Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4651	6.1	警告 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-41255	2026-05-18 11:31	2026-05-13	Show	GitHub Exploit DB Packet Storm

4652	9.8	緊急 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-41293	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

4653	5	警告 Local	マイクロソフト	Visual Studio Code	マイクロソフトのVisual Studio Codeにおける複数の脆弱性	CWE-200 CWE-59 CWE-79 CWE-79	CVE-2026-41610	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

4654	3.3	低 Local	マイクロソフト	Visual Studio Code	Visual Studio Code のリモートでコードが実行される脆弱性	CWE-77 CWE-79 CWE-80	CVE-2026-41611	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

4655	8.8	重要 Network	マイクロソフト	Visual Studio Code	マイクロソフトのVisual Studio Codeにおける複数の脆弱性	CWE-384 CWE-384 CWE-78	CVE-2026-41613	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

4656	7.4	重要 Network	マイクロソフト	Microsoft Authenticator	Microsoft Authenticator の情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2026-41615	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

4657	6.5	警告 Network	Distribution	Distribution	Distributionにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41888	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

4658	7.5	重要 Network	Signal K	Signal K Server	Signal KのSignal K Serverにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-41893	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

4659	9.8	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-42031	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

4660	9.1	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42032	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346941	-	freebsd	freebsd	Buffer overflow in kdc_reply_cipher of libkrb (Kerberos 4 authentication library) in NetBSD 1.5 and FreeBSD 4.2 and earlier, as used in Kerberised applications such as telnetd and login, allows local…	NVD-CWE-Other	CVE-2001-0094	2017-10-10 10:29	2001-02-12	Show	GitHub Exploit DB Packet Storm

346942	-	brian_stanback	bsguest.cgi	bsguest.cgi guestbook script allows remote attackers to execute arbitrary commands via shell metacharacters in the email address.	NVD-CWE-Other	CVE-2001-0099	2017-10-10 10:29	2001-02-12	Show	GitHub Exploit DB Packet Storm

346943	-	brian_stanback	bslist.cgi	bslist.cgi mailing list script allows remote attackers to execute arbitrary commands via shell metacharacters in the email address.	NVD-CWE-Other	CVE-2001-0100	2017-10-10 10:29	2001-02-12	Show	GitHub Exploit DB Packet Storm

346944	-	hp	hp-ux	Vulnerability in top in HP-UX 11.04 and earlier allows local users to overwrite files owned by the "sys" group.	NVD-CWE-Other	CVE-2001-0105	2017-10-10 10:29	2001-02-12	Show	GitHub Exploit DB Packet Storm

346945	-	hp	hp-ux	Vulnerability in inetd server in HP-UX 11.04 and earlier allows attackers to cause a denial of service when the "swait" state is used by a server.	NVD-CWE-Other	CVE-2001-0106	2017-10-10 10:29	2001-02-12	Show	GitHub Exploit DB Packet Storm

346946	-	php mandrakesoft	php mandrake_linux	PHP Apache module 4.0.4 and earlier allows remote attackers to bypass .htaccess access restrictions via a malformed HTTP request on an unrestricted page that causes PHP to use those access controls o…	NVD-CWE-Other	CVE-2001-0108	2017-10-10 10:29	2001-03-12	Show	GitHub Exploit DB Packet Storm

346947	-	suse	suse_linux	rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporary file.	NVD-CWE-Other	CVE-2001-0109	2017-10-10 10:29	2001-03-12	Show	GitHub Exploit DB Packet Storm

346948	-	iomega	jazip	Buffer overflow in jaZip Zip/Jaz drive manager allows local users to gain root privileges via a long DISPLAY environmental variable.	NVD-CWE-Other	CVE-2001-0110	2017-10-10 10:29	2001-03-12	Show	GitHub Exploit DB Packet Storm

346949	-	sam_lantinga debian	splitvt debian_linux	Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line argument.	NVD-CWE-Other	CVE-2001-0111	2017-10-10 10:29	2001-03-12	Show	GitHub Exploit DB Packet Storm

346950	-	immunix mandrakesoft redhat	immunix mandrake_linux linux	gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack.	NVD-CWE-Other	CVE-2001-0116	2017-10-10 10:29	2001-03-12	Show	GitHub Exploit DB Packet Storm