Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3671 5.1 警告
Local 		Mozilla Foundation thin-vec Mozilla Foundationのthin-vecにおける複数の脆弱性 CWE-415
CWE-416
CVE-2026-6654 2026-05-14 10:23 2026-04-20 Show GitHub Exploit DB Packet Storm
3672 7.2 重要
Network 		SUN NET TECHNOLOGIES CO., LTD. eHRD CPAS
eHRD CTMS 		SUN NET TECHNOLOGIES CO., LTD.のeHRD CPAS等の複数製品における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-7490 2026-05-14 10:23 2026-05-2 Show GitHub Exploit DB Packet Storm
3673 6.3 警告
Network 		Router-For.ME CLI Proxy API Router-For.MEのCLI Proxy APIにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-8081 2026-05-14 10:23 2026-05-7 Show GitHub Exploit DB Packet Storm
3674 9.1 緊急
Network 		LibreNMS LibreNMS LibreNMSにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-51092 2026-05-14 10:23 2026-05-8 Show GitHub Exploit DB Packet Storm
3675 9.8 緊急
Network 		The PHP Group PHP The PHP GroupのPHPにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-14179 2026-05-14 10:23 2026-05-10 Show GitHub Exploit DB Packet Storm
3676 7.5 重要
Network 		IBM watsonx.data IBMのwatsonx.dataにおける意図するエンドポイントとの通信チャネルの制限に関する脆弱性 CWE-923
意図するエンドポイントとの通信チャネルの不適切な制限 		CVE-2025-36180 2026-05-14 10:23 2026-04-30 Show GitHub Exploit DB Packet Storm
3677 5.5 警告
Local 		IBM watsonx.data IBMのwatsonx.dataにおける認証情報の平文保存に関する脆弱性 CWE-256
平文でパスワードを保存 		CVE-2025-36335 2026-05-14 10:23 2026-04-30 Show GitHub Exploit DB Packet Storm
3678 7.5 重要
Network 		アップル iOS
iPadOS 		アップルのiPadOS等の複数製品におけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2025-46311 2026-05-14 10:23 2026-05-12 Show GitHub Exploit DB Packet Storm
3679 4.7 警告
Network 		ISPConfig ISPConfig ISPConfigにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-52206 2026-05-14 10:23 2026-05-5 Show GitHub Exploit DB Packet Storm
3680 7.3 重要
Network 		AstrBot AstrBot AstrBotにおけるハードコードされた暗号鍵の使用に関する脆弱性 CWE-321
ハードコードされた暗号鍵の使用 		CVE-2025-55449 2026-05-14 10:23 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346531 - oracle oracle9i Oracle listener before Oracle 9i allows attackers to cause a denial of service by repeatedly sending the first portion of a fragmented Oracle command without sending the remainder of the command, whi… NVD-CWE-Other
CVE-2001-0518 2017-10-10 10:29 2001-07-21 Show GitHub Exploit DB Packet Storm
346532 - suse suse_linux Buffer overflow in dsh in dqs 3.2.7 in SuSE Linux 7.0 and earlier, and possibly other operating systems, allows local users to gain privileges via a long first command line argument. NVD-CWE-Other
CVE-2001-0525 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
346533 - dcscripts dcforum
dcforum_2000 		DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will cr… NVD-CWE-Other
CVE-2001-0527 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
346534 - oracle e-business_suite Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) version 7.x includes a debug version of FNDPUB11I.DLL, which logs the APPS schema password in cleartext in a debug file, whic… NVD-CWE-Other
CVE-2001-0528 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
346535 - openbsd openssh OpenSSH version 2.9 and earlier, with X forwarding enabled, allows a local attacker to delete any file named 'cookies' via a symlink attack. NVD-CWE-Other
CVE-2001-0529 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
346536 - spearhead netgap_200
netgap_300 		Spearhead NetGAP 200 and 300 before build 78 allow a remote attacker to bypass file blocking and content inspection via specially encoded URLs which include '%' characters. NVD-CWE-Other
CVE-2001-0530 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
346537 - symantec liveupdate Symantec LiveUpdate 1.5 stores proxy passwords in cleartext in a registry key, which could allow local users to obtain the passwords. NVD-CWE-Other
CVE-2001-0549 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
346538 - ssh secure_shell SSH Secure Shell 3.0.0 on Unix systems does not properly perform password authentication to the sshd2 daemon, which allows local users to gain access to accounts with short password fields, such as l… NVD-CWE-Other
CVE-2001-0553 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
346539 - t._hauck jana_web_server T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (i.e. GET /aux HTTP/1.0). NVD-CWE-Other
CVE-2001-0558 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
346540 - paul_vixie vixie_cron crontab in Vixie cron 3.0.1 and earlier does not properly drop privileges after the failed parsing of a modification operation, which could allow a local attacker to gain additional privileges when a… NVD-CWE-Other
CVE-2001-0559 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm