Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1551	9.9	緊急 Network	Frappe	ERPNext	FrappeのERPNextにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-44442	2026-05-18 12:12	2026-05-13	Show	GitHub Exploit DB Packet Storm

1552	6.5	警告 Network	Frappe	ERPNext	FrappeのERPNextにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-44445	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

1553	7.5	重要 Network	Frappe	ERPNext	FrappeのERPNextにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-44446	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

1554	7.5	重要 Network	Frappe	ERPNext	FrappeのERPNextにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-44447	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

1555	5.4	警告 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける解釈の競合に関する脆弱性	CWE-436 解釈の競合	CVE-2026-44576	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

1556	8.6	重要 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-44578	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

1557	7.5	重要 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-44579	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

1558	6.1	警告 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44580	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

1559	4.7	警告 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44581	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

1560	3.7	低 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける弱いハッシュの使用に関する脆弱性	CWE-328 脆弱なハッシュの使用	CVE-2026-44582	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345321	-	kunani	kunani_odbc_ftp_server	Directory traversal vulnerability in the Kunani ODBC FTP Server 1.0.10 allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) in a GET request.	CWE-22 Path Traversal	CVE-2002-2238	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345322	-	cisco	ios	The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series running Cisco IOS 12.1(8)E through 12.1(13.4)E allows remote attackers to cause a denial of service (hang) via a malformed…	CWE-20 Improper Input Validation	CVE-2002-2239	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345323	-	myserver	myserver	Directory traversal vulnerability in MyServer 0.11 and 0.2 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP GET request.	CWE-22 Path Traversal	CVE-2002-2240	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345324	-	deerfield	visnetic_website	Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers to cause a denial of service (crash) via a long HTTP OPTIONS request.	CWE-399 Resource Management Errors	CVE-2002-2241	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345325	-	kismac	kismac	The Apple Package Manager in KisMAC 0.02a and earlier modifies file permissions of sensitive files after installation, which could allow attackers to conduct unauthorized activities on those files.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2002-2242	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345326	-	akfingerd	akfingerd	Akfingerd 0.5 and possibly earlier versions only allows one connection at a time and does not time out connections, which allows remote attackers to cause a denial of service (refused connections) by…	NVD-CWE-Other	CVE-2002-2243	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345327	-	akfingerd	akfingerd	Akfingerd 0.5 and earlier versions allow local users to cause a denial of service (crash) via a .plan with a symlink to /dev/urandom or other device, then disconnecting while data is being transferre…	CWE-362 Race Condition	CVE-2002-2244	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345328	-	deerfield	visnetic_website	Cross-site scripting (XSS) vulnerability in VisNetic Website before 3.5.15 allows remote attackers to inject arbitrary web script or HTML via the HTTP referer header (HTTP_REFERER) to a non-existent …	CWE-79 Cross-site Scripting	CVE-2002-2246	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345329	-	mambo	mambo_site_server	The administrator/phpinfo.php script in Mambo Site Server 4.0.11 allows remote attackers to obtain sensitive information such as the full web root path via phpinfo.php, which calls the phpinfo functi…	CWE-16 Configuration	CVE-2002-2247	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

345330	-	netscape	communicator	Buffer overflow in the sun.awt.windows.WDefaultFontCharset Java class implementation in Netscape 4.0 allows remote attackers to execute arbitrary code via an applet that calls the WDefaultFontCharset…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2248	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm