Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
691	8.1	重要 Network	ThemeMove	EduMall	ThemeMoveのWordPress用EduMallにおけるPHP リモートファイルインクルージョンの脆弱性	CWE-98 PHP リモートファイルインクルージョン	CVE-2025-59564	2026-02-2 19:31	2025-10-22	Show	GitHub Exploit DB Packet Storm

692	8.1	重要 Network	ThemeMove	Minimogwp	ThemeMoveのWordPress用MinimogwpにおけるPHP リモートファイルインクルージョンの脆弱性	CWE-98 PHP リモートファイルインクルージョン	CVE-2025-60069	2026-02-2 19:31	2025-12-18	Show	GitHub Exploit DB Packet Storm

693	10	緊急 Network	GongRzhe	Terminal Controller for MCP	GongRzheのTerminal Controller for MCPにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2025-61492	2026-02-2 19:31	2026-01-7	Show	GitHub Exploit DB Packet Storm

694	7.5	重要 Network	wpwebelite	Follow My Blog Post	WPWeb EliteのWordPress用Follow My Blog Postにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性	CWE-497 認可されていない制御領域への重要情報の漏えい	CVE-2025-64258	2026-02-2 19:31	2025-12-18	Show	GitHub Exploit DB Packet Storm

695	5.4	警告 Network	Qode Interactive	Bard	Qode InteractiveのWordPress用Bardにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2025-64368	2026-02-2 19:31	2025-10-31	Show	GitHub Exploit DB Packet Storm

696	5.3	警告 Network	XWiki	Full Calendar Macro (macro-fullcalendar-pom)	XWikiのFull Calendar Macro (macro-fullcalendar-pom)における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2025-65090	2026-02-2 19:31	2026-01-10	Show	GitHub Exploit DB Packet Storm

697	10	緊急 Network	XWiki	Full Calendar Macro (macro-fullcalendar-pom)	XWikiのFull Calendar Macro (macro-fullcalendar-pom)におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-65091	2026-02-2 19:31	2026-01-10	Show	GitHub Exploit DB Packet Storm

698	6.5	警告 Network	Mega-Fence Project	Mega-Fence	Mega-Fence ProjectのMega-Fenceにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性	CWE-807 セキュリティ決定の信頼できない入力への依存	CVE-2025-65328	2026-02-2 19:31	2026-01-5	Show	GitHub Exploit DB Packet Storm

699	7.5	重要 Network	WebPros International GmbH	Plesk Obsidian	WebPros International GmbHのPlesk Obsidianにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2025-65518	2026-02-2 19:31	2026-01-8	Show	GitHub Exploit DB Packet Storm

700	8.8	重要 Network	Qode Interactive	Powerlift	Qode InteractiveのWordPress用Powerliftにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-66532	2026-02-2 19:31	2025-12-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314811	-	alex_linde	alexs_ftp_server	Directory traversal vulnerability in Alex's FTP Server 0.7 allows remote attackers to read arbitrary files via a ... (modified dot dot) in the (1) GET or (2) CD commands.	NVD-CWE-Other	CVE-2001-0480	2008-09-6 05:24	2001-06-27	Show	GitHub Exploit DB Packet Storm

314812	-	symantec	raptor_firewall	Configuration error in Axent Raptor Firewall 6.5 allows remote attackers to use the firewall as a proxy to access internal web resources when the http.noproxy Rule is not set.	NVD-CWE-Other	CVE-2001-0483	2008-09-6 05:24	2001-06-18	Show	GitHub Exploit DB Packet Storm

314813	-	nullsoft	winamp	Buffer overflow in WINAMP 2.6x and 2.7x allows attackers to execute arbitrary code via a long string in an AIP file.	NVD-CWE-Other	CVE-2001-0490	2008-09-6 05:24	2001-06-27	Show	GitHub Exploit DB Packet Storm

314814	-	macromedia	coldfusion_server	Example applications (Exampleapps) in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote attackers to conduct upload, read, or exe…	NVD-CWE-Other	CVE-2001-0535	2008-09-6 05:24	2001-10-30	Show	GitHub Exploit DB Packet Storm

314815	-	zope	zope	Digital Creations Zope 2.3.1 b1 and earlier allows a local attacker (Zope user) with through-the-web scripting capabilities to alter ZClasses class attributes.	NVD-CWE-Other	CVE-2001-0568	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

314816	-	zope	zope	Digital Creations Zope 2.3.1 b1 and earlier contains a problem in the method return values related to the classes (1) ObjectManager, (2) PropertyManager, and (3) PropertySheet.	NVD-CWE-Other	CVE-2001-0569	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

314817	-	openbsd ssh	openssh ssh	The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: (1) pass…	NVD-CWE-Other	CVE-2001-0572	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

314818	-	sun	chilisoft	Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the default installation, which can allow a remote attacker to gain additional privileges.	NVD-CWE-Other	CVE-2001-0632	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

314819	-	sun	chilisoft	Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '..' (dot dot) attack in the sample script 'codebr…	NVD-CWE-Other	CVE-2001-0633	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

314820	-	raytheon	silentrunner	Buffer overflows in Raytheon SilentRunner allow remote attackers to (1) cause a denial of service in the collector (cle.exe) component of SilentRunner 2.0 via traffic containing long passwords, or (2…	NVD-CWE-Other	CVE-2001-0636	2008-09-6 05:24	2001-09-20	Show	GitHub Exploit DB Packet Storm