Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2941	7.8	重要 Local	dail8859	Notepad Next	dail8859のNotepad Nextにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-42214	2026-05-14 10:12	2026-05-7	Show	GitHub Exploit DB Packet Storm

2942	7.1	重要 Network	Legeling	PromptHUB	LegelingのPromptHUBにおける複数の脆弱性	CWE-20 CWE-693 CWE-918	CVE-2026-42261	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

2943	9.9	緊急 Network	Apache Software Foundation	Polaris	Apache Software FoundationのPolarisにおける複数の脆弱性	CWE-20 CWE-862	CVE-2026-42809	2026-05-14 10:12	2026-05-4	Show	GitHub Exploit DB Packet Storm

2944	9.9	緊急 Network	Apache Software Foundation	Polaris	Apache Software FoundationのPolarisにおける複数の脆弱性	CWE-116 CWE-20	CVE-2026-42810	2026-05-14 10:12	2026-05-4	Show	GitHub Exploit DB Packet Storm

2945	9.9	緊急 Network	Apache Software Foundation	Polaris	Apache Software FoundationのPolarisにおける複数の脆弱性	CWE-20 CWE-917	CVE-2026-42811	2026-05-14 10:12	2026-05-4	Show	GitHub Exploit DB Packet Storm

2946	9.9	緊急 Network	Apache Software Foundation	Polaris	Apache Software FoundationのPolarisにおける複数の脆弱性	CWE-20 CWE-284 CWE-732 CWE-863	CVE-2026-42812	2026-05-14 10:12	2026-05-4	Show	GitHub Exploit DB Packet Storm

2947	7.5	重要 Network	Open JS Foundation	fast-uri	Open JS Foundationのfast-uriにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-6321	2026-05-14 10:12	2026-05-4	Show	GitHub Exploit DB Packet Storm

2948	7.5	重要 Network	Open JS Foundation	fast-uri	Open JS Foundationのfast-uriにおける解釈の競合に関する脆弱性	CWE-436 解釈の競合	CVE-2026-6322	2026-05-14 10:12	2026-05-5	Show	GitHub Exploit DB Packet Storm

2949	4.8	警告 Network	KDDI	Androidアプリ「あんしんフィルター for au」	Androidアプリ「あんしんフィルター for au」における重要情報の平文送信の脆弱性	CWE-Other その他	CVE-2026-41281	2026-05-13 12:14	2026-05-13	Show	GitHub Exploit DB Packet Storm

2950	7.8	重要 Local	Bytello Ltd.	Bytello Share（Windows版）	Bytello Share（Windows版）のEXE形式インストーラにおけるDLL読み込みに関する脆弱性	CWE-Other その他	CVE-2026-44612	2026-05-13 12:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345861	-	geeklog	geeklog	Multiple cross-site scripting (XSS) vulnerabilities in Geeklog 1.3.7 allow remote attackers to inject arbitrary web script or HTML via the (1) cid parameter to comment.php, (2) uid parameter to profi…	CWE-79 Cross-site Scripting	CVE-2003-1347	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

345862	-	ftls	guestbook	Cross-site scripting (XSS) vulnerability in guestbook.cgi in ftls.org Guestbook 1.1 allows remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) name, or (3) title field.	CWE-79 Cross-site Scripting	CVE-2003-1348	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

345863	-	thomas_krebs	niteserver_ftpd	Directory traversal vulnerability in NITE ftp-server (NiteServer) 1.83 allows remote attackers to list arbitrary directories via a "\.." (backslash dot dot) in the CD (CWD) command.	CWE-22 Path Traversal	CVE-2003-1349	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

345864	-	list_site_pro	list_site_pro	List Site Pro 2.0 allows remote attackers to hijack user accounts by inserting a "\|" (pipe), which is used as a field delimiter, into the bannerurl field.	CWE-20 Improper Input Validation	CVE-2003-1350	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

345865	-	greg_billock	edittag	Directory traversal vulnerability in edittag.cgi in EditTag 1.1 allows remote attackers to read arbitrary files via a "%2F.." (encoded slash dot dot) in the file parameter.	CWE-22 Path Traversal	CVE-2003-1351	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

345866	-	gabber	gabber	Gabber 0.8.7 sends an email to a specific address during user login and logout, which allows remote attackers to obtain user session activity and Gabber version number by sniffing.	CWE-16 Configuration	CVE-2003-1352	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

345867	-	lanifex	outreach_project_tool	Multiple cross-site scripting (XSS) vulnerabilities in Outreach Project Tool (OPT) 0.946b allow remote attackers to inject arbitrary web script or HTML, as demonstrated using the news field.	CWE-79 Cross-site Scripting	CVE-2003-1353	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

345868	-	gamespy3d	gamespy_3d	Multiple GameSpy 3D 2.62 compatible gaming servers generate very large UDP responses to small requests, which allows remote attackers to use the servers as an amplifier in DDoS attacks with spoofed U…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1354	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

345869	-	electronic_arts	battlefield_1942	Buffer overflow in the remote console (rcon) in Battlefield 1942 1.2 and 1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long user name and …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1355	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

345870	-	replicom	proxyview	ProxyView has a default administrator password of Administrator for Embedded Windows NT, which allows remote attackers to gain access.	CWE-16 Configuration	CVE-2003-1357	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm