Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
235341	9	危険	IBM	-	IBM DB2 の ADMIN_SP_C2 プロシージャにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-1997	2012-09-25 17:16	2008-04-28	Show	GitHub Exploit DB Packet Storm

235342	5	警告	licq	-	licq におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-1996	2012-09-25 17:16	2008-04-28	Show	GitHub Exploit DB Packet Storm

235343	4.3	警告	Horde	-	Horde Kronolith などの製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1974	2012-09-25 17:16	2008-04-27	Show	GitHub Exploit DB Packet Storm

235344	4.3	警告	Exponent CMS project	-	Exponent CMS のユーザアカウント作成機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1972	2012-09-25 17:16	2008-04-27	Show	GitHub Exploit DB Packet Storm

235345	2.1	注意	mucommander	-	muCommander における資格情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-1970	2012-09-25 17:16	2008-04-27	Show	GitHub Exploit DB Packet Storm

235346	4	警告	IBM	-	IBM DB2 の JAR ファイル管理ルーチンにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1966	2012-09-25 17:16	2008-04-27	Show	GitHub Exploit DB Packet Storm

235347	9.3	危険	IBM	-	Lotus Symphony で使用される Desktop の IBM Lotus Expeditor Client の rcplauncher の cai: URI ハンドラにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-1965	2012-09-25 17:16	2008-04-25	Show	GitHub Exploit DB Packet Storm

235348	7.5	危険	voice of web	-	Voice Of Web AllMyGuests の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1961	2012-09-25 17:16	2008-04-25	Show	GitHub Exploit DB Packet Storm

235349	4.3	警告	Magnolia International	-	Magnolia Enterprise Edition の Sitedesigner におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1953	2012-09-25 17:16	2008-04-15	Show	GitHub Exploit DB Packet Storm

235350	6.8	警告	MoinMoin	-	MoinMoin の userform.py における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1937	2012-09-25 17:16	2008-04-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
851	-		-	-	Tunnelblick is an open source graphic user interface for OpenVPN on macOS. In versions 3.3beta26 through 9.0beta01, any local user can read arbitrary root-owned files by exploiting a symlink followin… New	CWE-61 UNIX Symbolic Link (Symlink) Following	CVE-2026-31893	2026-05-8 00:15	2026-05-6	Show	GitHub Exploit DB Packet Storm

852	-		-	-	Vaultwarden is a Bitwarden-compatible server written in Rust. In version 1.35.4 and earlier, the get_org_collections_details endpoint (GET /api/organizations/{org_id}/collections/details) is missing … New	CWE-862 Missing Authorization	CVE-2026-33420	2026-05-8 00:15	2026-05-6	Show	GitHub Exploit DB Packet Storm

853	8.8	HIGH Network	-	-	A remote code execution vulnerability exists in Notification Settings on GeoVision GV-ASWeb 6.2.0. An authenticated user with System Setting permissions can execute arbitrary commands on the server b… New	CWE-94 Code Injection	CVE-2026-7841	2026-05-8 00:15	2026-05-6	Show	GitHub Exploit DB Packet Storm

854	7.5	HIGH Network	-	-	Unauthenticated DoS in ZTE H8102E, H168N, H167A, H199A, H288A, H198A, H267A, H267N, H268A, H388X, H196A, H369A, H268N, H208N, H367N, H181A, and H196Q. A denial-of-service condition can be triggered a… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-34473	2026-05-8 00:15	2026-05-7	Show	GitHub Exploit DB Packet Storm

855	7.5	HIGH Network	-	-	Sensitive data exposure leading to admin/WLAN credential leak in ZTE ZXHN H298A 1.1 and H108N 2.6. A crafted request to the router web interface can expose sensitive device and account information. I… New	CWE-200 Information Exposure	CVE-2026-34474	2026-05-8 00:15	2026-05-7	Show	GitHub Exploit DB Packet Storm

856	-		-	-	Samsung Print Service Plugin for Android is potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate … New	CWE-926 Improper Export of Android Application Components	CVE-2026-3291	2026-05-8 00:15	2026-05-7	Show	GitHub Exploit DB Packet Storm

857	8.3	HIGH Network	-	-	Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Vi… New	CWE-94 Code Injection	CVE-2025-1978	2026-05-8 00:15	2026-05-7	Show	GitHub Exploit DB Packet Storm

858	5.3	MEDIUM Network	-	-	Improper restriction of excessive authentication attempts vulnerability in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platfor… New	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2025-2514	2026-05-8 00:15	2026-05-7	Show	GitHub Exploit DB Packet Storm

859	-		-	-	The Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01, Android 8.0.0) exposes Android Debug Bridge (ADB) on TCP port 5555 over the network without requiring authentication. The device is con… New	-	CVE-2026-30495	2026-05-8 00:15	2026-05-7	Show	GitHub Exploit DB Packet Storm

860	-		-	-	The Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01, Android 8.0.0) exposes an HTTP API on TCP port 2345 that allows full unauthenticated remote control of the device. The API supports bot… New	-	CVE-2026-30496	2026-05-8 00:15	2026-05-7	Show	GitHub Exploit DB Packet Storm