Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132531	4.4	警告 Local	Mautic	Mautic	Mautic における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2021-27908	2021-12-1 14:04	2021-03-23	Show	GitHub Exploit DB Packet Storm

132532	6.5	警告 Network	マイクロソフト	Azure Site Recovery Azure Migrate Azure Active Directory Azure Automation	複数の Azure 製品における情報を公開される脆弱性	CWE-668 誤った領域へのリソースの漏えい	CVE-2021-42306	2021-12-1 12:27	2021-11-17	Show	GitHub Exploit DB Packet Storm

132533	7.5	重要 Network	レッドハット Jboss	JBoss Enterprise Application Platform Undertow jboss-remoting	複数の Red Hat 製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2019-19343	2021-12-1 12:23	2019-12-6	Show	GitHub Exploit DB Packet Storm

132534	7.8	重要 Local	マイクロソフト	Windows Update Assistant	Windows Update Assistant における権限を昇格される脆弱性	CWE-59 リンク解釈の問題	CVE-2021-42297	2021-12-1 11:47	2021-11-16	Show	GitHub Exploit DB Packet Storm

132535	4.4	警告 Local	NETFLIX, INC.	hollow	hollow における脆弱性	CWE-noinfo 情報不足	CVE-2021-28099	2021-12-1 11:16	2021-03-23	Show	GitHub Exploit DB Packet Storm

132536	5.5	警告 Local	NETFLIX, INC.	Priam	Priam における脆弱性	CWE-noinfo 情報不足	CVE-2021-28100	2021-12-1 11:00	2021-03-23	Show	GitHub Exploit DB Packet Storm

132537	7.5	重要 Network	Apache Software Foundation オラクル	Apache Thrift Apache Hive Oracle Communications Cloud Native Core Network Slice Selection Function	Apache Thrift におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2020-13949	2021-12-1 09:55	2020-06-8	Show	GitHub Exploit DB Packet Storm

132538	7.5	重要 Network	JefferyHus	es6-crawler-detect	es6-crawler-detect における脆弱性	CWE-Other その他	CVE-2020-28501	2021-12-1 09:54	2020-12-6	Show	GitHub Exploit DB Packet Storm

132539	9.8	緊急 Network	Apache Software Foundation	Apache Open For Business Project (OFBiz)	Apache OFBiz における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2021-26295	2021-12-1 09:54	2021-03-21	Show	GitHub Exploit DB Packet Storm

132540	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Firefox ESR Mozilla Thunderbird	Mozilla Firefox および Thunderbird における型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2021-23954	2021-12-1 09:53	2021-01-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
359741	-	efingerd	efingerd	Buffer overflow in efingerd 1.5 and earlier, and possibly up to 1.61, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a finger request from an IP address …	NVD-CWE-Other	CVE-2002-0423	2008-09-6 05:27	2002-08-12	Show	GitHub Exploit DB Packet Storm

359742	-	efingerd	efingerd	efingerd 1.61 and earlier, when configured without the -u option, executes .efingerd files as the efingerd user (typically "nobody"), which allows local users to gain privileges as the efingerd user …	NVD-CWE-Other	CVE-2002-0424	2008-09-6 05:27	2002-08-12	Show	GitHub Exploit DB Packet Storm

359743	-	khaled_mardam-bey	mirc	mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a "100 testing" message in a DCC connection request that cannot be ignored or cancel…	NVD-CWE-Other	CVE-2002-0425	2008-09-6 05:27	2002-08-12	Show	GitHub Exploit DB Packet Storm

359744	-	linksys	befvp41	VPN Server module in Linksys EtherFast BEFVP41 Cable/DSL VPN Router before 1.40.1 reduces the key lengths for keys that are supplied via manual key entry, which makes it easier for attackers to crack…	NVD-CWE-Other	CVE-2002-0426	2008-09-6 05:27	2002-08-12	Show	GitHub Exploit DB Packet Storm

359745	-	christof_pohl	improved_mod_frontpage	Buffer overflows in fpexec in mod_frontpage before 1.6.1 may allow attackers to gain root privileges.	NVD-CWE-Other	CVE-2002-0427	2008-09-6 05:27	2002-08-12	Show	GitHub Exploit DB Packet Storm

359746	-	les_vanbrunt	adrotate_pro	get_input in adrotate.pm for Les VanBrunt AdRotate Pro 2.0 allows remote attackers to modify the database and possibly execute arbitrary commands via a SQL code injection attack.	NVD-CWE-Other	CVE-2001-1224	2008-09-6 05:26	2001-12-23	Show	GitHub Exploit DB Packet Storm

359747	-	hughes	msql	Hughes Technology Mini SQL 2.0.10 through 2.0.12 allows local users to cause a denial of service by creating a very large array in a table, which causes miniSQL to crash when the table is queried.	NVD-CWE-Other	CVE-2001-1225	2008-09-6 05:26	2001-12-26	Show	GitHub Exploit DB Packet Storm

359748	-	adcycle	adcycle	AdCycle 1.17 and earlier allow remote attackers to modify SQL queries, which are not properly sanitized before being passed to the MySQL database.	NVD-CWE-Other	CVE-2001-1226	2008-09-6 05:26	2001-12-25	Show	GitHub Exploit DB Packet Storm

359749	-	gallery_project	gallery	Bharat Mediratta Gallery PHP script before 1.2.1 allows remote attackers to execute arbitrary code by including files from remote web sites via an HTTP request that modifies the includedir variable.	NVD-CWE-Other	CVE-2001-1234	2008-09-6 05:26	2001-10-2	Show	GitHub Exploit DB Packet Storm

359750	-	engardelinux	secure_linux	The default configuration of sudo in Engarde Secure Linux 1.0.1 allows any user in the admin group to run certain commands that could be leveraged to gain full root access.	NVD-CWE-Other	CVE-2001-1240	2008-09-6 05:26	2001-07-11	Show	GitHub Exploit DB Packet Storm