Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251891 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
251892 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
251893 10 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の Provider クラスにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-2721 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
251894 5 警告 有限会社シースリー - WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0348 2010-01-12 15:01 2010-01-12 Show GitHub Exploit DB Packet Storm
251895 4.3 警告 有限会社シースリー - WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0349 2010-01-12 15:00 2010-01-12 Show GitHub Exploit DB Packet Storm
251896 10 危険 サイバートラスト株式会社
XEmacs		 - XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-2688 2010-01-12 14:48 2009-08-5 Show GitHub Exploit DB Packet Storm
251897 6.8 警告 IBM - IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2746 2010-01-12 14:48 2009-11-13 Show GitHub Exploit DB Packet Storm
251898 5 警告 アップル - Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2009-2842 2010-01-7 12:09 2009-11-11 Show GitHub Exploit DB Packet Storm
251899 5.5 警告 シックス・アパート株式会社 - Movable Type におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		- 2010-01-6 15:01 2010-01-6 Show GitHub Exploit DB Packet Storm
251900 9.3 危険 マイクロソフト - Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3135 2010-01-6 14:44 2009-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 17, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251 6.5 MEDIUM
Network 		- - The `access_key` and `connection_string` connection properties were not marked as sensitive names in secrets masker. This means that user with read permission could see the values in Connection UI, a… New CWE-200
Information Exposure 		CVE-2026-25219 2026-04-16 05:16 2026-04-15 Show GitHub Exploit DB Packet Storm
252 3.3 LOW
Network 		- - --- title: Cross-Tenant Legacy Correlation Disclosure and Deletion draft: false hero: image: /static/img/heros/hero-legal2.svg content: "# Cross-Tenant Legacy Correlation Disclosure and Deletion"… New - CVE-2026-21727 2026-04-16 05:16 2026-04-16 Show GitHub Exploit DB Packet Storm
253 5.3 MEDIUM
Network 		- - The CVE-2021-36156 fix validates the namespace parameter for path traversal sequences after a single URL decode, by double encoding, an attacker can read files at the Ruler API endpoint /loki/api/v1/… New - CVE-2026-21726 2026-04-16 05:16 2026-04-16 Show GitHub Exploit DB Packet Storm
254 7.5 HIGH
Network 		- - Before Airflow 3.2.0, it was unclear that secure Airflow deployments require the Deployment Manager to take appropriate actions and pay attention to security details and security model of Airflow. So… New CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2025-66236 2026-04-16 05:16 2026-04-14 Show GitHub Exploit DB Packet Storm
255 9.1 CRITICAL
Network 		- - Pyroscope is an open-source continuous profiling database. The database supports various storage backends, including Tencent Cloud Object Storage (COS). If the database is configured to use Tencent … New - CVE-2025-41118 2026-04-16 05:16 2026-04-16 Show GitHub Exploit DB Packet Storm
256 5.5 MEDIUM
Local 		huawei harmonyos UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability. New CWE-362
Race Condition 		CVE-2026-34857 2026-04-16 05:16 2026-04-13 Show GitHub Exploit DB Packet Storm
257 4.1 MEDIUM
Local 		huawei harmonyos UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability. New CWE-362
Race Condition 		CVE-2026-34858 2026-04-16 05:13 2026-04-13 Show GitHub Exploit DB Packet Storm
258 7.1 HIGH
Local 		huawei harmonyos
emui 		UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. New CWE-416
 Use After Free 		CVE-2026-34859 2026-04-16 05:12 2026-04-13 Show GitHub Exploit DB Packet Storm
259 7.4 HIGH
Network 		openclaw openclaw OpenClaw before 2026.3.25 contains a server-side request forgery vulnerability in multiple channel extensions that fail to properly guard configured base URLs against SSRF attacks. Attackers can expl… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-35629 2026-04-16 05:09 2026-04-10 Show GitHub Exploit DB Packet Storm
260 4.7 MEDIUM
Local 		huawei harmonyos Race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability. New CWE-362
Race Condition 		CVE-2026-34861 2026-04-16 05:09 2026-04-13 Show GitHub Exploit DB Packet Storm