Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251911	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

251912	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

251913	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

251914	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

251915	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

251916	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

251917	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1921	9.8	CRITICAL Network	-	-	A vulnerability was identified in Totolink A7100RU 7.4cu.2313_b20191024. This affects the function setVpnPassCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-5850	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1922	9.8	CRITICAL Network	-	-	A security flaw has been discovered in Totolink A7100RU 7.4cu.2313_b20191024. This impacts the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of t… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-5851	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1923	9.8	CRITICAL Network	-	-	A weakness has been identified in Totolink A7100RU 7.4cu.2313_b20191024. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the ar… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-5852	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1924	9.8	CRITICAL Network	-	-	A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313_b20191024. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-5853	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1925	9.8	CRITICAL Network	-	-	A vulnerability was detected in Totolink A7100RU 7.4cu.2313_b20191024. Affected by this issue is the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing … New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-5854	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1926	9.1	CRITICAL Network	-	-	Canonical LXD versions 4.12 through 6.7 contain an incomplete denylist in isVMLowLevelOptionForbidden (lxd/project/limits/permissions.go), which omits raw.apparmor and raw.qemu.conf from the set of k… New	CWE-184 Incomplete Blacklist	CVE-2026-34177	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1927	9.1	CRITICAL Network	-	-	In Canonical LXD before 6.8, the backup import path validates project restrictions against backup/index.yaml in the supplied tar archive but creates the instance from backup/container/backup.yaml, a … New	CWE-20 Improper Input Validation	CVE-2026-34178	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1928	9.1	CRITICAL Network	-	-	In Canonical LXD versions 4.12 through 6.7, the doCertificateUpdate function in lxd/certificates.go does not validate the Type field when handling PUT/PATCH requests to /1.0/certificates/{fingerprint… New	CWE-915 Improperly Controlled Modification of Dynamically-Determined Object Attributes	CVE-2026-34179	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1929	7.5	HIGH Network	-	-	An Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Apache DolphinScheduler. This vulnerability may allow unauthorized actors to access sensitive information, inclu… New	CWE-200 Information Exposure	CVE-2025-62188	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1930	-		-	-	Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically t… New	CWE-862 Missing Authorization	CVE-2026-34184	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm