Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2351	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2025-39967	2026-02-5 15:46	2025-10-15	Show	GitHub Exploit DB Packet Storm

2352	6.7	警告 Local	デル	secure connect gateway	デルのsecure connect gatewayにおける不要な特権による実行に関する脆弱性	CWE-250 CWE-noinfo	CVE-2025-46696	2026-02-5 15:46	2026-01-6	Show	GitHub Exploit DB Packet Storm

2353	8.6	重要 Network	Sick	Media Server	SickのMedia Serverにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-49181	2026-02-5 15:46	2025-06-12	Show	GitHub Exploit DB Packet Storm

2354	9.1	緊急 Network	Node.js Foundation	Node.js	Node.js FoundationのNode.jsにおける代替名による認証回避に関する脆弱性	CWE-289 代替名による認証回避	CVE-2025-55130	2026-02-5 15:46	2026-01-20	Show	GitHub Exploit DB Packet Storm

2355	5.3	警告 Network	Node.js Foundation	Node.js	Node.js FoundationのNode.jsにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-55132	2026-02-5 15:46	2026-01-20	Show	GitHub Exploit DB Packet Storm

2356	7.5	重要 Network	OwnTone project	OwnTone	OwnTone projectのOwnToneにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-57155	2026-02-5 15:46	2026-01-20	Show	GitHub Exploit DB Packet Storm

2357	6.5	警告 Network	Engineering Ingegneria Informatica	knowage	Engineering Ingegneria Informaticaのknowageにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2025-58441	2026-02-5 15:46	2026-01-7	Show	GitHub Exploit DB Packet Storm

2358	8.7	重要 Network	Ultimate Fosters	Ultimate POS	Ultimate FostersのUltimate POSにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-60503	2026-02-5 15:46	2025-11-3	Show	GitHub Exploit DB Packet Storm

2359	5.3	警告 Network	The Go Project	Go	The Go ProjectのGoにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-61730	2026-02-5 15:46	2026-01-28	Show	GitHub Exploit DB Packet Storm

2360	4.3	警告 Network	webinarpress	webinarpress	WordPress用webinarpressにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-62972	2026-02-5 15:45	2025-10-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348951	-	hp	hp-ux	VJE.VJE-RUN in HP-UX 11.00 adds bin to /etc/PATH, which could allow local users to gain privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2002-2363	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

348952	-	sourceforge	php_ticket	Cross-site scripting (XSS) vulnerability in PHP Ticket 0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a help ticket.	CWE-79 Cross-site Scripting	CVE-2002-2364	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

348953	-	springer_verlag_berlin_heidelberg	simple_wais	Simple WAIS (SWAIS) 1.11 allows remote attackers to execute arbitrary commands via the shell metacharacters in the search field, as demonstrated using the "\|" (pipe) character.	CWE-20 Improper Input Validation	CVE-2002-2365	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

348954	-	cerulean_studios	trillian	Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors fil…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2366	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

348955	-	socks5	socks5	Off-by-one buffer overflow in NEC SOCKS5 1.0 r11 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long hostname.	CWE-189 CWE-119 Numeric Errors Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2367	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

348956	-	nec	socks_5	Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function i…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2368	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

348957	-	perception	liteserve	Perception LiteServe 2.0 allows remote attackers to read password protected files via a leading "/./" in a URL.	CWE-200 Information Exposure	CVE-2002-2369	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

348958	-	sws	sws_simple_web_server	SWS web server 0.0.4, 0.0.3 and 0.1.0 allows remote attackers to cause a denial of service (crash) via a URL request that does not end with a newline.	NVD-CWE-Other	CVE-2002-2370	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

348959	-	linksys	wet11	Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to cause a denial of service (crash) via a packet containing the device's hardware address as the source MAC address in the DLC header.	CWE-20 Improper Input Validation	CVE-2002-2371	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

348960	-	ibm	infoprint_21	The telnet server in Infoprint 21 running controller software before 1.056007 allows remote attackers to cause a denial of service (crash) via a long username, possibly due to a buffer overflow.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2372	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm