Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
861 7.3 重要
Local 		i-PRO株式会社 IP簡単設定ソフトウェア i-PRO製IP簡単設定ソフトウェアにおけるDLL読み込みに関する脆弱性 CWE-Other
その他 		CVE-2026-34488 2026-04-23 12:21 2026-04-23 Show GitHub Exploit DB Packet Storm
862 4.7 警告
Network 		彼方株式会社 CMS ALAYA CMS ALAYAにおけるSQLインジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-40529 2026-04-23 12:07 2026-04-23 Show GitHub Exploit DB Packet Storm
863 10 緊急
Network 		Quest Software Inc. KACE Systems Management Appliance Quest Software Inc.のKACE Systems Management Applianceにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2025-32975 2026-04-23 10:17 2025-06-24 Show GitHub Exploit DB Packet Storm
864 7.5 重要
Network 		jsonparser project jsonparser jsonparser projectのjsonparserにおける配列インデックスの検証に関する脆弱性 CWE-129
配列インデックスの不適切な検証 		CVE-2026-32285 2026-04-23 10:17 2026-03-26 Show GitHub Exploit DB Packet Storm
865 7.5 重要
Network 		antchfx Xpath antchfxのXpathにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-32287 2026-04-23 10:17 2026-03-26 Show GitHub Exploit DB Packet Storm
866 5.5 警告
Local 		Direct-Soft Inc. WinMPG Video Convert Direct-Soft Inc.のWinMPG Video Convertにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2019-25644 2026-04-23 10:17 2026-03-24 Show GitHub Exploit DB Packet Storm
867 5.3 警告
Network 		レッドハット Mirror Registry for Red Hat OpenShift レッドハットのMirror Registry for Red Hat OpenShiftにおけるエラーメッセージによる情報漏えいに関する脆弱性 CWE-209
エラーメッセージによる情報漏えい 		CVE-2025-14243 2026-04-23 10:17 2026-04-8 Show GitHub Exploit DB Packet Storm
868 9 緊急
Network 		XWiki Blog Application XWikiのBlog Applicationにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-66024 2026-04-23 10:17 2026-03-4 Show GitHub Exploit DB Packet Storm
869 6.5 警告
Network 		レッドハット Mirror Registry for Red Hat OpenShift
Quay 		レッドハットのMirror Registry for Red Hat OpenShift等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-2377 2026-04-23 10:17 2026-04-8 Show GitHub Exploit DB Packet Storm
870 7.2 重要
Network 		langchain Langgraph langchainのLanggraphにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-28277 2026-04-23 10:16 2026-03-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348931 - zope zope Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activ… NVD-CWE-Other
CVE-2000-1211 2008-09-6 05:22 2000-12-16 Show GitHub Exploit DB Packet Storm
348932 - gnu g\+\+
gcc 		The -ftrapv compiler option in gcc and g++ 3.3.3 and earlier does not handle all types of integer overflows, which may leave applications vulnerable to vulnerabilities related to overflows. NVD-CWE-Other
CVE-2000-1219 2008-09-6 05:22 2000-11-1 Show GitHub Exploit DB Packet Storm
348933 - i-soft quikstore quikstore.cgi in Quikstore Shopping Cart allows remote attackers to execute arbitrary commands via shell metacharacters in the URL portion of an HTTP GET request. NVD-CWE-Other
CVE-2000-1223 2008-09-6 05:22 2000-11-20 Show GitHub Exploit DB Packet Storm
348934 - imatix xitami Xitami 2.5b installs the testcgi.exe program by default in the cgi-bin directory, which allows remote attackers to gain sensitive configuration information about the web server by accessing the progr… NVD-CWE-Other
CVE-2000-1225 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
348935 - snort snort Snort 1.6, when running in straight ASCII packet logging mode or IDS mode with straight decoded ASCII packet logging selected, allows remote attackers to cause a denial of service (crash) by sending … NVD-CWE-Other
CVE-2000-1226 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
348936 - phorum phorum Phorum 3.0.7 allows remote attackers to change the administrator password without authentication via an HTTP request for admin.php3 that sets step, option, confirm and newPssword variables. NVD-CWE-Other
CVE-2000-1228 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
348937 - phorum phorum Directory traversal vulnerability in Phorum 3.0.7 allows remote Phorum administrators to read arbitrary files via ".." (dot dot) sequences in the default .langfile name field in the Master Settings a… NVD-CWE-Other
CVE-2000-1229 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
348938 - phorum phorum Backdoor in auth.php3 in Phorum 3.0.7 allows remote attackers to access restricted web pages via an HTTP request with the PHP_AUTH_USER parameter set to "boogieman". NVD-CWE-Other
CVE-2000-1230 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
348939 - phorum phorum code.php3 in Phorum 3.0.7 allows remote attackers to read arbitrary files in the phorum directory via the query string. NVD-CWE-Other
CVE-2000-1231 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm
348940 - phorum phorum upgrade.php3 in Phorum 3.0.7 could allow remote attackers to modify certain Phorum database tables via an unknown method. NVD-CWE-Other
CVE-2000-1232 2008-09-6 05:22 2000-12-31 Show GitHub Exploit DB Packet Storm