Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2911	7.2	重要 Network	Sanjay Sharma (sanjay1313)	Visitor-Management-System	Sanjay Sharma (sanjay1313)のVisitor-Management-Systemにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-37748	2026-04-24 11:37	2026-04-21	Show	GitHub Exploit DB Packet Storm

2912	7.5	重要 Network	Little CMS	Little CMS	Little CMSにおける複数の脆弱性	CWE-190 CWE-696	CVE-2026-41254	2026-04-24 11:36	2026-04-18	Show	GitHub Exploit DB Packet Storm

2913	5.3	警告 Network	MetaCPAN BEROV	Ado::Sessions	MetaCPAN BEROVのAdo::Sessionsにおける複数の脆弱性	CWE-338 CWE-340	CVE-2026-5083	2026-04-24 11:36	2026-04-8	Show	GitHub Exploit DB Packet Storm

2914	9.1	緊急 Network	MCRAWFOR	Solstice::Session	MCRAWFORのSolstice::Sessionにおける複数の脆弱性	CWE-338 CWE-340	CVE-2026-5085	2026-04-24 11:36	2026-04-13	Show	GitHub Exploit DB Packet Storm

2915	10	緊急 Network	NWCLARK (Nicholas Clark)	Storable	NWCLARK (Nicholas Clark)のStorableにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2017-20230	2026-04-24 11:36	2026-04-21	Show	GitHub Exploit DB Packet Storm

2916	9.8	緊急 Network	ProSoft Technology	ICX35-HWC Firmware	ProSoft TechnologyのICX35-HWC Firmwareにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2017-20235	2026-04-24 11:36	2026-04-3	Show	GitHub Exploit DB Packet Storm

2917	9.8	緊急 Network	ProSoft Technology	ICX35-HWC Firmware	ProSoft TechnologyのICX35-HWC FirmwareにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2017-20236	2026-04-24 11:36	2026-04-3	Show	GitHub Exploit DB Packet Storm

2918	4.9	警告 Network	Fortra	GoAnywhere Agents GoAnywhere Managed File Transfer	FortraのGoAnywhere Agents等の複数製品における暗号強度に関する脆弱性	CWE-326 不適切な暗号強度	CVE-2025-1241	2026-04-24 11:36	2026-04-21	Show	GitHub Exploit DB Packet Storm

2919	7.3	重要 Network	Fortra	GoAnywhere Managed File Transfer	FortraのGoAnywhere Managed File Transferにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2025-14362	2026-04-24 11:36	2026-04-21	Show	GitHub Exploit DB Packet Storm

2920	8.1	重要 Network	Gardyn	Gardin API	GardynのGardin APIにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-25197	2026-04-24 11:36	2026-04-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348631	-	l2tpd	l2tpd	Vulnerability in l2tpd 0.67 allows remote attackers to overwrite the vendor field via a long value in an attribute/value pair, possibly via a buffer overflow.	NVD-CWE-Other	CVE-2002-0873	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

348632	-	redhat	interchange	Vulnerability in Interchange 4.8.6, 4.8.3, and other versions, when running in INET mode, allows remote attackers to read arbitrary files.	NVD-CWE-Other	CVE-2002-0874	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

348633	-	sgi debian	fam irix debian_linux	Vulnerability in FAM 2.6.8, 2.6.6, and other versions allows unprivileged users to obtain the names of files whose access is restricted to the root group.	NVD-CWE-Other	CVE-2002-0875	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

348634	-	cgiscript.net	cspassword	CGIScript.net csPassword.cgi stores usernames and unencrypted passwords in the password.cgi.tmp temporary file while modifying data, which could allow local users (and possibly remote attackers) to g…	NVD-CWE-Other	CVE-2002-0920	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm

348635	-	cgiscript.net	csnews	CGIScript.net csNews.cgi allows remote authenticated users to execute arbitrary Perl code via terminating quotes and metacharacters in text fields of the "Advanced Settings" capability.	NVD-CWE-Other	CVE-2002-0924	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm

348636	-	ncipher	mscapi_csp	The Install Wizard for nCipher MSCAPI CSP 5.50 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protecti…	NVD-CWE-Other	CVE-2002-0939	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm

348637	-	ncipher	mscapi_csp	domesticinstall.exe for nCipher MSCAPI CSP 5.50 and 5.54 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lowe…	NVD-CWE-Other	CVE-2002-0940	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm

348638	-	scripts_for_educators	makebook	Scripts For Educators MakeBook 2.2 CGI program allows remote attackers to execute script as other visitors, or execute server-side includes (SSI) as the web server, via the (1) Name or (2) Email para…	NVD-CWE-Other	CVE-2002-0948	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm

348639	-	microsoft	file_transfer_manager	Buffer overflow in Microsoft File Transfer Manager (FTM) ActiveX control before 4.0 allows remote attackers to execute arbitrary code via a long TS value.	NVD-CWE-Other	CVE-2002-0977	2008-09-11 04:13	2002-09-24	Show	GitHub Exploit DB Packet Storm

348640	-	microsoft	file_transfer_manager	Microsoft File Transfer Manager (FTM) ActiveX control before 4.0 allows remote attackers to upload or download arbitrary files to arbitrary locations via a man-in-the-middle attack with modified TGT …	NVD-CWE-Other	CVE-2002-0978	2008-09-11 04:13	2002-09-24	Show	GitHub Exploit DB Packet Storm