Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1941 9.8 緊急
Network 		yunjie.xiao openvpn-cms-flask yunjie.xiaoのopenvpn-cms-flaskにおける複数の脆弱性 CWE-74
CWE-77
CWE-77
CVE-2025-6775 2026-02-2 19:30 2025-06-27 Show GitHub Exploit DB Packet Storm
1942 9.8 緊急
Network 		yunjie.xiao openvpn-cms-flask yunjie.xiaoのopenvpn-cms-flaskにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-6776 2026-02-2 19:30 2025-06-27 Show GitHub Exploit DB Packet Storm
1943 8.1 重要
Network 		Qode Interactive Optimize Qode InteractiveのWordPress用OptimizeにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-67935 2026-02-2 19:30 2026-01-8 Show GitHub Exploit DB Packet Storm
1944 8.1 重要
Network 		Qode Interactive Curly Qode InteractiveのWordPress用CurlyにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-67936 2026-02-2 19:30 2026-01-8 Show GitHub Exploit DB Packet Storm
1945 8.1 重要
Network 		Qode Interactive Hendon Qode InteractiveのWordPress用HendonにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-67937 2026-02-2 19:30 2026-01-8 Show GitHub Exploit DB Packet Storm
1946 7.5 重要
Network 		ThemeMove EduMall ThemeMoveのWordPress用EduMallにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-68061 2026-02-2 19:30 2025-12-16 Show GitHub Exploit DB Packet Storm
1947 7.5 重要
Network 		ThemeMove Minimogwp ThemeMoveのWordPress用MinimogwpにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-68062 2026-02-2 19:30 2025-12-16 Show GitHub Exploit DB Packet Storm
1948 6.5 警告
Network 		Shopify React Router ShopifyのReact Routerにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2025-68470 2026-02-2 19:30 2026-01-10 Show GitHub Exploit DB Packet Storm
1949 7.5 重要
Network 		wpwebelite Follow My Blog Post WPWeb EliteのWordPress用Follow My Blog Postにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-68547 2026-02-2 19:30 2026-01-5 Show GitHub Exploit DB Packet Storm
1950 9.1 緊急
Network 		Panda Wireless PWRU01 Firmware Panda WirelessのPWRU01 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2025-68715 2026-02-2 19:30 2026-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348451 - hp support_tools_manager Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the tool_stat.txt log file. NVD-CWE-Other
CVE-2001-0079 2008-09-6 05:23 2001-02-12 Show GitHub Exploit DB Packet Storm
348452 - checkpoint firewall-1 Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets. NVD-CWE-Other
CVE-2001-0082 2008-09-6 05:23 2001-02-12 Show GitHub Exploit DB Packet Storm
348453 - freebsd freebsd Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying critical environmental variables that affect the behavior of telnetd. NVD-CWE-Other
CVE-2001-0093 2008-09-6 05:23 2001-02-12 Show GitHub Exploit DB Packet Storm
348454 - omnicron omnihttpd statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script. NVD-CWE-Other
CVE-2001-0113 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
348455 - omnicron omnihttpd statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter. NVD-CWE-Other
CVE-2001-0114 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
348456 - oliver_debon flash Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long DefineSound tag. NVD-CWE-Other
CVE-2001-0127 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
348457 - trend_micro interscan_viruswall Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2001-0132 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
348458 - trend_micro interscan_viruswall The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator … NVD-CWE-Other
CVE-2001-0133 2008-09-6 05:23 2001-03-12 Show GitHub Exploit DB Packet Storm
348459 - van_dyke_technologies vshell Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execute arbitrary commands via a user name that contains format string specifiers. NVD-CWE-Other
CVE-2001-0155 2008-09-6 05:23 2001-06-2 Show GitHub Exploit DB Packet Storm
348460 - lucent
orinoco 		wavelan
orinoco_wavelan 		Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will l… NVD-CWE-Other
CVE-2001-0160 2008-09-6 05:23 2001-01-1 Show GitHub Exploit DB Packet Storm