Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4551	5.4	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2025-12669	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

4552	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2025-13874	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

4553	7.5	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2025-14869	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

4554	7.5	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-14870	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

4555	5.6	警告 Network	デル	elastic cloud storage Dell ObjectScale	デルのelastic cloud storage等の複数製品における認証回避の脆弱性	CWE-302 認証回避の脆弱性	CVE-2025-43992	2026-05-18 12:08	2026-05-11	Show	GitHub Exploit DB Packet Storm

4556	6.7	警告 Local	フォーティネット	FortiAP-U FortiAP FortiAP-W2	フォーティネットのFortiAP-U等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-53680	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

4557	7.2	重要 Network	フォーティネット	FortiMail	フォーティネットのFortiMailにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-53681	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

4558	8.8	重要 Network	フォーティネット	FortiOS	フォーティネットのFortiOSにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2025-53844	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

4559	6.7	警告 Local	フォーティネット	FortiAP FortiAP-W2	フォーティネットのFortiAP-W2等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-53870	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

4560	5.3	警告 Network	strapi	strapi	strapiにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2025-64526	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346981	-	netopia	r9100_router	Netopia R9100 router version 4.6 allows authenticated users to cause a denial of service by using the router's telnet program to connect to the router's IP address, which causes a crash.	NVD-CWE-Other	CVE-2001-0185	2017-10-10 10:29	2001-03-26	Show	GitHub Exploit DB Packet Storm

346982	-	washington_university	wu-ftpd	Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PAS…	NVD-CWE-Other	CVE-2001-0187	2017-10-10 10:29	2001-03-26	Show	GitHub Exploit DB Packet Storm

346983	-	intranet-server	localweb2000	Directory traversal vulnerability in LocalWEB2000 HTTP server allows remote attackers to read arbitrary commands via a .. (dot dot) attack in an HTTP GET request.	NVD-CWE-Other	CVE-2001-0189	2017-10-10 10:29	2001-03-26	Show	GitHub Exploit DB Packet Storm

346984	-	debian suse	debian_linux suse_linux	Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter.	NVD-CWE-Other	CVE-2001-0193	2017-10-10 10:29	2001-05-3	Show	GitHub Exploit DB Packet Storm

346985	-	easy_software_products	cups	Buffer overflow in httpGets function in CUPS 1.1.5 allows remote attackers to execute arbitrary commands via a long input line.	NVD-CWE-Other	CVE-2001-0194	2017-10-10 10:29	2001-05-3	Show	GitHub Exploit DB Packet Storm

346986	-	freebsd	freebsd	inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group.	NVD-CWE-Other	CVE-2001-0196	2017-10-10 10:29	2001-05-3	Show	GitHub Exploit DB Packet Storm

346987	-	icecast redhat	icecast linux	Format string vulnerability in print_client in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-2001-0197	2017-10-10 10:29	2001-03-26	Show	GitHub Exploit DB Packet Storm

346988	-	watchguard	firebox_ii	Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and administrative privileges, by accessing a file that contains hashed passphrases, and using the hashes …	NVD-CWE-Other	CVE-2001-0203	2017-10-10 10:29	2001-03-26	Show	GitHub Exploit DB Packet Storm

346989	-	watchguard	firebox_ii	Watchguard Firebox II allows remote attackers to cause a denial of service by establishing multiple connections and sending malformed PPTP packets.	NVD-CWE-Other	CVE-2001-0204	2017-10-10 10:29	2001-06-2	Show	GitHub Exploit DB Packet Storm

346990	-	pierre_beyssac	bing	Buffer overflow in bing allows remote attackers to execute arbitrary commands via a long hostname, which is copied to a small buffer after a reverse DNS lookup using the gethostbyaddr function.	NVD-CWE-Other	CVE-2001-0207	2017-10-10 10:29	2001-03-26	Show	GitHub Exploit DB Packet Storm