Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1611	5	警告 Network	Weblate	Weblate	Weblateにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40256	2026-04-23 10:10	2026-04-15	Show	GitHub Exploit DB Packet Storm

1612	7.8	重要 Local	Debian LibTIFF レッドハット	LibTIFF Red Hat Enterprise Linux Red Hat Hardened Images Debian GNU/Linux	Debian等の複数ベンダの製品における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-4775	2026-04-23 10:10	2026-03-24	Show	GitHub Exploit DB Packet Storm

1613	5.5	警告 Local	freedesktop.org レッドハット	Polkit Red Hat OpenShift Container Platform Red Hat Enterprise Linux	freedesktop.org等の複数ベンダの製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-4897	2026-04-23 10:10	2026-03-26	Show	GitHub Exploit DB Packet Storm

1614	9.9	緊急 Network	レッドハット	openshift ai	レッドハットのopenshift aiにおける送信データへの重要な情報の挿入に関する脆弱性	CWE-201 送信データへの重要な情報の挿入	CVE-2026-5483	2026-04-23 10:10	2026-04-10	Show	GitHub Exploit DB Packet Storm

1615	7.5	重要 Network	ザイオソフト株式会社	Ziostation2	Ziostation2におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40062	2026-04-22 14:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

1616	7.8	重要 Local	ジャパンメディアシステム株式会社	Windows PC用LiveOn Meetクライアントインストーラキヤノンネットワークカメラ用プラグインインストーラ	LiveOn MeetのWindows PC用クライアントインストーラおよびプラグインインストーラにおける任意のDLL読み込みの脆弱性	CWE-Other その他	CVE-2026-32679	2026-04-22 14:08	2026-04-22	Show	GitHub Exploit DB Packet Storm

1617	6.1	警告 Network	DeepL	DeepL	DeepL Chrome拡張機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40451	2026-04-22 12:06	2026-04-22	Show	GitHub Exploit DB Packet Storm

1618	9.9	緊急 Network	Percona	Percona Monitoring and Management	PerconaのPercona Monitoring and Managementにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2026-25212	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

1619	9.8	緊急 Network	Progress Software Corporation	ShareFile Storage Zone Controller	Progress Software CorporationのShareFile Storage Zone Controllerにおける複数の脆弱性	CWE-284 CWE-698 CWE-noinfo	CVE-2026-2699	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

1620	8.8	重要 Network	Progress Software Corporation	ShareFile Storage Zone Controller	Progress Software CorporationのShareFile Storage Zone Controllerにおける複数の脆弱性	CWE-434 CWE-434 CWE-78 CWE-94	CVE-2026-2701	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348191	-	phpbb_group	phpbb	admin_ug_auth.php in phpBB 2.0.0 allows local users to gain administrator privileges by directly calling admin_ug_auth.php with modifed form fields such as "u".	NVD-CWE-Other	CVE-2002-1537	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

348192	-	acuma	acusend	Acuma Acusend 4, and possibly earlier versions, allows remote authenticated users to read the reports of other users by inferring the full URL, whose name is easily predictable.	NVD-CWE-Other	CVE-2002-1538	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

348193	-	alt-n	mdaemon	Buffer overflow in MDaemon POP server 6.0.7 and earlier allows remote authenticated users to cause a denial of service via long (1) DELE or (2) UIDL arguments.	NVD-CWE-Other	CVE-2002-1539	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

348194	-	working_resources_inc.	badblue	BadBlue 1.7 allows remote attackers to bypass password protections for directories and files via an HTTP request containing an extra / (slash).	NVD-CWE-Other	CVE-2002-1541	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

348195	-	solarwinds	tftp_server	SolarWinds TFTP server 5.0.55 and earlier allows remote attackers to cause a denial of service (crash) via a large UDP datagram, possibly triggering a buffer overflow.	NVD-CWE-Other	CVE-2002-1542	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

348196	-	netbsd	netbsd	Buffer overflow in trek on NetBSD 1.5 through 1.5.3 allows local users to gain privileges via long keyboard input.	NVD-CWE-Other	CVE-2002-1543	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

348197	-	cooolsoft	personal_ftp_server	Directory traversal vulnerability in CooolSoft Personal FTP Server 2.24 allows remote attackers to read or modify arbitrary files via .. (dot dot) sequences in the commands (1) LIST (ls), (2) mkdir, …	NVD-CWE-Other	CVE-2002-1544	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

348198	-	cooolsoft	personal_ftp_server	CooolSoft Personal FTP Server 2.24 allows remote attackers to obtain the absolute pathname of the FTP root via a PWD command, which includes the full path in the response.	NVD-CWE-Other	CVE-2002-1545	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

348199	-	brs	webweaver	BRS WebWeaver Web Server 1.01 allows remote attackers to bypass password protections for files and directories via an HTTP request containing a "/./" sequence.	NVD-CWE-Other	CVE-2002-1546	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

348200	-	juniper	netscreen_screenos	Netscreen running ScreenOS 4.0.0r6 and earlier allows remote attackers to cause a denial of service via a malformed SSH packet to the Secure Command Shell (SCS) management interface, as demonstrated …	NVD-CWE-Other	CVE-2002-1547	2008-09-6 05:30	2003-03-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed