Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3251 6.5 警告
Network 		LibreNMS LibreNMS LibreNMSにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2020-36947 2026-02-4 18:39 2026-01-27 Show GitHub Exploit DB Packet Storm
3252 9.8 緊急
Network 		tendenci tendenci tendenciにおけるCSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2020-36962 2026-02-4 18:39 2026-01-28 Show GitHub Exploit DB Packet Storm
3253 9.8 緊急
Network 		Hasura Inc. GraphQL Engine Hasura Inc.のGraphQL EngineにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2021-47748 2026-02-4 18:39 2026-01-21 Show GitHub Exploit DB Packet Storm
3254 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-Other
その他 		CVE-2023-53061 2026-02-4 18:39 2025-05-2 Show GitHub Exploit DB Packet Storm
3255 7.2 重要
Network 		Grabaperch Perch GrabaperchのPerchにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2023-53889 2026-02-4 18:39 2025-12-15 Show GitHub Exploit DB Packet Storm
3256 3.9
Physics 		サムスン android サムスンのAndroidにおける不特定の脆弱性 CWE-Other
その他 		CVE-2024-49422 2026-02-4 18:39 2024-12-31 Show GitHub Exploit DB Packet Storm
3257 7.8 重要
Local 		Lenovo PCManager LenovoのPCManagerにおける制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2025-10581 2026-02-4 18:38 2025-10-15 Show GitHub Exploit DB Packet Storm
3258 8.1 重要
Network 		Zoho Corporation ManageEngine Password Manager Pro
ManageEngine PAM360
ManageEngine Access Manager Plus 		Zoho CorporationのManageEngine Access Manager Plus等の複数製品における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-11669 2026-02-4 18:38 2026-01-13 Show GitHub Exploit DB Packet Storm
3259 5.3 警告
Network 		Python Software Foundation Python Python Software FoundationのPythonにおける不正な型変換に関する脆弱性 CWE-704
不正な型変換またはキャスト 		CVE-2025-12781 2026-02-4 18:38 2026-01-21 Show GitHub Exploit DB Packet Storm
3260 7.5 重要
Network 		GNU Project GNU Libtasn1 GNU ProjectのGNU Libtasn1における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2025-13151 2026-02-4 18:38 2026-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348131 - wolfpack_development xshipwars Buffer overflow in Xshipwars xsw program. NVD-CWE-Other
CVE-1999-0972 2008-09-9 21:36 1999-12-9 Show GitHub Exploit DB Packet Storm
348132 - microsoft windows_95
windows_98
windows_nt 		The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands… NVD-CWE-Other
CVE-1999-0975 2008-09-9 21:36 1999-12-10 Show GitHub Exploit DB Packet Storm
348133 - eric_allman sendmail Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail. NVD-CWE-Other
CVE-1999-0976 2008-09-9 21:36 1999-12-7 Show GitHub Exploit DB Packet Storm
348134 - debian debian_linux htdig allows remote attackers to execute commands via filenames with shell metacharacters. NVD-CWE-Other
CVE-1999-0978 2008-09-9 21:36 1999-12-9 Show GitHub Exploit DB Packet Storm
348135 - debian
linux
redhat 		debian_linux
linux_kernel
linux 		The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option. NVD-CWE-Other
CVE-1999-0986 2008-09-9 21:36 1999-12-8 Show GitHub Exploit DB Packet Storm
348136 - microsoft ie Buffer overflow in Internet Explorer 5 directshow filter (MSDXM.OCX) allows remote attackers to execute commands via the vnd.ms.radio protocol. NVD-CWE-Other
CVE-1999-0989 2008-09-9 21:36 1999-12-6 Show GitHub Exploit DB Packet Storm
348137 - goodtech telnet_server_nt Buffer overflow in GoodTech Telnet Server NT allows remote users to cause a denial of service via a long login name. NVD-CWE-Other
CVE-1999-0991 2008-09-9 21:36 1999-12-6 Show GitHub Exploit DB Packet Storm
348138 - infoseek ultraseek_server Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request. NVD-CWE-Other
CVE-1999-0996 2008-09-9 21:36 1999-12-15 Show GitHub Exploit DB Packet Storm
348139 - sgi irix Vulnerability in (1) diskalign and (2) diskperf in IRIX 6.4 patches 2291 and 2848 allow a local user to create root-owned files leading to a root compromise. NVD-CWE-Other
CVE-1999-1039 2008-09-9 21:36 1998-05-27 Show GitHub Exploit DB Packet Storm
348140 - webmin webmin Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking. NVD-CWE-Other
CVE-1999-1074 2008-09-9 21:36 1999-12-31 Show GitHub Exploit DB Packet Storm