Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3371	6.5	警告 Network	Amazon.com, Inc.	tuftool Amazon tough	Amazon.com, Inc.のAmazon tough等の複数製品におけるデータの信頼性についての不十分な検証に関する脆弱性	CWE-345 データの信頼性についての不十分な検証	CVE-2026-6967	2026-05-8 12:09	2026-04-24	Show	GitHub Exploit DB Packet Storm

3372	6.5	警告 Network	Amazon.com, Inc.	tuftool Amazon tough	Amazon.com, Inc.のAmazon tough等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-6968	2026-05-8 12:09	2026-04-24	Show	GitHub Exploit DB Packet Storm

3373	7.5	重要 Network	RRWO (Robert Rothenberg)	Text::Minify::XS	RRWO (Robert Rothenberg)のText::Minify::XSにおける複数の脆弱性	CWE-122 CWE-176	CVE-2026-7040	2026-05-8 12:09	2026-04-27	Show	GitHub Exploit DB Packet Storm

3374	8.4	重要 Local	HMBRAND (H.Merijn Brand)	Text::CSV_XS	HMBRAND (H.Merijn Brand)のText::CSV_XSにおける複数の脆弱性	CWE-416 CWE-825	CVE-2026-7111	2026-05-8 12:09	2026-04-29	Show	GitHub Exploit DB Packet Storm

3375	9.1	緊急 Network	MIYAGAWA (Tatsuhiko Miyagawa)	Plack::Middleware::Xsendfile	MIYAGAWA (Tatsuhiko Miyagawa)のPlack::Middleware::Xsendfileにおける複数の脆弱性	CWE-200 CWE-441 CWE-913	CVE-2026-7381	2026-05-8 12:09	2026-04-29	Show	GitHub Exploit DB Packet Storm

3376	8.1	重要 Network	D-Link Systems, Inc.	M60 Firmware	D-Link CorporationのM60 Firmwareにおけるパスワード管理機能に関する脆弱性	CWE-640 パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み	CVE-2026-7554	2026-05-8 12:09	2026-05-1	Show	GitHub Exploit DB Packet Storm

3377	9.8	緊急 Network	WAVLINK	WL-WN570HA1 Firmware	WAVLINKのWL-WN570HA1 Firmwareにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-7690	2026-05-8 12:09	2026-05-3	Show	GitHub Exploit DB Packet Storm

3378	6.3	警告 Network	WAVLINK	WL-WN570HA1 Firmware	WAVLINKのWL-WN570HA1 Firmwareにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-7691	2026-05-8 12:09	2026-05-3	Show	GitHub Exploit DB Packet Storm

3379	6.3	警告 Network	WAVLINK	WL-WN570HA1 Firmware	WAVLINKのWL-WN570HA1 Firmwareにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-7692	2026-05-8 12:09	2026-05-3	Show	GitHub Exploit DB Packet Storm

3380	8	重要 Adjacent	TP-LINK Technologies	Archer AXE75 Firmware	TP-LINK TechnologiesのArcher AXE75 FirmwareにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-15568	2026-05-8 12:09	2026-03-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354071	-	webtrends	reporting_center	WebTrends Reporting Center 4.0d allows remote attackers to determine the real path of the web server via a GET request to get_od_toc.pl with an empty Profile parameter, which leaks the pathname in an…	CWE-200 Information Exposure	CVE-2002-0596	2010-01-16 14:00	2002-06-18	Show	GitHub Exploit DB Packet Storm

354072	-	tftpd32	tftpd32	tftpd32 2.50 and 2.50.2 allows remote attackers to read or write arbitrary files via a full pathname in GET and PUT requests.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2002-2353	2009-11-24 14:15	2002-12-31	Show	GitHub Exploit DB Packet Storm

354073	-	jean-jacques_sarton	mtink	Buffer overflow in MTink in the printer-filters-utils package allows local users to execute arbitrary code via a long HOME environment variable.	NVD-CWE-Other	CVE-2005-4604	2009-11-12 14:51	2005-12-31	Show	GitHub Exploit DB Packet Storm

354074	-	openoffice	openoffice	OpenOffice.org 2.0 and earlier, when hyperlinks has been disabled, does not prevent the user from clicking the WWW-browser button in the Hyperlink dialog, which makes it easier for attackers to trick…	NVD-CWE-Other	CVE-2005-4636	2009-11-12 14:51	2005-12-31	Show	GitHub Exploit DB Packet Storm

354075	-	dec	dec_openvms	Vulnerability in Monitor utility (SYS$SHARE:SPISHR.EXE) in VMS 5.0 through 5.4-2 allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1395	2009-10-31 13:02	1992-11-17	Show	GitHub Exploit DB Packet Storm

354076	-	apple	mac_os_x	Mac OS X 10.3.9 and earlier allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow attackers to conduct unauthorized activities with esca…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-0970	2009-10-14 13:00	2005-05-2	Show	GitHub Exploit DB Packet Storm

354077	-	sips	sips	Unspecified vulnerability in Haakon Nilsen simple, integrated publishing system (SIPS) before 0.2.4 has an unknown impact and attack vectors, related to a "grave security fault."	NVD-CWE-noinfo	CVE-2000-1241	2009-10-14 13:00	2000-12-31	Show	GitHub Exploit DB Packet Storm

354078	-	netgear	fm114p	NETGEAR FM114P allows remote attackers to bypass access restrictions for web sites via a URL that uses the IP address instead of the hostname.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2002-1877	2009-10-14 13:00	2002-12-31	Show	GitHub Exploit DB Packet Storm

354079	-	post_affiliate_pro	post_affiliate_pro	merchants/index.php in Post Affiliate Pro 2.0.4 and earlier, with magic_quotes_gpc disabled, allows remote attackers to include arbitrary local files via the md parameter, possibly due to a directory…	NVD-CWE-Other	CVE-2005-3910	2009-10-9 13:33	2005-11-30	Show	GitHub Exploit DB Packet Storm

354080	-	babe_logger	babe_logger	SQL injection vulnerability in Babe Logger 2 allows remote attackers to execute arbitrary SQL commands via the (1) gal parameter to index.php or (2) id parameter to comments.php.	NVD-CWE-Other	CVE-2005-3920	2009-10-9 13:33	2005-11-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed