Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2351 - - 日立 Hitachi Application Server
uCosminexus Application Runtime with Java for Apache Tomcat
uCosminexus Application Runtime with Java… 		Cosminexusにおける複数の脆弱性 - CVE-2026-22007
CVE-2026-22013
CVE-2026-22016
CVE-2026-22018
CVE-2026-22021
CVE-2026-23865
CVE-2026-34268
CVE-2026-34282 		2026-05-27 13:53 2026-05-26 Show GitHub Exploit DB Packet Storm
2352 - - 日立 Hitachi Automation Director
Hitachi Replication Manager
Hitachi Configuration Manager
Hitachi Ops Center API Configuration Manager
H… 		Hitachi Command Suite製品, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics AdvisorおよびHitachi Ops Center製品における複数の脆弱性 - CVE-2026-22007
CVE-2026-22013
CVE-2026-22016
CVE-2026-22018
CVE-2026-22021
CVE-2026-23865
CVE-2026-34268
CVE-2026-34282 		2026-05-27 13:53 2026-05-26 Show GitHub Exploit DB Packet Storm
2353 - - 日立 Hitachi Infrastructure Analytics Advisor
Hitachi Ops Center Analyzer
Hitachi Ops Center Analyzer viewpoint 		Hitachi Infrastructure Analytics Advisor,Hitachi Ops Center AnalyzerおよびHitachi Ops Center Analyzer viewpointにおける脆弱性 - CVE-2026-3314 2026-05-27 13:53 2026-05-26 Show GitHub Exploit DB Packet Storm
2354 - - LMSYS Org SGLang SGLangにおける複数の脆弱性 - CVE-2026-5760
CVE-2026-7301
CVE-2026-7302
CVE-2026-7304 		2026-05-27 12:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2355 - - dnsmasq dnsmasq dnsmasqにおける複数の脆弱性 - CVE-2026-2291
CVE-2026-4890
CVE-2026-4891
CVE-2026-4892
CVE-2026-4893
CVE-2026-5172 		2026-05-27 12:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2356 - - Linux Linux Kernel Linuxカーネルにおける複数の脆弱性 - CVE-2026-31431
CVE-2026-43284
CVE-2026-43500 		2026-05-26 14:07 2026-05-25 Show GitHub Exploit DB Packet Storm
2357 6.8 警告
Adjacent 		日本電気 Aterm CM51FD
Aterm MR51FN 		NEC AtermシリーズにおけるOSコマンドインジェクションの脆弱性(NV26-003) CWE-78
OSコマンド・インジェクション 		CVE-2026-8652 2026-05-25 15:43 2026-05-25 Show GitHub Exploit DB Packet Storm
2358 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年05月21日) - - 2026-05-25 15:37 2026-05-22 Show GitHub Exploit DB Packet Storm
2359 3.8
Adjacent 		日本電気 Aterm WX11000T12
Aterm WX4200D5
Aterm 19000T12BE
Aterm WX7800T8
Aterm WX5400HP
Aterm WX3000HP2
Aterm WX1800HP
Aterm GX621A1
Aterm … 		NEC Atermシリーズにおけるクロスサイトスクリプティングの脆弱性(NV26-002) CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-6059 2026-05-25 15:29 2026-05-25 Show GitHub Exploit DB Packet Storm
2360 - - 日立 Hitachi Virtual Storage Platform 日立ディスクアレイシステムにおけるSVP 脆弱性対策について (2026年3月分) - CVE-2026-23667
CVE-2026-23668
CVE-2026-23669
CVE-2026-23671
CVE-2026-23672
CVE-2026-23673
CVE-2026-23674
CVE-2026-24282
CVE-2026-24285
CVE-2026-24287
CVE-2026-24288
C… 		2026-05-25 11:30 2026-05-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
359371 - francisco_burzi php-nuke Cross-site scripting (XSS) vulnerability in im.php in IMessenger for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via a message. NVD-CWE-Other
CVE-2001-1522 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
359372 - dmozgateway dmozgateway Cross-site scripting (XSS) vulnerability in the DMOZGateway module for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the topic parameter. NVD-CWE-Other
CVE-2001-1523 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
359373 - easyscripts easynews Directory traversal vulnerability in the comments action in easyNews 1.5 and earlier allows remote attackers to modify news.dat, template.dat and possibly other files via a ".." in the cid parameter. NVD-CWE-Other
CVE-2001-1525 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
359374 - easyscripts easynews Cross-site scripting (XSS) vulnerability in the comments action in index.php in easyNews 1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the zeit parameter. NVD-CWE-Other
CVE-2001-1526 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
359375 - ibm aix Buffer overflow in rpc.yppasswdd (yppasswd server) in AIX allows attackers to gain unauthorized access via a long string. NOTE: due to lack of details in the vendor advisory, it is not clear if this… NVD-CWE-Other
CVE-2001-1529 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
359376 - webmin webmin run.cgi in Webmin 0.80 and 0.88 creates temporary files with world-writable permissions, which allows local users to execute arbitrary commands. NVD-CWE-Other
CVE-2001-1530 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
359377 - apple claris_emailer Buffer overflow in Claris Emailer 2.0v2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an email attachment with a long filename. NVD-CWE-Other
CVE-2001-1531 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
359378 - web_crossing webx WebX stores authentication information in the HTTP_REFERER variable, which is included in URL links within bulletin board messages posted by users, which could allow remote attackers to hijack user s… NVD-CWE-Other
CVE-2001-1532 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
359379 - open_source_development_network slashcode Slashcode 2.0 creates new accounts with an 8-character random password, which could allow local users to obtain session ID's from cookies and gain unauthorized access via a brute force attack. NVD-CWE-Other
CVE-2001-1535 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
359380 - speedxess ha-120_dsl_router SpeedXess HA-120 DSL router has a default administrative password of "speedxess", which allows remote attackers to gain access. NVD-CWE-Other
CVE-2001-1538 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm