-11-28 Show GitHub Exploit DB Packet Storm
231752 4.3 警告 サン・マイクロシステムズ
オラクル		 - Sun Java System Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5266 2012-09-25 17:17 2008-11-28 Show GitHub Exploit DB Packet Storm
231753 5.8 警告 MediaWiki - MediaWiki の Special:Import 機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-5252 2012-09-25 17:17 2008-12-15 Show GitHub Exploit DB Packet Storm
231754 3.5 注意 MediaWiki - MediaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5250 2012-09-25 17:17 2008-12-15 Show GitHub Exploit DB Packet Storm
231755 4.3 警告 MediaWiki - MediaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5249 2012-09-25 17:17 2008-12-15 Show GitHub Exploit DB Packet Storm
231756 9.3 危険 マイクロソフト - Microsoft Windows NT サーバなどの Windows Media Services におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5232 2012-09-25 17:17 2008-11-25 Show GitHub Exploit DB Packet Storm
231757 9.3 危険 Novell - Novell iPrint Client の ExecuteRequest メソッドにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5231 2012-09-25 17:17 2008-11-25 Show GitHub Exploit DB Packet Storm
231758 6.9 警告 マイクロソフト - Microsoft Windows Vista の iphlpapi.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5229 2012-09-25 17:17 2008-11-25 Show GitHub Exploit DB Packet Storm
231759 7.5 危険 mambads
Mambo Foundation		 - Mambo 用の mambads コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5226 2012-09-25 17:17 2008-11-25 Show GitHub Exploit DB Packet Storm
231760 7.5 危険 Joomla! - Joomla! 用の Datsogallery における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5208 2012-09-25 17:17 2008-11-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 3.5 LOW
Network 		- - The Email Encoder WordPress plugin before 2.3.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks… New CWE-79
Cross-site Scripting 		CVE-2024-7083 2026-04-20 23:16 2026-04-20 Show GitHub Exploit DB Packet Storm
172 3.5 LOW
Network 		- - A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripti… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-6648 2026-04-20 22:16 2026-04-20 Show GitHub Exploit DB Packet Storm
173 4.3 MEDIUM
Network 		- - A vulnerability was detected in p2r3 convert up to 6998584ace3e11db66dff0b423612a5cf91de75b. Affected is the function Bun.serve of the file buildCache.js of the component API. Performing a manipulati… New CWE-22
Path Traversal 		CVE-2026-6636 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
174 7.3 HIGH
Network 		- - A security vulnerability has been detected in rowboatlabs rowboat up to 0.1.67. This impacts the function tool_call of the file apps/experimental/tools_webhook/app.py of the component tools_webhook. … New CWE-287
Improper Authentication 		CVE-2026-6635 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
175 6.3 MEDIUM
Network 		- - A weakness has been identified in usememos memos up to 0.22.1. This affects the function memos_access_token of the file src/App.tsx of the component UpdateInstanceSetting. This manipulation of the ar… New CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-6634 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
176 3.5 LOW
Network 		- - A security flaw has been discovered in Yifang CMS up to 2.0.5. The impacted element is the function store of the file plugins/yifang_backend_account/logic/admin/L_rbac_admin.php of the component Exte… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-6633 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
177 - - - When sed is invoked with both -i (in-place edit) and --follow-symlinks, the function open_next_file() performs two separate, non-atomic filesystem operations on the same path: 1. resolves symlink to… New CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-5958 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
178 8.8 HIGH
Network 		- - A vulnerability was identified in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the function fromSafeClientFilter of the file /goform/SafeClientFilter of the component httpd. The manipulatio… New CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-6632 2026-04-20 20:16 2026-04-20 Show GitHub Exploit DB Packet Storm
179 8.8 HIGH
Network 		- - A vulnerability was determined in Tenda F451 1.0.0.7_cn_svn7958. Impacted is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter of the component httpd. Executing a manipul… New CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-6631 2026-04-20 20:16 2026-04-20 Show GitHub Exploit DB Packet Storm
180 8.8 HIGH
Network 		- - A vulnerability was found in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer of the component httpd. Performing a manipulation of th… New CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-6630 2026-04-20 20:16 2026-04-20 Show GitHub Exploit DB Packet Storm