Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2371	5.4	警告 Network	Apostrophe Technologies	ApostropheCMS	Apostrophe TechnologiesのApostropheCMSにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-33889	2026-04-21 10:48	2026-04-15	Show	GitHub Exploit DB Packet Storm

2372	6.5	警告 Adjacent	Ellanetworks	Ella Core	EllanetworksのElla CoreにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-33903	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

2373	6.5	警告 Adjacent	Ellanetworks	Ella Core	EllanetworksのElla Coreにおけるデッドロックに関する脆弱性	CWE-833 デッドロック	CVE-2026-33904	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

2374	7.2	重要 Network	Ellanetworks	Ella Core	EllanetworksのElla Coreにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-33906	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

2375	6.5	警告 Adjacent	Ellanetworks	Ella Core	EllanetworksのElla CoreにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-33907	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

2376	4.3	警告 Network	Apache Software Foundation	PDFBox	Apache Software FoundationのPDFBoxにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-33929	2026-04-21 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

2377	5.3	警告 Local	Anthropic PBC	Claude SDK for Python	Anthropic PBCのClaude SDK for Pythonにおける複数の脆弱性	CWE-367 CWE-59	CVE-2026-34452	2026-04-21 10:48	2026-03-31	Show	GitHub Exploit DB Packet Storm

2378	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性	CWE-758 未定義、未指定、または実装定義の動作への依存	CVE-2026-34533	2026-04-21 10:48	2026-03-31	Show	GitHub Exploit DB Packet Storm

2379	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34534	2026-04-21 10:48	2026-03-31	Show	GitHub Exploit DB Packet Storm

2380	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34535	2026-04-21 10:48	2026-03-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349111	-	lucent	access_point_service_router_1500 access_point_service_router_300 access_point_service_router_600	Buffer overflow in Lucent Access Point 300, 600, and 1500 Service Routers allows remote attackers to cause a denial of service (reboot) via a long HTTP request to the administrative interface.	NVD-CWE-Other	CVE-2002-2149	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

349112	-	juniper	netscreen_screenos	Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UD…	NVD-CWE-Other	CVE-2002-2150	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

349113	-	software602	602pro_lan_suite	The Czech edition of Software602's Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password p…	NVD-CWE-Other	CVE-2002-2152	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

349114	-	cerulean_studios	trillian	Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string…	NVD-CWE-Other	CVE-2002-2155	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

349115	-	cerulean_studios	trillian	Buffer overflow in Trillian 0.73 allows remote IRC servers to execute arbitrary code via a long PING response.	NVD-CWE-Other	CVE-2002-2156	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

349116	-	zendocs	zentrack	zenTrack 2.0.3 and earlier allows remote attackers to obtain the full path to the web root via an invalid ticket ID, which leaks the path in an error message.	NVD-CWE-Other	CVE-2002-2158	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

349117	-	kerio	personal_firewall	Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to cause a denial of service (hang and CPU consumption) via a SYN packet flood.	NVD-CWE-Other	CVE-2002-2161	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

349118	-	cerulean_studios	trillian	Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Trillian directory, which allows local users to gain access to other user account…	NVD-CWE-Other	CVE-2002-2162	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

349119	-	killervault	kvpoll	KvPoll 1.1 allows remote authenticated users to vote more than once by setting the "already_voted" cookie by various methods, including a direct call to clear_cookies.php.	NVD-CWE-Other	CVE-2002-2163	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

349120	-	microsoft	outlook_express	Buffer overflow in Microsoft Outlook Express 5.0, 5.5, and 6.0 allows remote attackers to cause a denial of service (crash) via a long <A HREF> link.	NVD-CWE-Other	CVE-2002-2164	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm