Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2081	7.5	重要 Network	V2Board	V2Board	V2BoardにおけるGET リクエストにおけるクエリ文字列からの情報漏えいに関する脆弱性	CWE-598 GET リクエストにおけるクエリ文字列からの情報漏えい	CVE-2026-37504	2026-05-13 10:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2082	4.9	警告 Network	V2Board	V2Board	V2BoardにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-37505	2026-05-13 10:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2083	5.4	警告 Network	Apache Software Foundation	Apache-airflow-providers-keycloak	Apache Software FoundationのApache-airflow-providers-keycloakにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-40948	2026-05-13 10:26	2026-04-18	Show	GitHub Exploit DB Packet Storm

2084	6.5	警告 Adjacent	ウォッチガード・テクノロジー	WatchGuard Agent	ウォッチガード・テクノロジーのWatchGuard Agentにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-41286	2026-05-13 10:26	2026-05-6	Show	GitHub Exploit DB Packet Storm

2085	6.5	警告 Adjacent	ウォッチガード・テクノロジー	WatchGuard Agent	ウォッチガード・テクノロジーのWatchGuard Agentにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-41287	2026-05-13 10:26	2026-05-6	Show	GitHub Exploit DB Packet Storm

2086	7.8	重要 Local	ウォッチガード・テクノロジー	WatchGuard Agent	ウォッチガード・テクノロジーのWatchGuard Agentにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2026-41288	2026-05-13 10:26	2026-05-6	Show	GitHub Exploit DB Packet Storm

2087	9.9	緊急 Network	Mozilla Foundation	0DIN Scanner	Mozilla Foundationの0DIN Scannerにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41512	2026-05-13 10:26	2026-05-8	Show	GitHub Exploit DB Packet Storm

2088	9.8	緊急 Network	D-Link Systems, Inc.	DIR-456U Firmware	D-Link CorporationのDIR-456U Firmwareにおけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2026-42376	2026-05-13 10:26	2026-05-4	Show	GitHub Exploit DB Packet Storm

2089	6.5	警告 Network	langflow	Langflow Desktop	langflowのLangflow Desktopにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-4502	2026-05-13 10:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

2090	7.5	重要 Network	langflow	Langflow Desktop	langflowのLangflow Desktopにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-4503	2026-05-13 10:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
355891	-	trend_micro	interscan_viruswall	InterScan VirusWall 3.52 build 1462 allows remote attackers to bypass virus protection via e-mail messages with headers that violate RFC specifications by having (or missing) space characters in unex…	NVD-CWE-Other	CVE-2002-0637	2008-09-6 05:28	2002-07-11	Show	GitHub Exploit DB Packet Storm

355892	-	pingtel	xpressa	The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows administrators to cause a denial of service by modifying the SIP_AUTHENTICATE_SCHEME value to force au…	NVD-CWE-Other	CVE-2002-0669	2008-09-6 05:28	2003-02-19	Show	GitHub Exploit DB Packet Storm

355893	-	pingtel	xpressa	The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 uses Base64 encoded usernames and passwords for HTTP basic authentication, which allows remote attackers to s…	NVD-CWE-Other	CVE-2002-0670	2008-09-6 05:28	2002-07-23	Show	GitHub Exploit DB Packet Storm

355894	-	pingtel	xpressa	Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows attackers with physical access to restore the phone to factory defaults without authentication via a menu option, which sets…	NVD-CWE-Other	CVE-2002-0672	2008-09-6 05:28	2002-07-23	Show	GitHub Exploit DB Packet Storm

355895	-	pingtel	xpressa	The enrollment process for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows attackers with physical access to the phone to log out the current user and re-register the phone…	NVD-CWE-Other	CVE-2002-0673	2008-09-6 05:28	2002-07-23	Show	GitHub Exploit DB Packet Storm

355896	-	apple	mac_os_x	SoftwareUpdate for MacOS 10.1.x does not use authentication when downloading a software update, which could allow remote attackers to execute arbitrary code by posing as the Apple update server via t…	NVD-CWE-Other	CVE-2002-0676	2008-09-6 05:28	2002-07-11	Show	GitHub Exploit DB Packet Storm

355897	-	zope	zope	The "through the web code" capability for Zope 2.0 through 2.5.1 b1 allows untrusted users to shut down the Zope server via certain headers.	NVD-CWE-Other	CVE-2002-0687	2008-09-6 05:28	2002-07-23	Show	GitHub Exploit DB Packet Storm

355898	-	zope	zope	ZCatalog plug-in index support capability for Zope 2.4.0 through 2.5.1 allows anonymous users and untrusted code to bypass access restrictions and call arbitrary methods of catalog indexes.	NVD-CWE-Other	CVE-2002-0688	2008-09-6 05:28	2002-07-23	Show	GitHub Exploit DB Packet Storm

355899	-	gisle_aas	digest-md5	An interaction between the Perl MD5 module (perl-Digest-MD5) and Perl could produce incorrect MD5 checksums for UTF-8 data, which could prevent a system from properly verifying the integrity of the d…	NVD-CWE-Other	CVE-2002-0703	2008-09-6 05:28	2002-07-26	Show	GitHub Exploit DB Packet Storm

355900	-	greg_roelofs	libpng	Buffer overflow in the progressive reader for libpng 1.2.x before 1.2.4, and 1.0.x before 1.0.14, allows attackers to cause a denial of service (crash) via a PNG data stream that has more IDAT data t…	NVD-CWE-Other	CVE-2002-0728	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm