Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
11 5.3 警告
Network 		Zeit, Inc. AI Vercel, Inc. (旧 Zeit, Inc.)のAIにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2025-48985 2026-02-6 10:41 2025-11-7 Show GitHub Exploit DB Packet Storm
12 5.5 警告
Local 		Open JS Foundation ESLint Open JS FoundationのESLintにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2025-50537 2026-02-6 10:40 2026-01-26 Show GitHub Exploit DB Packet Storm
13 6.1 警告
Network 		nuxt Nuxt Devtools nuxtのNuxt Devtoolsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-52662 2026-02-6 10:40 2025-11-7 Show GitHub Exploit DB Packet Storm
14 7.8 重要
Local 		Synology Inc. BeeDrive Synology Inc.のBeeDriveにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2025-54158 2026-02-6 10:40 2025-12-4 Show GitHub Exploit DB Packet Storm
15 7.5 重要
Network 		Synology Inc. BeeDrive Synology Inc.のBeeDriveにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-54159 2026-02-6 10:40 2025-12-4 Show GitHub Exploit DB Packet Storm
16 7.8 重要
Local 		Synology Inc. BeeDrive Synology Inc.のBeeDriveにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-54160 2026-02-6 10:40 2025-12-4 Show GitHub Exploit DB Packet Storm
17 9.8 緊急
Network 		ThemeMove UniCamp ThemeMoveのWordPress用UniCampにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-54701 2026-02-6 10:40 2025-08-14 Show GitHub Exploit DB Packet Storm
18 5.3 警告
Network 		Codeshare Codeshare Codeshareにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-60925 2026-02-6 10:40 2025-11-4 Show GitHub Exploit DB Packet Storm
19 6.1 警告
Network 		Zucchetti s.p.a. Infinity Zucchetti
ZMaintenance Infinity 		Zucchetti s.p.a.のZMaintenance Infinity等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-61431 2026-02-6 10:40 2025-11-4 Show GitHub Exploit DB Packet Storm
20 9.1 緊急
Network 		Shopify remix-run/deno
@remix-run/node
@react-router/node 		Shopifyの@react-router/node等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-61686 2026-02-6 10:40 2026-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306591 - symantec enterprise_firewall SMTP proxy in Symantec Enterprise Firewall (SEF) 6.5.x includes the firewall's physical interface name and address in an SMTP protocol exchange when NAT translation is made to an address other than t… NVD-CWE-Other
CVE-2002-0309 2016-10-18 11:18 2002-05-31 Show GitHub Exploit DB Packet Storm
306592 - essen essentia_web_server Directory traversal vulnerability in Essentia Web Server 2.1 allows remote attackers to read arbitrary files via a .. (dot dot) in a URL. NVD-CWE-Other
CVE-2002-0312 2016-10-18 11:18 2002-06-25 Show GitHub Exploit DB Packet Storm
306593 - essen essentia_web_server Buffer overflow in Essentia Web Server 2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long URL. NVD-CWE-Other
CVE-2002-0313 2016-10-18 11:18 2002-06-25 Show GitHub Exploit DB Packet Storm
306594 - fasttrack
grokster
music_city_networks 		kazaa
grokster
morpheus 		fasttrack p2p, as used in (1) KaZaA before 1.5, (2) grokster, and (3) morpheus allows remote attackers to cause a denial of service (memory exhaustion) via a series of client-to-client messages, whic… NVD-CWE-Other
CVE-2002-0314 2016-10-18 11:18 2002-06-25 Show GitHub Exploit DB Packet Storm
306595 - fasttrack
grokster
music_city_networks 		kazaa
grokster
morpheus 		fasttrack p2p, as used in (1) KaZaA, (2) grokster, and (3) morpheus allows remote attackers to spoof other users by modifying the username and network information in the message header. NVD-CWE-Other
CVE-2002-0315 2016-10-18 11:18 2002-06-25 Show GitHub Exploit DB Packet Storm
306596 - nullsoft shoutcast_server Buffer overflow in admin.cgi for Nullsoft Shoutcast Server 1.8.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an argument with a large number of backsl… NVD-CWE-Other
CVE-2002-0199 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
306597 - cyberstop cyberstop_web_server Cyberstop Web Server for Windows 0.1 allows remote attackers to cause a denial of service via an HTTP request for an MS-DOS device name. NVD-CWE-Other
CVE-2002-0200 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
306598 - cyberstop cyberstop_web_server Cyberstop Web Server for Windows 0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request, possibly triggering a buffer overflo… NVD-CWE-Other
CVE-2002-0201 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
306599 - gnu chess Buffer overflow in GNU Chess (gnuchess) 5.02 and earlier, if modified or used in a networked capacity contrary to its own design as a single-user application, may allow local or remote attackers to e… NVD-CWE-Other
CVE-2002-0204 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
306600 - plumtree plumtree_corporate_portal Cross-site scripting (CSS) vulnerability in error.asp for Plumtree Corporate Portal 3.5 through 4.5 allows remote attackers to execute arbitrary script on other clients via the "Description" paramete… NVD-CWE-Other
CVE-2002-0205 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm