Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2501 - - - サーバ製品におけるBIOSの脆弱性(CVE-2026-22796)による影響について - CVE-2026-22796 2026-05-12 11:38 2026-04-24 Show GitHub Exploit DB Packet Storm
2502 5.3 警告
Local 		Prusa3D PrusaSlicer Prusa3DのPrusaSlicerにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2023-47268 2026-05-12 10:21 2026-05-8 Show GitHub Exploit DB Packet Storm
2503 7.2 重要
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるリソースの安全ではないデフォルト値への初期化に関する脆弱性 CWE-1188
リソースの安全ではないデフォルト値への初期化 		CVE-2025-31974 2026-05-12 10:21 2026-05-6 Show GitHub Exploit DB Packet Storm
2504 6.1 警告
Network 		Project Jupyter Jupyter Server Project JupyterのJupyter Serverにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2025-61669 2026-05-12 10:21 2026-05-5 Show GitHub Exploit DB Packet Storm
2505 8.1 重要
Network 		Apache Software Foundation CloudStack Apache Software FoundationのCloudStackにおける不完全なクリーンアップに関する脆弱性 CWE-459
不完全なクリーンアップ 		CVE-2025-66467 2026-05-12 10:21 2026-05-8 Show GitHub Exploit DB Packet Storm
2506 7.5 重要
Network 		Google Android GoogleのAndroidにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71253 2026-05-12 10:21 2026-05-6 Show GitHub Exploit DB Packet Storm
2507 7.5 重要
Network 		Google Android GoogleのAndroidにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71254 2026-05-12 10:21 2026-05-6 Show GitHub Exploit DB Packet Storm
2508 7.5 重要
Network 		Google Android GoogleのAndroidにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71255 2026-05-12 10:21 2026-05-6 Show GitHub Exploit DB Packet Storm
2509 7.5 重要
Network 		Google Android GoogleのAndroidにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71256 2026-05-12 10:20 2026-05-6 Show GitHub Exploit DB Packet Storm
2510 8.8 重要
Network 		CERN Rucio CERNのRucioにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-29080 2026-05-12 10:20 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355691 - cyrus sasl SQL injection vulnerability in the LDAP and MySQL authentication patch for Cyrus SASL 1.5.24 and 1.5.27 allows remote attackers to execute arbitrary SQL commands and log in as arbitrary POP mail user… NVD-CWE-Other
CVE-2002-2043 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355692 - xqus x-stat Cross-site scripting (XSS) vulnerability in x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the phpinfo action. NVD-CWE-Other
CVE-2002-2044 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355693 - xqus x-news x_news.php in X-News (x_news) 1.1 and earlier allows remote attackers to gain administrative privileges by stealing and replaying the md5_password cookie. NVD-CWE-Other
CVE-2002-2046 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355694 - sketch sketch The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file. NVD-CWE-Other
CVE-2002-2047 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355695 - dug_song dsniff
fragroute
fragrouter 		configure for Dsniff 2.3, fragroute 1.2, and fragrouter 1.6, when downloaded from monkey.org on May 17, 2002, has been modified to contain a backdoor, which allows remote attackers to access the syst… NVD-CWE-Other
CVE-2002-2049 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355696 - modlogan modlogan Directory traversal vulnerability in processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a .. (dot dot) in t… NVD-CWE-Other
CVE-2002-2050 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355697 - modlogan modlogan The processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a symlink attack on files specified as hostnames in … NVD-CWE-Other
CVE-2002-2051 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355698 - cisco ios Cisco 2611 router running IOS 12.1(6.5), possibly an interim release, allows remote attackers to cause a denial of service via port scans such as (1) scanning all ports on a single host and (2) scann… NVD-CWE-Other
CVE-2002-2052 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355699 - cisco ios The design of the Hot Standby Routing Protocol (HSRP), as implemented on Cisco IOS 12.1, when using IRPAS, allows remote attackers to cause a denial of service (CPU consumption) via a router with the… NVD-CWE-Other
CVE-2002-2053 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355700 - intel d845bg_motherboard
d845hv_motherboard
d845pt_motherboard
d845wn_motherboard 		BIOS D845BG, D845HV, D845PT and D845WN on Intel motherboards does not properly restrict access to configuration information when BIOS passwords are enabled, which could allow local users to change th… NVD-CWE-Other
CVE-2002-2059 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm