Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193361	7.5	重要 Network	Chaos tool suite project	-	Drupal の ctools における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-7875	2017-09-15 15:39	2015-08-19	Show	GitHub Exploit DB Packet Storm

193362	7.5	重要 Network	Alcatel-Lucent	-	Alcatel-Lucent Home Device Manager におけるセキュリティ機能に関する脆弱性	CWE-254 セキュリティ機能	CVE-2015-6498	2017-09-15 15:39	2015-11-2	Show	GitHub Exploit DB Packet Storm

193363	5.9	警告 Network	Elasticsearch	-	Logstash における証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2015-5619	2017-09-15 15:39	2015-08-20	Show	GitHub Exploit DB Packet Storm

193364	7.5	重要 Network	Elasticsearch	-	Elasticsearch における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-4165	2017-09-15 15:39	2015-04-27	Show	GitHub Exploit DB Packet Storm

193365	7.5	重要 Network	レッドハット Debian SUSE Fedora Project NTP Project	-	ntp におけるエントロピー不足に関する脆弱性	CWE-331 エントロピー不足	CVE-2015-3405	2017-09-15 15:39	2015-03-30	Show	GitHub Exploit DB Packet Storm

193366	7	重要 Local	Fabrice Bellard レッドハット	-	QEMU における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2014-0143	2017-09-15 15:39	2014-04-1	Show	GitHub Exploit DB Packet Storm

193367	5.5	警告 Local	OpenStack	-	OpenStack DBaaS におけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2015-3156	2017-09-15 12:02	2015-02-3	Show	GitHub Exploit DB Packet Storm

193368	6.1	警告 Network	Apache Software Foundation	-	Apache CXF におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6812	2017-09-15 12:02	2016-11-4	Show	GitHub Exploit DB Packet Storm

193369	7.5	重要 Network	Apache Software Foundation	-	Apache CXF における XML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2016-8739	2017-09-15 12:02	2016-12-19	Show	GitHub Exploit DB Packet Storm

193370	7.5	重要 Network	Apache Software Foundation	-	Apache CXF における時間とステータスに関する脆弱性	CWE-361 時間とステータス	CVE-2017-3156	2017-09-15 12:02	2017-02-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
358951	-	peel	peel	haut.php in PEEL 1.0b allows remote attackers to execute arbitrary PHP code by modifying the dirroot parameter to reference a URL on a remote web server that contains the code in a lang.php file.	NVD-CWE-Other	CVE-2002-2134	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

358952	-	alloy d-link eusso linksys wisecom	gl-2422ap-s dwl-900ap\+ gl2422_ap wap11 gl2422ap-0t	GlobalSunTech Wireless Access Points (1) WISECOM GL2422AP-0T, and possibly OEM products such as (2) D-Link DWL-900AP+ B1 2.1 and 2.2, (3) ALLOY GL-2422AP-S, (4) EUSSO GL2422-AP, and (5) LINKSYS WAP11…	NVD-CWE-Other	CVE-2002-2137	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

358953	-	mysimplenews	mysimplenews	The admin.html file in MySimple News 1.0 stores its administrative password in plaintext, which allows remote attackers to gain unauthorized access to the web server by viewing the source of admin.ht…	NVD-CWE-Other	CVE-2002-2143	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

358954	-	free_peers	bearshare	Directory traversal vulnerability in BearShare 4.0.5 and 4.0.6 allows remote attackers to read files outside of the web root by hex-encoding the "/" (forward slash) or "." (dot) characters.	NVD-CWE-Other	CVE-2002-2144	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

358955	-	savant	savant_webserver	Savant Web Server 3.1 and earlier allows remote attackers to bypass authentication for password protected user folders via a URL with a hex encoded space (%20) and a '.' (%2e) at the end of the filen…	NVD-CWE-Other	CVE-2002-2145	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

358956	-	savant	savant_webserver	cgitest.exe in Savant Web Server 3.1 and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request.	NVD-CWE-Other	CVE-2002-2146	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

358957	-	lucent	ascend_max_router ascend_pipeline_router dslterminator	Lucent Ascend MAX Router 5.0 and earlier, Lucent Ascend Pipeline Router 6.0.2 and earlier and Lucent DSLTerminator allows remote attackers to obtain sensitive information such as hostname, MAC, and I…	NVD-CWE-Other	CVE-2002-2148	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

358958	-	lucent	access_point_service_router_1500 access_point_service_router_300 access_point_service_router_600	Buffer overflow in Lucent Access Point 300, 600, and 1500 Service Routers allows remote attackers to cause a denial of service (reboot) via a long HTTP request to the administrative interface.	NVD-CWE-Other	CVE-2002-2149	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

358959	-	juniper	netscreen_screenos	Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UD…	NVD-CWE-Other	CVE-2002-2150	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

358960	-	software602	602pro_lan_suite	The Czech edition of Software602's Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password p…	NVD-CWE-Other	CVE-2002-2152	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed