Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2511 8.8 重要
Network 		ディーリンクジャパン株式会社 dir-816 ファームウェア D-Link CorporationのDIR-816 ファームウェアにおける複数の脆弱性 CWE-74
CWE-77
CVE-2026-8345 2026-05-14 10:13 2026-05-11 Show GitHub Exploit DB Packet Storm
2512 8.8 重要
Network 		ディーリンクジャパン株式会社 dir-816 ファームウェア D-Link CorporationのDIR-816 ファームウェアにおける複数の脆弱性 CWE-74
CWE-77
CVE-2026-8346 2026-05-14 10:13 2026-05-12 Show GitHub Exploit DB Packet Storm
2513 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-8388 2026-05-14 10:13 2026-05-12 Show GitHub Exploit DB Packet Storm
2514 8.5 重要
Network 		Guardsix ODBC
Logpoint 		GuardsixのLogpoint等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-35548 2026-05-14 10:13 2026-04-22 Show GitHub Exploit DB Packet Storm
2515 6.5 警告
Network 		Raindrop Raindrop Raindropにおける複数の脆弱性 CWE-20
CWE-284
CVE-2026-31192 2026-05-14 10:13 2026-04-22 Show GitHub Exploit DB Packet Storm
2516 7.3 重要
Network 		D-Link Systems, Inc. DCS-932L Firmware D-Link CorporationのDCS-932L Firmwareにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-36983 2026-05-14 10:13 2026-05-11 Show GitHub Exploit DB Packet Storm
2517 7.5 重要
Network 		Niko Fohr (fohrloop) dash-uploader Niko Fohr (fohrloop)のdash-uploaderにおける複数の脆弱性 CWE-400
CWE-670
CWE-noinfo
CVE-2026-38361 2026-05-14 10:12 2026-05-8 Show GitHub Exploit DB Packet Storm
2518 9.8 緊急
Network 		Mauricio Poppe (mauriciopoppe) math-codegen Mauricio Poppe (mauriciopoppe)のmath-codegenにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-41507 2026-05-14 10:12 2026-05-8 Show GitHub Exploit DB Packet Storm
2519 9.8 緊急
Network 		CROSS-CRYPT.COM CROSS CROSS-CRYPT.COMのCROSSにおける複数の脆弱性 CWE-121
CWE-122
CVE-2026-41509 2026-05-14 10:12 2026-05-8 Show GitHub Exploit DB Packet Storm
2520 7.5 重要
Network 		DCIT CryptX DCITのCryptXにおける複数の脆弱性 CWE-335
CWE-338
CVE-2026-41564 2026-05-14 10:12 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355881 - xqus x-stat Cross-site scripting (XSS) vulnerability in x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the phpinfo action. NVD-CWE-Other
CVE-2002-2044 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355882 - xqus x-news x_news.php in X-News (x_news) 1.1 and earlier allows remote attackers to gain administrative privileges by stealing and replaying the md5_password cookie. NVD-CWE-Other
CVE-2002-2046 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355883 - sketch sketch The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file. NVD-CWE-Other
CVE-2002-2047 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355884 - dug_song dsniff
fragroute
fragrouter 		configure for Dsniff 2.3, fragroute 1.2, and fragrouter 1.6, when downloaded from monkey.org on May 17, 2002, has been modified to contain a backdoor, which allows remote attackers to access the syst… NVD-CWE-Other
CVE-2002-2049 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355885 - modlogan modlogan Directory traversal vulnerability in processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a .. (dot dot) in t… NVD-CWE-Other
CVE-2002-2050 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355886 - modlogan modlogan The processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a symlink attack on files specified as hostnames in … NVD-CWE-Other
CVE-2002-2051 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355887 - cisco ios Cisco 2611 router running IOS 12.1(6.5), possibly an interim release, allows remote attackers to cause a denial of service via port scans such as (1) scanning all ports on a single host and (2) scann… NVD-CWE-Other
CVE-2002-2052 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355888 - cisco ios The design of the Hot Standby Routing Protocol (HSRP), as implemented on Cisco IOS 12.1, when using IRPAS, allows remote attackers to cause a denial of service (CPU consumption) via a router with the… NVD-CWE-Other
CVE-2002-2053 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355889 - intel d845bg_motherboard
d845hv_motherboard
d845pt_motherboard
d845wn_motherboard 		BIOS D845BG, D845HV, D845PT and D845WN on Intel motherboards does not properly restrict access to configuration information when BIOS passwords are enabled, which could allow local users to change th… NVD-CWE-Other
CVE-2002-2059 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355890 - twibright_labs links Buffer overflow in Links 2.0 pre4 allows remote attackers to crash client browsers and possibly execute arbitrary code via gamma tables in large 16-bit PNG images. NVD-CWE-Other
CVE-2002-2060 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm