Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
341 6.1 警告
Network 		FIT2CLOUD SQLBot FIT2CLOUDのSQLBotにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2025-69285 2026-02-4 18:41 2026-01-21 Show GitHub Exploit DB Packet Storm
342 6 警告
Local 		Beam beta9 Beamのbeta9におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-69820 2026-02-4 18:41 2026-01-22 Show GitHub Exploit DB Packet Storm
343 7.4 重要
Adjacent 		beatXP Vega Smartwatch Firmware beatXPのVega Smartwatch Firmwareにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2025-69821 2026-02-4 18:41 2026-01-22 Show GitHub Exploit DB Packet Storm
344 7.4 重要
Adjacent 		Atomberg Atomberg Erica Smart Fan Firmware AtombergのAtomberg Erica Smart Fan Firmwareにおける複数の脆弱性 CWE-200
CWE-284
CWE-287
CWE-294
CVE-2025-69822 2026-02-4 18:41 2026-01-22 Show GitHub Exploit DB Packet Storm
345 9.8 緊急
Network 		bell labs plan 9 9fansのPlan 9における複数の脆弱性 CWE-119
CWE-122
CVE-2025-7208 2026-02-4 18:41 2025-07-9 Show GitHub Exploit DB Packet Storm
346 5.5 警告
Local 		bell labs plan 9 9fansのPlan 9における複数の脆弱性 CWE-404
CWE-476
CWE-476
CVE-2025-7209 2026-02-4 18:41 2025-07-9 Show GitHub Exploit DB Packet Storm
347 7.1 重要
Local 		ブロケード コミュニケーションズ システムズ株式会社 ASCG ブロケード コミュニケーションズ システムズ株式会社のASCGにおける重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2025-7397 2026-02-4 18:41 2025-07-17 Show GitHub Exploit DB Packet Storm
348 9.1 緊急
Network 		ブロケード コミュニケーションズ システムズ株式会社 ASCG ブロケード コミュニケーションズ システムズ株式会社のASCGにおける暗号強度に関する脆弱性 CWE-326
不適切な暗号強度 		CVE-2025-7398 2026-02-4 18:41 2025-07-17 Show GitHub Exploit DB Packet Storm
349 9.8 緊急
Network 		angeljudesuarez School Management System Project In PHP Source Code Angel Jude Reyes SuarezのSchool Management System Project In PHP Source Codeにおける複数の脆弱性 CWE-74
CWE-89
CVE-2026-1545 2026-02-4 18:40 2026-01-28 Show GitHub Exploit DB Packet Storm
350 5.3 警告
Network 		Project-monai MONAI Project-monaiのMONAIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-21851 2026-02-4 18:40 2026-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313921 - xerox document_centre_220
document_centre_230
document_centre_240
document_centre_255
document_centre_265
document_centre_332
document_centre_340
document_centre_420
document_centre… 		Unknown vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to cause a denial of service or rea… NVD-CWE-Other
CVE-2005-2646 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
313922 - xerox document_centre_265
document_centre_332
document_centre_340
document_centre_420
document_centre_490
document_centre_535
document_centre_555 		Cross-site scripting (XSS) vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to inject arbitr… NVD-CWE-Other
CVE-2005-2647 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
313923 - emefa emefa_guestbook Cross-site scripting (XSS) vulnerability in sign.asp in Emefa Guestbook 1.2 allows remote attackers to inject arbitrary web script or HTML via the (1) name, (2) location, and (3) email parameters. NVD-CWE-Other
CVE-2005-2650 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
313924 - maildrop maildrop lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments. NVD-CWE-Other
CVE-2005-2655 2008-09-6 05:52 2005-08-31 Show GitHub Exploit DB Packet Storm
313925 - polygen polygen Polygen before 1.0.6 generates precompiled grammar objects with world-writable permissions, which allows local users to cause a denial of service (disk consumption) and possibly perform other unautho… NVD-CWE-Other
CVE-2005-2656 2008-09-6 05:52 2005-09-7 Show GitHub Exploit DB Packet Storm
313926 - softwolves_software turquoise_superstat Buffer overflow in utility.cpp in Turquoise SuperStat (turqstat) 2.2.4 and earlier might allow remote NNTP servers to execute arbitrary code via a date with a long month. NVD-CWE-Other
CVE-2005-2658 2008-09-6 05:52 2005-09-16 Show GitHub Exploit DB Packet Storm
313927 - apachetop apachetop apachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug. NVD-CWE-Other
CVE-2005-2660 2008-09-6 05:52 2005-10-1 Show GitHub Exploit DB Packet Storm
313928 - hauri livecall
virobot_advanced_server
virobot_expert
virobot_linux_server 		Directory traversal vulnerability in HAURI Anti-Virus products including ViRobot Expert 4.0, Advanced Server, Linux Server 2.0, and LiveCall allows remote attackers to overwrite arbitrary files via "… NVD-CWE-Other
CVE-2005-2670 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
313929 - woltlab burning_board SQL injection vulnerability in modcp.php in WoltLab Burning Board 2.2.2 and 2.3.3 allows remote authenticated attackers to execute arbitrary SQL commands via the (1) x or (2) y parameters. NVD-CWE-Other
CVE-2005-2673 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm
313930 - coppermine coppermine_photo_gallery Cross-site scripting (XSS) vulnerability in displayimage.php in Coppermine Photo Gallery before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via EXIF data. NVD-CWE-Other
CVE-2005-2676 2008-09-6 05:52 2005-08-23 Show GitHub Exploit DB Packet Storm