Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2701	4.3	警告 Network	シックス・アパート株式会社	Movable Type Premium (Advanced Edition) Movable Type Movable Type Advanced Movable Type Premium	Movable Typeにおける権限チェックの欠如の脆弱性	CWE-Other その他	CVE-2026-44392	2026-05-20 14:09	2026-05-20	Show	GitHub Exploit DB Packet Storm

2702	4.3	警告 Network	Outlook.com	Microsoft Edge Chromium	Microsoft Edge (Chromium ベース) for Android のスプーフィングの脆弱性	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-40416	2026-05-20 13:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

2703	4.3	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける有効期限後または解放後のリソースの操作に関する脆弱性	CWE-672 有効期限後または解放後のリソースの操作	CVE-2026-4053	2026-05-20 13:31	2026-05-15	Show	GitHub Exploit DB Packet Storm

2704	6.5	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける例外的な状態のチェックに関する脆弱性	CWE-754 例外的な状態における不適切なチェック	CVE-2026-4054	2026-05-20 13:31	2026-05-15	Show	GitHub Exploit DB Packet Storm

2705	8.2	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける複数の脆弱性	CWE-184 CWE-73	CVE-2026-40893	2026-05-20 13:31	2026-05-14	Show	GitHub Exploit DB Packet Storm

2706	7.8	重要 Local	George Nachman	iTerm2	George NachmanのiTerm2における信頼できない制御領域からの機能の組み込みに関する脆弱性	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-41253	2026-05-20 13:31	2026-04-18	Show	GitHub Exploit DB Packet Storm

2707	8.2	重要 Network	Quantum Nous	New API	Quantum NousのNew APIにおける複数の脆弱性	CWE-1188 CWE-345 CWE-863	CVE-2026-41432	2026-05-20 13:31	2026-05-8	Show	GitHub Exploit DB Packet Storm

2708	8.8	重要 Network	anyscale	ray	anyscaleのrayにおける複数の脆弱性	CWE-502 CWE-94	CVE-2026-41486	2026-05-20 13:31	2026-05-8	Show	GitHub Exploit DB Packet Storm

2709	4.4	警告 Local	cilium	cilium	ciliumにおける複数の脆弱性	CWE-200 CWE-312 CWE-312	CVE-2026-41520	2026-05-20 13:31	2026-05-8	Show	GitHub Exploit DB Packet Storm

2710	7	重要 Local	VMware	VMware Fusion	VMwareのVMware FusionにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-41702	2026-05-20 13:31	2026-05-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
358651	-	research_systems_inc.	ion_script	Directory traversal vulnerability in ion-p.exe (aka ion-p) allows remote attackers to read arbitrary files via (1) C: (drive letter) or (2) .. (dot-dot) sequences in the page parameter.	NVD-CWE-Other	CVE-2002-1559	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

358652	-	martin_bauer	gbook	index.php in gBook 1.4 allows remote attackers to bypass authentication and gain administrative privileges by setting the login parameter to true.	NVD-CWE-Other	CVE-2002-1560	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

358653	-	mailreader.com	mailreader.com	compose.cgi in Mailreader.com 2.3.30 and 2.3.31, when using Sendmail as the Mail Transfer Agent, allows remote attackers to execute arbitrary commands via shell metacharacters in the RealEmail config…	NVD-CWE-Other	CVE-2002-1582	2008-09-6 05:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

358654	-	ibm	db2_universal_database	Buffer overflow in sqllib/security/db2ckpw for IBM DB2 Universal Database 6.0 and 7.0 allows local users to execute arbitrary code via a long username that is read from a file descriptor argument.	NVD-CWE-Other	CVE-2002-1583	2008-09-6 05:30	2004-09-28	Show	GitHub Exploit DB Packet Storm

358655	-	mozilla	bugzilla	Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows authenticated users with editing privileges to delete other users by directly calling the editusers.cgi script with the "del" option.	NVD-CWE-Other	CVE-2002-0806	2008-09-6 05:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

358656	-	mozilla	bugzilla	Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groupset of all bugs to the groupset of the first bug, which could inadvertently cause insecure groupset …	NVD-CWE-Other	CVE-2002-0808	2008-09-6 05:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

358657	-	mozilla	bugzilla	Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, does not properly handle URL-encoded field names that are generated by some browsers, which could cause certain fields to appear to be unset, whi…	NVD-CWE-Other	CVE-2002-0809	2008-09-6 05:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

358658	-	mozilla	bugzilla	Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, directs error messages from the syncshadowdb command to the HTML output, which could leak sensitive information, including plaintext passwords, i…	NVD-CWE-Other	CVE-2002-0810	2008-09-6 05:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

358659	-	padl_software	nss_ldap	Buffer overflow in the DNS SRV code for nss_ldap before nss_ldap-198 allows remote attackers to cause a denial of service and possibly execute arbitrary code.	NVD-CWE-Other	CVE-2002-0825	2008-09-6 05:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

358660	-	caldera	unixware openunix	Vulnerability in pppd on UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to gain root privileges via (1) ppptalk or (2) ppp, a different vulnerability than CVE-2002-0824.	NVD-CWE-Other	CVE-2002-0827	2008-09-6 05:29	2002-08-12	Show	GitHub Exploit DB Packet Storm