Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2611 8.1 重要
Network 		Electron electron Electronのelectronにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-34774 2026-04-24 11:44 2026-04-4 Show GitHub Exploit DB Packet Storm
2612 9.8 緊急
Network 		Electron electron Electronのelectronにおける隔離または分類に関する脆弱性 CWE-653
不適切な隔離または分類 		CVE-2026-34775 2026-04-24 11:44 2026-04-4 Show GitHub Exploit DB Packet Storm
2613 9.8 緊急
Network 		Bruno Software Inc. Bruno Bruno Software Inc.のBrunoにおける複数の脆弱性 CWE-494
CWE-506
CVE-2026-34841 2026-04-24 11:44 2026-04-6 Show GitHub Exploit DB Packet Storm
2614 5.3 警告
Network 		Discourse Discourse Discourseにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-34947 2026-04-24 11:44 2026-04-3 Show GitHub Exploit DB Packet Storm
2615 9.1 緊急
Network 		nearform fast-jwt nearformのfast-jwtにおける暗号アルゴリズムの使用に関する脆弱性 CWE-327
不完全、または危険な暗号アルゴリズムの使用 		CVE-2026-34950 2026-04-24 11:44 2026-04-6 Show GitHub Exploit DB Packet Storm
2616 4.3 警告
Network 		Plunk Plunk PlunkにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-34975 2026-04-24 11:44 2026-04-6 Show GitHub Exploit DB Packet Storm
2617 10 緊急
Network 		dgraph dgraph dgraphにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-34976 2026-04-24 11:44 2026-04-6 Show GitHub Exploit DB Packet Storm
2618 8.2 重要
Local 		Vim Vim VimにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-34982 2026-04-24 11:44 2026-04-6 Show GitHub Exploit DB Packet Storm
2619 6.5 警告
Network 		external-secrets external secrets operator external-secretsのexternal secrets operatorにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-34984 2026-04-24 11:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2620 8.1 重要
Network 		jellyfin jellyfin jellyfinにおける複数の脆弱性 CWE-73
CWE-918
CVE-2026-35032 2026-04-24 11:44 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315511 - francisco_burzi php-nuke sql_layer.php in PHP-Nuke 5.4 and earlier does not restrict access to debugging features, which allows remote attackers to gain SQL query information by setting the sql_debug parameter to (1) index.p… NVD-CWE-Other
CVE-2002-2032 2024-02-14 10:17 2002-12-31 Show GitHub Exploit DB Packet Storm
315512 - microsoft windows_xp Microsoft Windows XP allows remote attackers to cause a denial of service (CPU consumption) by flooding UDP port 500 (ISAKMP). NVD-CWE-Other
CVE-2002-2117 2024-02-14 10:17 2002-12-31 Show GitHub Exploit DB Packet Storm
315513 - comscripts web_server_creator Multiple PHP remote file inclusion vulnerabilities in Web Server Creator - Web Portal (WSC-WebPortal) 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) l parameter to cust… NVD-CWE-Other
CVE-2002-2217 2024-02-14 10:17 2002-12-31 Show GitHub Exploit DB Packet Storm
315514 - ethereal_group ethereal Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages. NVD-CWE-Other
CVE-2002-1355 2024-02-14 10:17 2002-12-23 Show GitHub Exploit DB Packet Storm
315515 - ethereal_group ethereal Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possi… NVD-CWE-Other
CVE-2002-1356 2024-02-14 10:17 2002-12-23 Show GitHub Exploit DB Packet Storm
315516 - trend_micro officescan
pc-cillin 		Buffer overflow in pop3trap.exe for PC-cillin 2000, 2002, and 2003 allows local users to execute arbitrary code via a long input string to TCP port 110 (POP3). NVD-CWE-Other
CVE-2002-1349 2024-02-14 10:17 2002-12-18 Show GitHub Exploit DB Packet Storm
315517 - care_2002 care_2002 Directory traversal vulnerability in cafenews.php for CARE 2002 before beta 1.0.02 allows remote attackers to read arbitrary files via .. (dot dot) sequences and null characters in the lang parameter… NVD-CWE-Other
CVE-2002-0998 2024-02-14 10:17 2002-10-4 Show GitHub Exploit DB Packet Storm
315518 - care_2002 care_2002 Multiple SQL injection vulnerabilities in CARE 2002 before beta 1.0.02 allow remote attackers to perform unauthorized database operations. CWE-89
SQL Injection 		CVE-2002-0999 2024-02-14 10:17 2002-10-4 Show GitHub Exploit DB Packet Storm
315519 - ethereal_group ethereal Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets. NVD-CWE-Other
CVE-2002-0834 2024-02-14 10:17 2002-09-24 Show GitHub Exploit DB Packet Storm
315520 - linux_directory_penguin linux_directory_penguin_traceroute Linux Directory Penguin traceroute.pl CGI script 1.0 allows remote attackers to execute arbitrary code via shell metacharacters in the host parameter. NVD-CWE-Other
CVE-2002-0488 2024-02-14 10:17 2002-08-12 Show GitHub Exploit DB Packet Storm