Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2631 8.8 重要
Network 		マイクロソフト Azure Logic Apps Azure Logic Apps の特権昇格の脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-32171 2026-04-30 12:31 2026-04-14 Show GitHub Exploit DB Packet Storm
2632 7.5 重要
Network 		getkirby kirby getkirbyのkirbyにおけるブラインド XPath インジェクションの脆弱性 CWE-91
ブラインド XPath インジェクション 		CVE-2026-32870 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
2633 9.8 緊急
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-33076 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
2634 7.5 重要
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-33077 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
2635 9.8 緊急
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-33078 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
2636 8.8 重要
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-33208 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
2637 7.5 重要
Network 		PowerDNS dnsdist PowerDNSのdnsdistにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33254 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
2638 7.5 重要
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS Recursorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33256 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
2639 7.5 重要
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS Recursorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33258 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
2640 5 警告
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS Recursorにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-33259 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347391 - freebsd freebsd Integer signedness error in several system calls for FreeBSD 4.6.1 RELEASE-p10 and earlier may allow attackers to access sensitive kernel memory via large negative values to the (1) accept, (2) getso… NVD-CWE-Other
CVE-2002-0973 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
347392 - microsoft directx_files_viewer_control Buffer overflow in Microsoft DirectX Files Viewer ActiveX control (xweb.ocx) 2.0.6.15 and earlier allows remote attackers to execute arbitrary via a long File parameter. NVD-CWE-Other
CVE-2002-0975 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
347393 - microsoft virtual_machine The Java logging feature for the Java Virtual Machine in Internet Explorer writes output from functions such as System.out.println to a known pathname, which can be used to execute arbitrary code. NVD-CWE-Other
CVE-2002-0979 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
347394 - microsoft sql_server Microsoft SQL Server 2000 SP2, when configured as a distributor, allows attackers to execute arbitrary code via the @scriptfile parameter to the sp_MScopyscript stored procedure. NVD-CWE-Other
CVE-2002-0982 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
347395 - rob_flynn gaim The URL handler in the manual browser option for Gaim before 0.59.1 allows remote attackers to execute arbitrary script via shell metacharacters in a link. NVD-CWE-Other
CVE-2002-0989 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
347396 - symantec enterprise_firewall
raptor_firewall
velociraptor
gateway_security 		The web proxy component in Symantec Enterprise Firewall (SEF) 6.5.2 through 7.0, Raptor Firewall 6.5 and 6.5.3, VelociRaptor, and Symantec Gateway Security allow remote attackers to cause a denial of… NVD-CWE-Other
CVE-2002-0990 2016-10-18 11:23 2002-10-28 Show GitHub Exploit DB Packet Storm
347397 - adobe adobe_content_server The library feature for Adobe Content Server 3.0 does not verify if a customer has already checked out an eBook, which allows remote attackers to cause a denial of service (resource exhaustion) by ch… NVD-CWE-Other
CVE-2002-1018 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
347398 - adobe adobe_content_server The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook for an arbitrary length of time via a modified loanMin parameter to download.asp. NVD-CWE-Other
CVE-2002-1019 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
347399 - adobe adobe_content_server The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook even when the maximum number of loans is exceeded by accessing the "Add to bookbag" feature when the se… NVD-CWE-Other
CVE-2002-1020 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
347400 - michael_dean double_choco_latte Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorit… NVD-CWE-Other
CVE-2002-1037 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm