Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
361 7.1 重要
Local 		Copier Copier CopierにおけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2026-23986 2026-02-4 18:40 2026-01-21 Show GitHub Exploit DB Packet Storm
362 6.5 警告
Network 		franklioxygen MyTube franklioxygenのMyTubeにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-24139 2026-02-4 18:40 2026-01-24 Show GitHub Exploit DB Packet Storm
363 5.3 警告
Network 		franklioxygen MyTube franklioxygenのMyTubeにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-24140 2026-02-4 18:40 2026-01-24 Show GitHub Exploit DB Packet Storm
364 6.1 警告
Network 		butor team
Ghost Foundation		 Ghost
Portal 		Ghost FoundationのGhost等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-24778 2026-02-4 18:40 2026-01-27 Show GitHub Exploit DB Packet Storm
365 5.4 警告
Network 		OpenEMR OpenEMR OpenEMRにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-47817 2026-02-4 18:40 2026-01-21 Show GitHub Exploit DB Packet Storm
366 5.4 警告
Network 		Commvault Systems, Inc Commvault Commvault Systems, IncのCommvaultにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-12776 2026-02-4 18:40 2026-01-7 Show GitHub Exploit DB Packet Storm
367 7.5 重要
Network 		Html2Pdf project Html2Pdf Apryse Software Inc.のHTML2PDFにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2025-56589 2026-02-4 18:40 2026-01-22 Show GitHub Exploit DB Packet Storm
368 8.8 重要
Network 		ZwiiCMS ZwiiCMS ZwiiCMSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-57130 2026-02-4 18:40 2025-11-5 Show GitHub Exploit DB Packet Storm
369 5.4 警告
Network 		The Starware WorklogPRO The StarwareのWorklogPROにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-57681 2026-02-4 18:40 2026-01-21 Show GitHub Exploit DB Packet Storm
370 7.5 重要
Network 		ollama ollama ollamaにおける複数の脆弱性 CWE-20
CWE-400
CVE-2025-66959 2026-02-4 18:40 2026-01-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307181 - oracle database_server Unspecified vulnerability in the Logical Standby component in Oracle Database allows remote authenticated users to affect integrity via unknown vectors. NVD-CWE-noinfo
CVE-2009-1996 2012-10-23 12:07 2010-01-13 Show GitHub Exploit DB Packet Storm
307182 - oracle database_server Per: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2010.html "Fixed in all supported releases. Upgrade to any supported release to acquire this fix." NVD-CWE-noinfo
CVE-2009-1996 2012-10-23 12:07 2010-01-13 Show GitHub Exploit DB Packet Storm
307183 - oracle database_server Unspecified vulnerability in the Authentication component in Oracle Database 10.2.0.3 and 11.1.0.7 allows remote attackers to affect confidentiality via unknown vectors. NVD-CWE-noinfo
CVE-2009-1997 2012-10-23 12:07 2009-10-23 Show GitHub Exploit DB Packet Storm
307184 - oracle industry_applications Unspecified vulnerability in the Oracle Communications Order and Service Management component in Oracle Industry Applications 2.8.0, 6.2.0, 6.3.0, and 6.3.1 allows remote authenticated users to affec… NVD-CWE-noinfo
CVE-2009-1998 2012-10-23 12:07 2009-10-23 Show GitHub Exploit DB Packet Storm
307185 - oracle application_server Unspecified vulnerability in the Business Intelligence Enterprise Edition component in unspecified Oracle Application Server versions allows remote attackers to affect integrity via unknown vectors. NVD-CWE-noinfo
CVE-2009-1999 2012-10-23 12:07 2009-10-23 Show GitHub Exploit DB Packet Storm
307186 - oracle application_server Per: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuoct2009.html "Fixed in all supported versions. No patch provided in this Critical Patch Update." NVD-CWE-noinfo
CVE-2009-1999 2012-10-23 12:07 2009-10-23 Show GitHub Exploit DB Packet Storm
307187 - oracle database_server Unspecified vulnerability in the Authentication component in Oracle Database 11.1.0.7 allows remote attackers to affect confidentiality via unknown vectors. NVD-CWE-noinfo
CVE-2009-2000 2012-10-23 12:07 2009-10-23 Show GitHub Exploit DB Packet Storm
307188 - oracle database_server Unspecified vulnerability in the PL/SQL component in Oracle Database 10.2.0.4 and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. NVD-CWE-noinfo
CVE-2009-2001 2012-10-23 12:07 2009-10-23 Show GitHub Exploit DB Packet Storm
307189 - oracle bea_product_suite Unspecified vulnerability in the WebLogic Portal component in BEA Product Suite 8.1.6, 9.2.3, 10.0.1, 10.2.1, and 10.3.1.0.0 allows remote attackers to affect integrity via unknown vectors. NVD-CWE-noinfo
CVE-2009-2002 2012-10-23 12:07 2009-10-23 Show GitHub Exploit DB Packet Storm
307190 - mortbay jetty Directory traversal vulnerability in the HTTP server in Mort Bay Jetty 5.1.14, 6.x before 6.1.17, and 7.x through 7.0.0.M2 allows remote attackers to access arbitrary files via directory traversal se… CWE-22
Path Traversal 		CVE-2009-1523 2012-10-23 12:06 2009-05-6 Show GitHub Exploit DB Packet Storm