Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
341	5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUNIX Symbolic Link のフォローに関する脆弱性 New	CWE-61 UNIX Symbolic Link のフォロー	CVE-2026-35372	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

342	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性 New	CWE-176 Unicode エンコーディングの不適切な処理	CVE-2026-35373	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

343	6.3	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35374	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

344	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性 New	CWE-176 Unicode エンコーディングの不適切な処理	CVE-2026-35375	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

345	5.8	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35376	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

346	8.8	重要 Network	DBitNet	N300 T1 Pro ファームウェア	DBitNetのN300 T1 Pro ファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 New	CWE-352 同一生成元ポリシー違反	CVE-2026-36956	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

347	7.5	重要 Network	DBitNet	N300 T1 Pro ファームウェア	DBitNetのN300 T1 Pro ファームウェアにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-36957	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

348	4.4	警告 Local	Absolute Software	secure access	Absolute Softwareのsecure accessにおけるスタックベースのバッファオーバーフローの脆弱性 New	CWE-121 スタックオーバーフロー	CVE-2026-40949	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

349	6.5	警告 Network	Absolute Software	secure access	Absolute Softwareのsecure accessにおけるスタックベースのバッファオーバーフローの脆弱性 New	CWE-121 スタックオーバーフロー	CVE-2026-40950	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

350	5.5	警告 Local	Absolute Software	secure access	Absolute Softwareのsecure accessにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-40951	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347191	-	peoplesoft	peopletools	The Application Messaging Gateway for PeopleTools 8.1x before 8.19, as used in various PeopleSoft products, allows remote attackers to read arbitrary files via certain XML External Entities (XXE) fie…	NVD-CWE-Other	CVE-2002-1252	2008-09-11 04:14	2003-02-7	Show	GitHub Exploit DB Packet Storm

347192	-	jacques_gelinas	linuxconf	The mailconf module in Linuxconf 1.24, and other versions before 1.28, on Conectiva Linux 6.0 through 8, and possibly other distributions, generates the Sendmail configuration file (sendmail.cf) in a…	NVD-CWE-Other	CVE-2002-1278	2008-09-11 04:14	2002-11-12	Show	GitHub Exploit DB Packet Storm

347193	-	masqmail	masqmail	Multiple buffer overflows in conf.c for Masqmail 0.1.x before 0.1.17, and 0.2.x before 0.2.15, allow local users to gain privileges via certain entries in the configuration file (-C option).	NVD-CWE-Other	CVE-2002-1279	2008-09-11 04:14	2002-11-29	Show	GitHub Exploit DB Packet Storm

347194	-	iss	realsecure_event_collector	Memory leak in RealSecure Event Collector 6.5 allows attackers to cause a denial of service (memory consumption and crash).	NVD-CWE-Other	CVE-2002-1280	2008-09-11 04:14	2002-05-17	Show	GitHub Exploit DB Packet Storm

347195	-	suse	suse_linux	runlpr in the LPRng package allows the local lp user to gain root privileges via certain command line arguments.	NVD-CWE-Other	CVE-2002-1285	2008-09-11 04:14	2002-11-29	Show	GitHub Exploit DB Packet Storm

347196	-	smb2www	smb2www	Unknown vulnerability in smb2www 980804-16 and earlier allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-2002-1342	2008-09-11 04:14	2002-12-18	Show	GitHub Exploit DB Packet Storm

347197	-	per_magne_knutsen	cartman	Per Magne Knutsen's CartMan shopping cart (cartman.php) 1.04 and earlier allows remote attackers to modify product prices by changing the price parameter.	NVD-CWE-Other	CVE-2002-1352	2008-09-11 04:14	2003-09-17	Show	GitHub Exploit DB Packet Storm

347198	-	openldap	openldap	OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows remote or local attackers to execute arbitrary code when libldap reads the .ldaprc file within applications that are running with extra privileges.	NVD-CWE-Other	CVE-2002-1379	2008-09-11 04:14	2003-01-2	Show	GitHub Exploit DB Packet Storm

347199	-	debian	internet_message	Internet Message (IM) 141-18 and earlier uses predictable file and directory names, which allows local users to (1) obtain unauthorized directory permissions via a temporary directory used by impwage…	NVD-CWE-Other	CVE-2002-1395	2008-09-11 04:14	2003-01-17	Show	GitHub Exploit DB Packet Storm

347200	-	frederic_tyndiuk	eupload	eUpload 1.0 stores the password.txt password file in plaintext under the web document root, which allows remote attackers to overwrite arbitrary files by reading password.txt.	NVD-CWE-Other	CVE-2002-1449	2008-09-11 04:14	2002-07-31	Show	GitHub Exploit DB Packet Storm