Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
711 9.6 緊急
Network 		Ivanti Xtraction IvantiのXtractionにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-8043 2026-05-15 10:54 2026-05-12 Show GitHub Exploit DB Packet Storm
712 7.5 重要
Network 		pillarjs multiparty pillarjsのmultipartyにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-8159 2026-05-15 10:54 2026-05-12 Show GitHub Exploit DB Packet Storm
713 7.5 重要
Network 		pillarjs multiparty pillarjsのmultipartyにおける複数の脆弱性 CWE-1321
CWE-248
CVE-2026-8161 2026-05-15 10:53 2026-05-12 Show GitHub Exploit DB Packet Storm
714 7.5 重要
Network 		pillarjs multiparty pillarjsのmultipartyにおける例外的な状態の処理に関する脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2026-8162 2026-05-15 10:53 2026-05-12 Show GitHub Exploit DB Packet Storm
715 5.3 警告
Network 		Leon Timmermans Crypt::Argon2 Leon TimmermansのCrypt::Argon2における複数の脆弱性 CWE-126
CWE-191
CVE-2026-8463 2026-05-15 10:53 2026-05-13 Show GitHub Exploit DB Packet Storm
716 7.2 重要
Network 		IBM IBM Security Verify Directory IBMのIBM Security Verify Directoryにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2025-36074 2026-05-15 10:53 2026-04-23 Show GitHub Exploit DB Packet Storm
717 8.8 重要
Local 		- アップルのmacOSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-43524 2026-05-15 10:53 2026-05-12 Show GitHub Exploit DB Packet Storm
718 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2025-71287 2026-05-15 10:53 2026-05-6 Show GitHub Exploit DB Packet Storm
719 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2025-71288 2026-05-15 10:53 2026-05-6 Show GitHub Exploit DB Packet Storm
720 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71289 2026-05-15 10:53 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346371 - ecometry sgdynamo Cross-site scripting vulnerability in sgdynamo.exe for Sgdynamo allows remote attackers to execute arbitrary Javascript via a URL with the script in the HTNAME parameter. NVD-CWE-Other
CVE-2002-0375 2017-07-11 10:29 2002-05-29 Show GitHub Exploit DB Packet Storm
346372 - vignette storyserver
vignette 		Vignette Story Server 4.1 and 6.0 allows remote attackers to obtain sensitive information via a request that contains a large number of '"' (double quote) and and '>' characters, which causes the TCL… NVD-CWE-Other
CVE-2002-0385 2017-07-11 10:29 2004-06-1 Show GitHub Exploit DB Packet Storm
346373 - red-m 1050ap_lan_acess_point Buffer overflow in Red-M 1050 (Bluetooth Access Point) management web interface allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long administration pass… NVD-CWE-Other
CVE-2002-0393 2017-07-11 10:29 2002-07-26 Show GitHub Exploit DB Packet Storm
346374 - workforceroi xpede Intellisol Xpede 4.1 uses weak encryption to store authentication information in cookies, which could allow local users with access to the cookies to gain privileges. NVD-CWE-Other
CVE-2002-0486 2017-07-11 10:29 2002-08-12 Show GitHub Exploit DB Packet Storm
346375 - inn inn Vulnerability in (1) inews or (2) rnews for INN 2.2.3 and earlier, related to insecure open() calls. NVD-CWE-Other
CVE-2002-0526 2017-07-11 10:29 2002-08-12 Show GitHub Exploit DB Packet Storm
346376 - postboard
postnuke_software_foundation 		postboard
postnuke 		Cross-site scripting vulnerabilities in PostBoard 2.0.1 and earlier allows remote attackers to execute script as other users via (1) an [IMG] tag when BBCode is enabled, or (2) in a topic title. NVD-CWE-Other
CVE-2002-0535 2017-07-11 10:29 2002-07-3 Show GitHub Exploit DB Packet Storm
346377 - oracle application_server
application_server_web_cache
oracle8i
oracle9i 		The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2… CWE-287
Improper Authentication 		CVE-2002-0563 2017-07-11 10:29 2002-07-3 Show GitHub Exploit DB Packet Storm
346378 - aol instant_messenger AOL Instant Messenger (AIM) allows remote attackers to steal files that are being transferred to other clients by connecting to port 4443 (Direct Connection) or port 5190 (file transfer) before the i… NVD-CWE-Other
CVE-2002-0592 2017-07-11 10:29 2002-06-18 Show GitHub Exploit DB Packet Storm
346379 - snapgear snapgear_lite\+_firewall Snapgear Lite+ firewall 1.5.4 and 1.5.3 allows remote attackers to cause a denial of service (crash) via a large number of connections to (1) the HTTP web management port, or (2) the PPTP port. NVD-CWE-Other
CVE-2002-0602 2017-07-11 10:29 2002-06-18 Show GitHub Exploit DB Packet Storm
346380 - entrust entrust_authority_security_manager Entrust Authority Security Manager (EASM) 6.0 does not properly require multiple master users to change the password of a master user, which could allow a master user to perform operations that requi… NVD-CWE-Other
CVE-2002-0712 2017-07-11 10:29 2004-02-3 Show GitHub Exploit DB Packet Storm