Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227221	7.5	危険	W-Agora	-	w-Agora の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6647	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

227222	6.8	警告	xml2owl	-	xml2owl の showCode.php における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-6632	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

227223	6.8	警告	pnphpbb	-	PNphpBB2 の printview.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6624	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

227224	5	警告	zeuscms	-	ZeusCMS における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6623	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

227225	7.5	危険	zeuscms	-	ZeusCMS の security.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6622	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

227226	4.3	警告	simpleforum	-	SimpleForum の simpleforum.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6616	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

227227	5.8	警告	skyfex	-	SkyFex Client の SkyFexClient.ocx におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6605	2012-12-20 18:34	2007-12-31	Show	GitHub Exploit DB Packet Storm

227228	5	警告	xcms	-	XCMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6604	2012-12-20 18:34	2007-12-31	Show	GitHub Exploit DB Packet Storm

227229	4.3	警告	phpcredo	-	PHCDownload におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6588	2012-12-20 18:34	2007-12-28	Show	GitHub Exploit DB Packet Storm

227230	7.5	危険	Plogger Project	-	Plogger の plog-rss.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6587	2012-12-20 18:34	2007-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
921	9.8	CRITICAL Network	jizhicms	jizhicms	Jizhicms v2.5.4 is vulnerable to SQL injection in the product editing module. Update	CWE-89 SQL Injection	CVE-2025-50229	2026-04-28 03:24	2026-04-24	Show	GitHub Exploit DB Packet Storm

922	7.5	HIGH Network	zfnd	zebra-network zebrad	ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.0 and zebra-network version 5.0.1, when deserializing addr or addrv2 messages, which contain vectors of addresses, Zebra wo… Update	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-40881	2026-04-28 03:24	2026-04-22	Show	GitHub Exploit DB Packet Storm

923	4.3	MEDIUM Network	ibm	guardium_data_protection	IBM Guardium Data Protection 12.0, 12.1, and 12.2 is vulnerable to Security Misconfiguration vulnerability in the user access control panel. Update	CWE-613 Insufficient Session Expiration	CVE-2026-1272	2026-04-28 03:23	2026-04-23	Show	GitHub Exploit DB Packet Storm

924	4.9	MEDIUM Network	ibm	guardium_data_protection	IBM Guardium Data Protection 12.0, 12.1, and 12.2 is vulnerable to a Bypass Business Logic vulnerability in the access management control panel. Update	CWE-840 Business Logic Errors	CVE-2026-1274	2026-04-28 03:23	2026-04-23	Show	GitHub Exploit DB Packet Storm

925	6.5	MEDIUM Network	ibm	db2	IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow an authenticated user to cause a denial of service due to improper neutr… Update	CWE-1284 Improper Validation of Specified Quantity in Input	CVE-2026-1352	2026-04-28 03:22	2026-04-23	Show	GitHub Exploit DB Packet Storm

926	6.6	MEDIUM Local	samsung	one	Improper validation of STRING tensor offsets could allows malformed string metadata to trigger out of bounds access during constant tensor import in Samsung Open Source ONE Affected version is prior … Update	CWE-1284 Improper Validation of Specified Quantity in Input	CVE-2026-6839	2026-04-28 03:22	2026-04-22	Show	GitHub Exploit DB Packet Storm

927	6.6	MEDIUM Local	samsung	one	Integer overflow in constant tensor data size calculation in Samsung Open Source ONE could cause incorrect buffer sizing for large constant nodes. Affected version is prior to commit 1.30.0. Update	CWE-190 Integer Overflow or Wraparound	CVE-2026-41667	2026-04-28 03:21	2026-04-22	Show	GitHub Exploit DB Packet Storm

928	6.1	MEDIUM Local	samsung	one	Integer overflow in scratch buffer initialization size calculation in Samsung Open Source ONE cause incorrect memory initialization for large intermediate tensors. Affected version is prior to commit… Update	CWE-190 Integer Overflow or Wraparound	CVE-2026-41665	2026-04-28 03:21	2026-04-22	Show	GitHub Exploit DB Packet Storm

929	6.6	MEDIUM Local	samsung	one	Integer overflow in tensor copy size calculation in Samsung Open Source ONE could lead to out of bounds access during loop state propagation. Affected version is prior to commit 1.30.0. Update	CWE-190 Integer Overflow or Wraparound	CVE-2026-41666	2026-04-28 03:21	2026-04-22	Show	GitHub Exploit DB Packet Storm

930	6.6	MEDIUM Local	samsung	one	Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapes. Affected version is prior to commit 1.30.0. Update	CWE-190 Integer Overflow or Wraparound	CVE-2026-41664	2026-04-28 03:21	2026-04-22	Show	GitHub Exploit DB Packet Storm