Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1751 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2025-6016 2026-04-27 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
1752 7.5 重要
Network 		Nitro Software Inc. Nitro PDF Pro Nitro Software Inc.のNitro PDF ProにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2025-66769 2026-04-27 11:26 2026-04-13 Show GitHub Exploit DB Packet Storm
1753 7.5 重要
Network 		Nitro Software Inc. Nitro PDF Pro Nitro Software Inc.のNitro PDF ProにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2025-69624 2026-04-27 11:26 2026-04-13 Show GitHub Exploit DB Packet Storm
1754 2.7
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2025-9957 2026-04-27 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
1755 4.8 警告
Network 		pega pega platform pegaのpega platformにおけるクロスサイトスクリプティングの脆弱性 CWE-80
クロスサイトスクリプティング (Basic XSS) 		CVE-2026-1564 2026-04-27 11:26 2026-04-15 Show GitHub Exploit DB Packet Storm
1756 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-1660 2026-04-27 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
1757 4.8 警告
Network 		pega pega platform pegaのpega platformにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-1711 2026-04-27 11:26 2026-04-15 Show GitHub Exploit DB Packet Storm
1758 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-Other
その他 		CVE-2026-23314 2026-04-27 11:26 2026-03-25 Show GitHub Exploit DB Packet Storm
1759 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-23315 2026-04-27 11:26 2026-03-25 Show GitHub Exploit DB Packet Storm
1760 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-23316 2026-04-27 11:26 2026-03-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313811 - microsoft windows_2000 RunAs (runas.exe) in Windows 2000 stores cleartext authentication information in memory, which could allow attackers to obtain usernames and passwords by executing a process that is allocated the sam… NVD-CWE-Other
CVE-2001-1517 2024-08-8 14:15 2001-12-31 Show GitHub Exploit DB Packet Storm
313812 - microsoft windows_2000 RunAs (runas.exe) in Windows 2000 allows local users to create a spoofed named pipe when the service is stopped, then capture cleartext usernames and passwords when clients connect to the service. N… NVD-CWE-Other
CVE-2001-1519 2024-08-8 14:15 2001-12-31 Show GitHub Exploit DB Packet Storm
313813 - microsoft isa_server Microsoft Internet Security and Acceleration (ISA) Server 2000 allows remote attackers to cause a denial of service via a flood of fragmented UDP packets. NOTE: the vendor disputes this issue, sayin… NVD-CWE-Other
CVE-2001-1533 2024-08-8 14:15 2001-12-31 Show GitHub Exploit DB Packet Storm
313814 5.3 MEDIUM
Network 		- - The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.2. This is due to the plugin utilizing Sym… - CVE-2024-6552 2024-08-8 13:17 2024-08-8 Show GitHub Exploit DB Packet Storm
313815 - cisco as5350 Cisco AS5350 IOS 12.2(11)T with access control lists (ACLs) applied and possibly with ssh running allows remote attackers to cause a denial of service (crash) via a port scan, possibly due to an ssh … CWE-310
Cryptographic Issues 		CVE-2002-2379 2024-08-8 13:17 2002-12-31 Show GitHub Exploit DB Packet Storm
313816 - symantec norton_antivirus NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus 2002 allows remote attackers to send viruses that bypass the e-mail scanning via a NULL character in the MIME header before… NVD-CWE-Other
CVE-2002-1774 2024-08-8 13:16 2002-12-31 Show GitHub Exploit DB Packet Storm
313817 - symantec norton_antivirus NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus (NAV) 2002 allows remote attackers to bypass the initial virus scan and cause NAV to prematurely stop scanning by using a n… NVD-CWE-Other
CVE-2002-1775 2024-08-8 13:16 2002-12-31 Show GitHub Exploit DB Packet Storm
313818 - symantec norton_antivirus NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus 2002 allows remote attackers to bypass virus protection via a Word Macro virus with a .nch or .dbx extension, which is auto… NVD-CWE-Other
CVE-2002-1776 2024-08-8 13:16 2002-12-31 Show GitHub Exploit DB Packet Storm
313819 - symantec norton_antivirus NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus (NAV) 2002 allows remote attackers to bypass e-mail scanning via a filename in the Content-Type field with an excluded exte… NVD-CWE-Other
CVE-2002-1777 2024-08-8 13:16 2002-12-31 Show GitHub Exploit DB Packet Storm
313820 9.8 CRITICAL
Network 		- - The Appointment Booking Calendar Plugin and Online Scheduling Plugin – BookingPress plugin for WordPress is vulnerable to authentication bypass in versions 1.1.6 to 1.1.7. This is due to the plugin n… - CVE-2024-7350 2024-08-8 12:15 2024-08-8 Show GitHub Exploit DB Packet Storm