Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2731 6.1 警告
Network 		SimpleSAMLphp simplesamlphp-casserver SimpleSAMLphpのsimplesamlphp-casserverにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2025-65954 2026-05-25 10:26 2026-05-18 Show GitHub Exploit DB Packet Storm
2732 5.3 警告
Network 		LupinLin1 JiMeng Web MCP Server LupinLin1のJiMeng Web MCP Serverにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2025-70040 2026-05-25 10:25 2026-03-9 Show GitHub Exploit DB Packet Storm
2733 5.4 警告
Network 		ERLANG Erlang/ssh
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-23942 2026-05-25 10:25 2026-03-13 Show GitHub Exploit DB Packet Storm
2734 5.3 警告
Network 		ERLANG Erlang/ssh
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品における高圧縮データの処理 (データ増幅)に関する脆弱性 CWE-409
高圧縮データの不適切な処理 (データ増幅) 		CVE-2026-23943 2026-05-25 10:25 2026-03-13 Show GitHub Exploit DB Packet Storm
2735 7.8 重要
Local 		Uderzo Software SpaceSniffer Uderzo SoftwareのSpaceSnifferにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-26738 2026-05-25 10:25 2026-03-10 Show GitHub Exploit DB Packet Storm
2736 9.8 緊急
Network 		zlib zlib Ruby-lang.orgのZlibにおける複数の脆弱性 CWE-120
CWE-131
CVE-2026-27820 2026-05-25 10:25 2026-04-16 Show GitHub Exploit DB Packet Storm
2737 7.8 重要
Local 		Louis Pilfold Gleam Louis PilfoldのGleamにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-32146 2026-05-25 10:25 2026-04-11 Show GitHub Exploit DB Packet Storm
2738 4.3 警告
Network 		ERLANG Erlang/ssh
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-32147 2026-05-25 10:25 2026-04-21 Show GitHub Exploit DB Packet Storm
2739 7.8 重要
Local 		Elixir-ecto Postgrex Elixir-ectoのPostgrexにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-32687 2026-05-25 10:25 2026-05-12 Show GitHub Exploit DB Packet Storm
2740 7.5 重要
Network 		マイクロソフト go-ntlmssp マイクロソフトのgo-ntlmsspにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-32952 2026-05-25 10:25 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345261 - dcscripts dcforum
dcforum_2000 		dcboard.cgi in DCForum 2000 1.0 allows remote attackers to execute arbitrary commands by uploading a Perl program to the server and using a .. (dot dot) in the AZ parameter to reference the program. NVD-CWE-Other
CVE-2001-0436 2017-12-19 11:29 2001-07-2 Show GitHub Exploit DB Packet Storm
345262 - dcscripts dcforum
dcforum_2000 		upload_file.pl in DCForum 2000 1.0 allows remote attackers to upload arbitrary files without authentication by setting the az parameter to upload_file. NVD-CWE-Other
CVE-2001-0437 2017-12-19 11:29 2001-07-2 Show GitHub Exploit DB Packet Storm
345263 - debian
mandrakesoft
redhat 		debian_linux
mandrake_linux
mandrake_linux_corporate_server
linux 		Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header. NVD-CWE-Other
CVE-2001-0441 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
345264 - transsoft broker_ftp_server Directory traversal vulnerability in Transsoft FTP Broker before 5.5 allows attackers to (1) delete arbitrary files via DELETE, or (2) list arbitrary directories via LIST, via a .. (dot dot) in the f… NVD-CWE-Other
CVE-2001-0450 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
345265 - sentraweb indexu INDEXU 2.0 beta and earlier allows remote attackers to bypass authentication and gain privileges by setting the cookie_admin_authenticated cookie value to 1. NVD-CWE-Other
CVE-2001-0451 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
345266 - whitsoft slimserve Directory traversal vulnerability in SlimServe HTTPd 1.1a allows remote attackers to read arbitrary files via a ... (modified dot dot) in the HTTP request. NVD-CWE-Other
CVE-2001-0454 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
345267 - ralf_s._engelschall
debian
mandrakesoft
suse 		eperl
debian_linux
mandrake_linux
suse_linux 		Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2001-0458 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
345268 - afterstep.org
rob_malda 		afterstep
ascdc 		Buffer overflows in ascdc Afterstep while running setuid allows local users to gain root privileges via a long (1) -d option, (2) -m option, or (3) -f option. NVD-CWE-Other
CVE-2001-0459 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
345269 - baltimore_technologies websweeper Websweeper 4.0 does not limit the length of certain HTTP headers, which allows remote attackers to cause a denial of service (memory exhaustion) via an extremely large HTTP Referrer: header. NVD-CWE-Other
CVE-2001-0460 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
345270 - ftpfs ftpfs Buffer overflow in FTPFS allows local users to gain root privileges via a long user name. NVD-CWE-Other
CVE-2001-0468 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm