Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3091	7	重要 Local	Tabby	Tabby	TabbyにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-45036	2026-05-21 10:55	2026-05-15	Show	GitHub Exploit DB Packet Storm

3092	7.1	重要 Network	Tabby	Tabby	Tabbyにおける複数の脆弱性	CWE-184 CWE-601	CVE-2026-45037	2026-05-21 10:55	2026-05-15	Show	GitHub Exploit DB Packet Storm

3093	7.8	重要 Local	Tabby	Tabby	Tabbyにおけるエスケープ、メタ、またはコントロールシーケンスの不適切な無効化に関する脆弱性	CWE-150 エスケープ、メタ、またはコントロールシーケンスの不適切な無効化	CVE-2026-45038	2026-05-21 10:54	2026-05-15	Show	GitHub Exploit DB Packet Storm

3094	9.8	緊急 Network	Zeit, Inc.	Turborepo	Vercel, Inc. (旧 Zeit, Inc.)のTurborepoにおける信頼できない検索パスに関する脆弱性	CWE-426 信頼性のない検索パス	CVE-2026-45772	2026-05-21 10:54	2026-05-15	Show	GitHub Exploit DB Packet Storm

3095	6.5	警告 Network	Zeit, Inc.	Turborepo	Vercel, Inc. (旧 Zeit, Inc.)のTurborepoにおける複数の脆弱性	CWE-352 CWE-384	CVE-2026-45773	2026-05-21 10:54	2026-05-15	Show	GitHub Exploit DB Packet Storm

3096	7.8	重要 Local	Zeit, Inc.	The Turborepo Language Server Protocol (LSP)	Vercel, Inc. (旧 Zeit, Inc.)のThe Turborepo Language Server Protocol (LSP)におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-46508	2026-05-21 10:54	2026-05-15	Show	GitHub Exploit DB Packet Storm

3097	9.1	緊急 Network	FreeRTOS	coreMQTT	FreeRTOSのcoreMQTTにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-8686	2026-05-21 10:54	2026-05-15	Show	GitHub Exploit DB Packet Storm

3098	9.1	緊急 Network	Aden	OpenHive	AdenのOpenHiveにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-8757	2026-05-21 10:54	2026-05-17	Show	GitHub Exploit DB Packet Storm

3099	6.5	警告 Network	Kilo Code	Kilo Code	Kilo Codeにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-8765	2026-05-21 10:54	2026-05-17	Show	GitHub Exploit DB Packet Storm

3100	6.5	警告 Network	Kilo Code	Kilo Code	Kilo Codeにおける複数の脆弱性	CWE-200 CWE-284 CWE-noinfo	CVE-2026-8766	2026-05-21 10:54	2026-05-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345471	-	oracle	application_server_web_cache	Oracle9iAS Web Cache 2.0.0.x allows remote attackers to cause a denial of service via (1) a request to TCP ports 1100, 4000, 4001, and 4002 with a large number of null characters, and (2) a request t…	NVD-CWE-Other	CVE-2002-0102	2017-12-19 11:29	2002-03-25	Show	GitHub Exploit DB Packet Storm

345472	-	transsoft	broker_ftp_server	Buffer overflow in Transsoft Broker FTP Server 5.0 evaluation allows remote attackers to cause a denial of service and possibly execute arbitrary code via a CWD command with a large number of . (dot)…	NVD-CWE-Other	CVE-2002-0405	2017-12-19 11:29	2002-07-26	Show	GitHub Exploit DB Packet Storm

345473	-	hosting_controller	hosting_controller	Directory traversal vulnerability in filemanager.asp for Hosting Controller 1.4.1 and earlier allows remote attackers to read and modify arbitrary files, and execute commands, via a .. (dot dot) in t…	NVD-CWE-Other	CVE-2002-0465	2017-12-19 11:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

345474	-	hosting_controller	hosting_controller	Hosting Controller 1.4.1 and earlier allows remote attackers to browse arbitrary directories via a full C: style pathname in the filepath arguments to (1) Statsbrowse.asp, (2) servubrowse.asp, (3) br…	NVD-CWE-Other	CVE-2002-0466	2017-12-19 11:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

345475	-	citrix	nfuse	Citrix NFuse 1.6 may allow remote attackers to list applications without authentication by accessing the applist.asp page.	NVD-CWE-Other	CVE-2002-0502	2017-12-19 11:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

345476	-	oracle	application_server application_server_web_cache oracle8i oracle9i	Buffer overflows in PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allow remote attackers to cause a denial of service or execute arbitrary code via (1) a long help page request with…	NVD-CWE-Other	CVE-2002-0559	2017-12-19 11:29	2002-07-3	Show	GitHub Exploit DB Packet Storm

345477	-	oracle	application_server application_server_web_cache oracle9i	Oracle 9iAS 1.0.2.x compiles JSP files in the _pages directory with world-readable permissions under the web root, which allows remote attackers to obtain sensitive information derived from the JSP c…	NVD-CWE-Other	CVE-2002-0565	2017-12-19 11:29	2002-07-3	Show	GitHub Exploit DB Packet Storm

345478	-	linux	linux_kernel	The encrypted loop device in Linux kernel 2.4.10 and earlier does not authenticate the entity that is encrypting data, which allows local users to modify encrypted data without knowing the key.	NVD-CWE-Other	CVE-2002-0570	2017-12-19 11:29	2002-07-3	Show	GitHub Exploit DB Packet Storm

345479	-	freebsd netbsd openbsd	freebsd netbsd openbsd	Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel h…	NVD-CWE-Other	CVE-2002-2092	2017-12-19 11:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345480	-	sgi	irix	The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to "Output Video", allows attackers to access a console session by running videoout then videoin.	NVD-CWE-Other	CVE-2002-2093	2017-12-19 11:29	2002-12-31	Show	GitHub Exploit DB Packet Storm