Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
661	9.8	緊急 Network	Pipecat	Pipecat	Pipecatにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2025-62373	2026-04-30 12:08	2026-04-23	Show	GitHub Exploit DB Packet Storm

662	7.8	重要 Local	Amazon.com, Inc.	Kiro IDE	Amazon.com, Inc.のKiro IDEにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-0830	2026-04-30 12:08	2026-01-9	Show	GitHub Exploit DB Packet Storm

663	5.4	警告 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-25720	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

664	9.8	緊急 Network	huggingface	LeRobot	huggingfaceのLeRobotにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-25874	2026-04-30 12:08	2026-04-23	Show	GitHub Exploit DB Packet Storm

665	8.1	重要 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-27841	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

666	9.1	緊急 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-27843	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

667	7.5	重要 Network	Navigation Data Standard (NDS)	Zserio	Navigation Data Standard (NDS)のZserioにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-33524	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

668	7.5	重要 Network	Navigation Data Standard (NDS)	Zserio	Navigation Data Standard (NDS)のZserioにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-33666	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

669	7.5	重要 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35064	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

670	7.1	重要 Local	Gwenhael Goavec-Merou (trabucayre)	openFPGALoader	Gwenhael Goavec-Merou (trabucayre)のopenFPGALoaderにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-35170	2026-04-30 12:08	2026-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313611	-	care_2002	care_2002	Multiple SQL injection vulnerabilities in CARE 2002 before beta 1.0.02 allow remote attackers to perform unauthorized database operations.	CWE-89 SQL Injection	CVE-2002-0999	2024-02-14 10:17	2002-10-4	Show	GitHub Exploit DB Packet Storm

313612	-	ethereal_group	ethereal	Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets.	NVD-CWE-Other	CVE-2002-0834	2024-02-14 10:17	2002-09-24	Show	GitHub Exploit DB Packet Storm

313613	-	linux_directory_penguin	linux_directory_penguin_traceroute	Linux Directory Penguin traceroute.pl CGI script 1.0 allows remote attackers to execute arbitrary code via shell metacharacters in the host parameter.	NVD-CWE-Other	CVE-2002-0488	2024-02-14 10:17	2002-08-12	Show	GitHub Exploit DB Packet Storm

313614	-	symatec	popper_mod	The PHP administration script in popper_mod 1.2.1 and earlier relies on Apache .htaccess authentication, which allows remote attackers to gain privileges if the script is not appropriately configured…	NVD-CWE-Other	CVE-2002-0513	2024-02-14 10:17	2002-08-12	Show	GitHub Exploit DB Packet Storm

313615	-	levcgi.com	myguestbook	Cross-site scripting vulnerability in MyGuestbook 1.0 allows remote attackers to execute arbitrary script or inject HTML via fields such as (1) user name or (2) comments.	NVD-CWE-Other	CVE-2002-0732	2024-02-14 10:17	2002-08-12	Show	GitHub Exploit DB Packet Storm

313616	-	ethereal_group	ethereal	Buffer overflows in Ethereal 0.9.4 and earlier allow remote attackers to cause a denial of service or execute arbitrary code via (1) the BGP dissector, or (2) the WCP dissector.	NVD-CWE-Other	CVE-2002-0821	2024-02-14 10:17	2002-08-12	Show	GitHub Exploit DB Packet Storm

313617	-	ethereal_group	ethereal	Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecute arbitrary code via the (1) SOCKS, (2) RSVP, (3) AFS, or (4) LMP dissectors, which can be caused t…	NVD-CWE-Other	CVE-2002-0822	2024-02-14 10:17	2002-08-12	Show	GitHub Exploit DB Packet Storm

313618	-	ethereal_group	ethereal	The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possi…	NVD-CWE-Other	CVE-2002-0353	2024-02-14 10:17	2002-06-25	Show	GitHub Exploit DB Packet Storm

313619	-	ethereal_group	ethereal	Buffer overflow in X11 dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code while Ethereal is parsing keysyms.	NVD-CWE-Other	CVE-2002-0402	2024-02-14 10:17	2002-06-18	Show	GitHub Exploit DB Packet Storm

313620	-	ethereal_group	ethereal	DNS dissector in Ethereal before 0.9.3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed packet that causes Ethereal to enter an infinite loop.	NVD-CWE-Other	CVE-2002-0403	2024-02-14 10:17	2002-06-18	Show	GitHub Exploit DB Packet Storm