Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2951 5.3 警告
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)における重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2025-31981 2026-04-24 11:34 2026-04-21 Show GitHub Exploit DB Packet Storm
2952 6.1 警告
Network 		WSO2 WSO2 API Manager
WSO2 Identity Server 		WSO2のWSO2 API Manager等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-6024 2026-04-24 11:34 2026-04-16 Show GitHub Exploit DB Packet Storm
2953 6.5 警告
Network 		フォーティネット FortiOS
FortiPAM
FortiProxy
FortiSwitch Manager 		フォーティネットのFortiOS等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-61624 2026-04-24 11:34 2026-04-14 Show GitHub Exploit DB Packet Storm
2954 5.4 警告
Network 		フォーティネット FortiSandbox
FortiSandbox Cloud 		フォーティネットのFortiSandbox等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-61886 2026-04-24 11:34 2026-04-14 Show GitHub Exploit DB Packet Storm
2955 5.3 警告
Network 		Apache Software Foundation Apache Doris-MCP-Server Apache Software FoundationのApache Doris-MCP-ServerにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-66335 2026-04-24 11:34 2026-04-20 Show GitHub Exploit DB Packet Storm
2956 6.5 警告
Network 		フォーティネット FortiManager Cloud
FortiAnalyzer
FortiAnalyzer Cloud
FortiManager 		フォーティネットのFortiAnalyzer等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-68649 2026-04-24 11:34 2026-04-14 Show GitHub Exploit DB Packet Storm
2957 8.4 重要
Local 		Nitro Software Inc. Nitro PDF Pro Nitro Software Inc.のNitro PDF Proにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2025-69627 2026-04-24 11:34 2026-04-13 Show GitHub Exploit DB Packet Storm
2958 4.3 警告
Network 		Fortra GoAnywhere Managed File Transfer FortraのGoAnywhere Managed File Transferにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-0971 2026-04-24 11:34 2026-04-21 Show GitHub Exploit DB Packet Storm
2959 5.4 警告
Network 		Fortra GoAnywhere Managed File Transfer FortraのGoAnywhere Managed File Transferにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-0972 2026-04-24 11:34 2026-04-21 Show GitHub Exploit DB Packet Storm
2960 6.5 警告
Network 		Fortra GoAnywhere Managed File Transfer FortraのGoAnywhere Managed File Transferにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-1089 2026-04-24 11:34 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348771 - mozilla bugzilla Bugzilla 2.10 allows remote attackers to execute arbitrary commands via shell metacharacters in a username that is then processed by (1) the Bugzilla_login cookie in post_bug.cgi, or (2) the who para… NVD-CWE-Other
CVE-2001-0329 2008-09-11 04:07 2001-06-27 Show GitHub Exploit DB Packet Storm
348772 - imatix xitami Xitami 2.5d4 and earlier allows remote attackers to crash the server via an HTTP request to the /aux directory. NVD-CWE-Other
CVE-2001-0391 2008-09-11 04:07 2001-07-2 Show GitHub Exploit DB Packet Storm
348773 - qpc_software qvt_net
qvt_term_plus 		Buffer overflow in QPC QVT/Net Popd 4.20 in QVT/Net 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via (1) a long username, or (2) a long password. NVD-CWE-Other
CVE-2001-0443 2008-09-11 04:07 2001-07-2 Show GitHub Exploit DB Packet Storm
348774 - xavier_ducrohet felix Felix IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL. NVD-CWE-Other
CVE-2000-1150 2008-09-11 04:06 2001-01-9 Show GitHub Exploit DB Packet Storm
348775 - abisoft baxter Baxter IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL. NVD-CWE-Other
CVE-2000-1151 2008-09-11 04:06 2001-01-9 Show GitHub Exploit DB Packet Storm
348776 - kenny_carruthers postmaster PostMaster 1.0 in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL. NVD-CWE-Other
CVE-2000-1153 2008-09-11 04:06 2001-01-9 Show GitHub Exploit DB Packet Storm
348777 - joe_kloss robinhood RHConsole in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request. NVD-CWE-Other
CVE-2000-1154 2008-09-11 04:06 2001-01-9 Show GitHub Exploit DB Packet Storm
348778 - joe_kloss robinhood RHDaemon in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request. NVD-CWE-Other
CVE-2000-1155 2008-09-11 04:06 2001-01-9 Show GitHub Exploit DB Packet Storm
348779 - nec socks_5 Buffer overflow in socks5 server on Linux allows attackers to execute arbitrary commands via a long connection request. NVD-CWE-Other
CVE-2000-1183 2008-09-11 04:06 2001-01-9 Show GitHub Exploit DB Packet Storm
348780 - i-soft quikstore Directory traversal vulnerability in Quikstore shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "page" parameter. NVD-CWE-Other
CVE-2000-1188 2008-09-11 04:06 2001-01-9 Show GitHub Exploit DB Packet Storm