Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3311 9.8 緊急
Network 		Nitro Software Inc. Nitro PDF Pro Nitro Software Inc.のNitro PDF Proにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2025-67825 2026-01-28 12:41 2026-01-8 Show GitHub Exploit DB Packet Storm
3312 8.1 重要
Network 		Qode Interactive Wellspring Qode InteractiveのWordPress用WellspringにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-67934 2026-01-28 12:41 2026-01-8 Show GitHub Exploit DB Packet Storm
3313 6.5 警告
Network 		Apache Software Foundation Apache Spatial Information System (SIS) Apache Software FoundationのApache Spatial Information System (SIS)におけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2025-68280 2026-01-28 12:41 2026-01-5 Show GitHub Exploit DB Packet Storm
3314 4.8 警告
Network 		Centreon Centreon Open Tickets CentreonのCentreon Open Ticketsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-8460 2026-01-28 12:41 2025-12-22 Show GitHub Exploit DB Packet Storm
3315 4.3 警告
Network 		cdata API Server cdataのAPI Serverにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2025-9273 2026-01-28 12:41 2025-09-2 Show GitHub Exploit DB Packet Storm
3316 7.6 重要
Network 		OPEXUS eCASE Audit OPEXUSのeCASE Auditにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-22230 2026-01-28 12:41 2026-01-8 Show GitHub Exploit DB Packet Storm
3317 8.8 重要
Network 		Microhard IPn4Gb Firmware
BulletPlus Firmware
IPn3Gb Firmware
VIP4G-WiFi-N Firmware
IPn4G Firmware
Bullet-3G Firmware
Dragon-LTE Firmware
VIP4Gb Fir… 		MicrohardのBullet-3G Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2018-25143 2026-01-28 12:41 2025-12-24 Show GitHub Exploit DB Packet Storm
3318 9.8 緊急
Network 		Microhard IPn4Gb Firmware
BulletPlus Firmware
IPn3Gb Firmware
VIP4G-WiFi-N Firmware
IPn4G Firmware
Bullet-3G Firmware
Dragon-LTE Firmware
VIP4Gb Fir… 		MicrohardのBullet-3G Firmware等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2018-25144 2026-01-28 12:41 2025-12-24 Show GitHub Exploit DB Packet Storm
3319 6.5 警告
Network 		Microhard IPn4Gb Firmware
BulletPlus Firmware
IPn3Gb Firmware
VIP4G-WiFi-N Firmware
IPn4G Firmware
Bullet-3G Firmware
Dragon-LTE Firmware
VIP4Gb Fir… 		MicrohardのBullet-3G Firmware等の複数製品における外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2018-25145 2026-01-28 12:40 2025-12-24 Show GitHub Exploit DB Packet Storm
3320 8.1 重要
Network 		Microhard IPn4Gb Firmware
BulletPlus Firmware
IPn3Gb Firmware
VIP4G-WiFi-N Firmware
IPn4G Firmware
Bullet-3G Firmware
Dragon-LTE Firmware
VIP4Gb Fir… 		MicrohardのBullet-3G Firmware等の複数製品における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2018-25146 2026-01-28 12:40 2025-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349991 - earl_hood
debian 		man2html
debian_linux 		Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NVD-CWE-Other
CVE-1999-1565 2008-09-6 05:19 1999-08-20 Show GitHub Exploit DB Packet Storm
349992 - intel iparty Buffer overflow in iParty server 1.2 and earlier allows remote attackers to cause a denial of service (crash) by connecting to default port 6004 and sending repeated extended characters. NVD-CWE-Other
CVE-1999-1566 2008-09-6 05:19 1999-05-8 Show GitHub Exploit DB Packet Storm
349993 - sendmail
sun 		sendmail
sunos 		SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passin… NVD-CWE-Other
CVE-1999-1580 2008-09-6 05:19 1995-08-23 Show GitHub Exploit DB Packet Storm
349994 - sun openwindows
sunos 		Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root pr… NVD-CWE-Other
CVE-1999-1584 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
349995 - wwwcount wwwcount Directory traversal vulnerability in Muhammad A. Muquit wwwcount (Count.cgi) 2.3 allows remote attackers to read arbitrary GIF files via ".." sequences in the image parameter, a different vulnerabili… NVD-CWE-Other
CVE-1999-1590 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
349996 - microsoft internet_information_server
visual_interdev 		Microsoft Internet Information Services (IIS) server 4.0 SP4, without certain hotfixes released for SP4, does not require authentication credentials under certain conditions, which allows remote atta… NVD-CWE-Other
CVE-1999-1591 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
349997 - sendmail sendmail Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129. NVD-CWE-Other
CVE-1999-1592 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
349998 - allaire coldfusion_server Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls. NVD-CWE-Other
CVE-1999-0923 2008-09-6 05:18 2001-03-12 Show GitHub Exploit DB Packet Storm
349999 - apache http_server Apache allows remote attackers to conduct a denial of service via a large number of MIME headers. NVD-CWE-Other
CVE-1999-0926 2008-09-6 05:18 1999-09-3 Show GitHub Exploit DB Packet Storm
350000 - hp vvos HP VirtualVault with the PHSS_17692 patch allows unprivileged processes to bypass access restrictions via the Trusted Gateway Proxy (TGP). NVD-CWE-Other
CVE-1999-0992 2008-09-6 05:18 2000-01-18 Show GitHub Exploit DB Packet Storm