Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1211 9.9 緊急
Network 		マイクロソフト Azure Logic Apps Azure Logic Apps の特権昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-42823 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
1212 7 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows テレフォニー サービスの特権昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-42825 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
1213 6.5 警告
Local 		マイクロソフト Azure Monitor Agent Azure Monitor エージェントの拡張機能の特権昇格の脆弱性 CWE-426
信頼性のない検索パス 		CVE-2026-42830 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
1214 9.1 緊急
Network 		マイクロソフト Microsoft Dynamics 365 Microsoft Dynamics 365 オンプレミスのリモートでコードが実行される脆弱性 CWE-250
CWE-noinfo
CVE-2026-42833 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
1215 5.4 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) の特権の昇格の脆弱性 CWE-74
インジェクション 		CVE-2026-42838 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
1216 6.5 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) for Android のスプーフィングの脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-42891 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
1217 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 11 24h2
Microsoft Windows 11 26h1
Microsoft Windows Server 2025 		Windows DWM Core ライブラリの特権の昇格の脆弱性 CWE-122
CWE-190
CVE-2026-42896 2026-05-18 12:13 2026-05-12 Show GitHub Exploit DB Packet Storm
1218 9.9 緊急
Network 		マイクロソフト Microsoft Dynamics 365 Microsoft Dynamics 365 オンプレミスのリモートでコードが実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2026-42898 2026-05-18 12:13 2026-05-12 Show GitHub Exploit DB Packet Storm
1219 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-43097 2026-05-18 12:13 2026-05-6 Show GitHub Exploit DB Packet Storm
1220 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-Other
その他 		CVE-2026-43098 2026-05-18 12:13 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355491 - sgi irix The upgrade of IRIX on Origin 3000 to 6.5.13 through 6.5.16 changes the MAC address of the system, which could modify intended access restrictions that are based on a MAC address. NVD-CWE-Other
CVE-2002-1419 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
355492 - ilia_alshanetsky fudforum SQL injection vulnerabilities in FUDforum before 2.2.0 allow remote attackers to perform unauthorized database operations via (1) report.php, (2) selmsg.php, and (3) showposts.php. NVD-CWE-Other
CVE-2002-1421 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
355493 - ilia_alshanetsky fudforum admbrowse.php in FUDforum before 2.2.0 allows remote attackers to create or delete files via URL-encoded pathnames in the cur and dest parameters. NVD-CWE-Other
CVE-2002-1422 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
355494 - ilia_alshanetsky fudforum tmp_view.php in FUDforum before 2.2.0 allows remote attackers to read arbitrary files via an absolute pathname in the file parameter. NVD-CWE-Other
CVE-2002-1423 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
355495 - john_g._myers mpack Buffer overflow in munpack in mpack 1.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code. NVD-CWE-Other
CVE-2002-1424 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
355496 - john_g._myers mpack Directory traversal vulnerability in munpack in mpack 1.5 and earlier allows remote attackers to create new files in the parent directory via a ../ (dot-dot) sequence in the filename to be extracted. NVD-CWE-Other
CVE-2002-1425 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
355497 - hp procurve_switch_4000m HP ProCurve Switch 4000M C.07.23 allows remote attackers to cause a denial of service (crash) via an SNMP write request containing 85 characters, possibly triggering a buffer overflow. NVD-CWE-Other
CVE-2002-1426 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
355498 - easy_scripts_archive advanced_easy_homepage_creator
easy_homepage_creator 		The print_html_to_file function in edit.cgi for Easy Homepage Creator 1.0 does not check user credentials, which allows remote attackers to modify home pages of other users. NVD-CWE-Other
CVE-2002-1427 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
355499 - dotproject dotproject index.php in dotProject 0.2.1.5 allows remote attackers to bypass authentication via a cookie or URL with the user_cookie parameter set to 1. NVD-CWE-Other
CVE-2002-1428 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
355500 - synthetic_reality sympoll Unknown vulnerability in Sympoll 1.2 allows remote attackers to read arbitrary files when register_globals is enabled, possibly by modifying certain PHP variables through URL parameters. NVD-CWE-Other
CVE-2002-1430 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm