Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2741	4.3	警告 Network	Apache Software Foundation	Apache Airflow	Apache Software FoundationのApache Airflowにおけるアクセス制御の不十分な粒度に関する脆弱性	CWE-1220 アクセス制御の不十分な粒度	CVE-2026-40690	2026-04-28 10:12	2026-04-24	Show	GitHub Exploit DB Packet Storm

2742	6.1	警告 Network	Astro	Astro	Astroにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41067	2026-04-28 10:12	2026-04-24	Show	GitHub Exploit DB Packet Storm

2743	5.4	警告 Adjacent	OpenPrinting	CUPS	OpenPrintingのCUPSにおける複数の脆弱性	CWE-125 CWE-200	CVE-2026-41079	2026-04-28 10:11	2026-04-24	Show	GitHub Exploit DB Packet Storm

2744	6.6	警告 Local	Vim	Vim	VimにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-41411	2026-04-28 10:11	2026-04-24	Show	GitHub Exploit DB Packet Storm

2745	7.1	重要 Network	Foxit	eSign	FoxitのeSignにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-4947	2026-04-28 10:11	2026-04-1	Show	GitHub Exploit DB Packet Storm

2746	7.8	重要 Local	Rubicon Communications, LLC (Netgate).	AMITI Antivirus	Rubicon Communications, LLC (Netgate).のAMITI Antivirusにおける引用されない検索パスまたは要素に関する脆弱性	CWE-428 引用されない検索パスまたは要素	CVE-2016-20058	2026-04-28 10:11	2026-04-4	Show	GitHub Exploit DB Packet Storm

2747	5.5	警告 Local	CompuPhase	Termite	CompuPhaseのTermiteにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2018-25253	2026-04-28 10:11	2026-04-4	Show	GitHub Exploit DB Packet Storm

2748	9.8	緊急 Network	NICO-FTP Project	NICO-FTP	NICO-FTP ProjectのNICO-FTPにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2018-25254	2026-04-28 10:11	2026-04-4	Show	GitHub Exploit DB Packet Storm

2749	5.5	警告 Local	ks-soft	IP-Tools	KS-SoftのIP-Toolsにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2018-25256	2026-04-28 10:11	2026-04-5	Show	GitHub Exploit DB Packet Storm

2750	7.8	重要 Local	River Past Cam Do Project	River Past Cam Do	River Past Cam Do ProjectのRiver Past Cam Doにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2019-25626	2026-04-28 10:11	2026-03-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347701	-	perforce	perforce_server	Directory traversal vulnerability in Perforce Server 2008.1 allows remote authenticated users to create arbitrary files via a .. (dot dot) in the argument to the "p4 add" command.	CWE-22 Path Traversal	CVE-2010-0933	2012-06-15 13:00	2010-03-6	Show	GitHub Exploit DB Packet Storm

347702	-	3com	3cp4144	3Com OfficeConnect Remote 812 ADSL Router, firmware 1.1.9 and 1.1.7, allows remote attackers to bypass port access restrictions by connecting to an approved port and quickly connecting to the desired…	NVD-CWE-Other	CVE-2002-0888	2012-05-12 10:16	2002-10-4	Show	GitHub Exploit DB Packet Storm

347703	-	apple	iphone_os	Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a MARQUEE element.	CWE-20 Improper Input Validation	CVE-2010-1181	2012-03-30 13:00	2010-03-30	Show	GitHub Exploit DB Packet Storm

347704	-	emc	networker	EMC NetWorker (formerly Legato NetWorker) before 7.0 stores log files in the /nsr/logs/ directory with world-readable permissions, which allows local users to read sensitive information and possibly …	NVD-CWE-Other	CVE-2002-0113	2012-03-30 10:14	2002-03-25	Show	GitHub Exploit DB Packet Storm

347705	-	emc	networker	EMC NetWorker (formerly Legato NetWorker) before 7.0 stores passwords in plaintext in the daemon.log file, which allows local users to gain privileges by reading the password from the file. NOTE: th…	NVD-CWE-Other	CVE-2002-0114	2012-03-30 10:14	2002-03-25	Show	GitHub Exploit DB Packet Storm

347706	-	linux	linux_kernel	The nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9 does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a de…	CWE-399 Resource Management Errors	CVE-2007-6733	2012-03-19 13:00	2010-03-17	Show	GitHub Exploit DB Packet Storm

347707	-	cacti	cacti	SQL injection vulnerability in graph.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via a crafted rra_id parameter in a GET request in conjunction with a va…	CWE-89 SQL Injection	CVE-2010-2092	2012-02-16 13:04	2010-05-28	Show	GitHub Exploit DB Packet Storm

347708	-	cacti	cacti	SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.	CWE-89 SQL Injection	CVE-2010-1431	2012-02-16 13:02	2010-05-5	Show	GitHub Exploit DB Packet Storm

347709	-	hp	power_manager	Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-3999	2012-02-14 12:49	2010-01-21	Show	GitHub Exploit DB Packet Storm

347710	-	cafuego	simple_document_management_system	Multiple SQL injection vulnerabilities in Simple Document Management System (SDMS) 2.0-CVS and earlier allow remote attackers to execute arbitrary SQL commands via the (1) folder_id parameter in list…	CWE-89 SQL Injection	CVE-2005-3877	2012-02-7 14:00	2005-11-29	Show	GitHub Exploit DB Packet Storm