Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233971 10 危険 ヒューレット・パッカード - HP SIM におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-2719 2012-09-25 16:47 2007-05-8 Show GitHub Exploit DB Packet Storm
233972 4.3 警告 マイクロソフト
Stalker Software, Inc.		 - Stalker CommuniGate Pro の WebMail system におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2718 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233973 7.5 危険 igeneric - iG Shop の shop/page.php における SQL インジェクションの脆弱性 - CVE-2007-2717 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233974 10 危険 matt mullenweg - WordPress プラグインの Matt Mullenweg Akismet における脆弱性 - CVE-2007-2714 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233975 10 危険 ifusionservices - ifdate における管理アクセス権を取得される脆弱性 - CVE-2007-2713 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233976 10 危険 mh software - MH Software Connect Daily における脆弱性 - CVE-2007-2712 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233977 7.5 危険 NagiosQL - NagiosQL の functions/prepend_adm.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2710 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233978 7.5 危険 NagiosQL - NagiosQL 2005 の functions/prepend_adm.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2709 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233979 6.8 警告 linksnet - Linksnet Newsfeed の linksnet_linkslog_rss.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2707 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233980 7.8 危険 インターネット セキュリティ システムズ - IBM ISS Proventia シリーズにおける HTTP トラフィックの検知を回避される脆弱性 - CVE-2007-2690 2012-09-25 16:47 2007-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1541 4.8 MEDIUM
Network 		- - GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the language management functionality where the charset POST parameter is passed directly to SWIFT_Language::Create(… CWE-79
Cross-site Scripting 		CVE-2026-23753 2026-04-21 03:16 2026-04-21 Show GitHub Exploit DB Packet Storm
1542 4.8 MEDIUM
Network 		- - GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the template group creation and editing functionality that allows authenticated administrators to inject arbitrary J… CWE-79
Cross-site Scripting 		CVE-2026-23752 2026-04-21 03:16 2026-04-21 Show GitHub Exploit DB Packet Storm
1543 7.8 HIGH
Local 		microsoft windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2019
windows_server_2022
windows_server_2022_… 		Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally. CWE-362
Race Condition 		CVE-2026-32160 2026-04-21 03:15 2026-04-15 Show GitHub Exploit DB Packet Storm
1544 5.7 MEDIUM
Network 		dell data_domain_operating_system Dell PowerProtect Data Domain appliances with Data Domain Operating System (DD OS) of Feature Release versions 8.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.10 contain an insertion o… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-23775 2026-04-21 03:11 2026-04-17 Show GitHub Exploit DB Packet Storm
1545 7.8 HIGH
Local 		dell data_domain_operating_system Dell PowerProtect Data Domain BoostFS for client of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.50… CWE-522
 Insufficiently Protected Credentials 		CVE-2025-36568 2026-04-21 03:10 2026-04-17 Show GitHub Exploit DB Packet Storm
1546 7.2 HIGH
Network 		fortinet fortiweb An out-of-bounds write vulnerability [CWE-787] vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.3, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.0 through 7.4.11 may allow a remote privileged attack… CWE-787
 Out-of-bounds Write 		CVE-2026-40688 2026-04-21 03:07 2026-04-15 Show GitHub Exploit DB Packet Storm
1547 8.8 HIGH
Network 		fortinet fortiddos-f A improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiDDoS-F 7.2.1 through 7.2.2 may allow attacker to execute unauthorized code or com… CWE-89
SQL Injection 		CVE-2026-39815 2026-04-21 03:06 2026-04-15 Show GitHub Exploit DB Packet Storm
1548 4.8 MEDIUM
Network 		fortinet fortinac-f An URL Redirection to Untrusted Site ('Open Redirect') vulnerability [CWE-601] vulnerability in Fortinet FortiNAC-F 7.6.0 through 7.6.5, FortiNAC-F 7.4 all versions, FortiNAC-F 7.2 all versions may a… CWE-601
Open Redirect 		CVE-2026-21741 2026-04-21 03:06 2026-04-15 Show GitHub Exploit DB Packet Storm
1549 7.2 HIGH
Network 		fortinet fortianalyzer
fortianalyzer_cloud
fortimanager
fortimanager_cloud 		An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.8, FortiAnalyzer 7… CWE-89
SQL Injection 		CVE-2025-61848 2026-04-21 03:05 2026-04-15 Show GitHub Exploit DB Packet Storm
1550 8.8 HIGH
Adjacent 		fortinet fortios A missing authentication for critical function vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiOS … CWE-306
Missing Authentication for Critical Function 		CVE-2025-53847 2026-04-21 03:04 2026-04-15 Show GitHub Exploit DB Packet Storm