Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2021	5.4	警告 Network	GitHub	Enterprise Server	GitHubのEnterprise Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-13744	2026-02-2 19:27	2026-01-6	Show	GitHub Exploit DB Packet Storm

2022	5.5	警告 Local	OpenVPN Technologies	OpenVPN	OpenVPN TechnologiesのOpenVPNにおける複数の脆弱性	CWE-770 CWE-775 CWE-841	CVE-2025-13751	2026-02-2 19:27	2025-12-3	Show	GitHub Exploit DB Packet Storm

2023	4.9	警告 Network	IBM	IBM Aspera Console	IBMのIBM Aspera Consoleにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2025-13925	2026-02-2 19:27	2026-01-20	Show	GitHub Exploit DB Packet Storm

2024	7.5	重要 Network	TP-LINK Technologies	TL-WA850RE ファームウェア	TP-LINK TechnologiesのTL-WA850RE ファームウェアにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2025-14738	2026-02-2 19:27	2025-12-18	Show	GitHub Exploit DB Packet Storm

2025	6.1	警告 Network	Philip Okugbe	Simple-PHP-Blog	Philip OkugbeのSimple-PHP-Blogにおける複数の脆弱性	CWE-79 CWE-79 CWE-94	CVE-2025-15223	2026-02-2 19:27	2025-12-31	Show	GitHub Exploit DB Packet Storm

2026	9.8	緊急 Network	HzManyun	Education and Training System	HzManyunのEducation and Training Systemにおける複数の脆弱性	CWE-74 CWE-77 CWE-77	CVE-2025-1946	2026-02-2 19:27	2025-03-4	Show	GitHub Exploit DB Packet Storm

2027	9.8	緊急 Network	HzManyun	Education and Training System	HzManyunのEducation and Training Systemにおける複数の脆弱性	CWE-74 CWE-77 CWE-77	CVE-2025-1947	2026-02-2 19:26	2025-03-4	Show	GitHub Exploit DB Packet Storm

2028	4.6	警告 Physics	サムスン	Gallery	サムスンのGalleryにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-20966	2026-02-2 19:26	2025-05-7	Show	GitHub Exploit DB Packet Storm

2029	9.1	緊急 Network	サムスン	Gallery	サムスンのGalleryにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-20967	2026-02-2 19:26	2025-05-7	Show	GitHub Exploit DB Packet Storm

2030	9.1	緊急 Network	サムスン	Gallery	サムスンのGalleryにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-20968	2026-02-2 19:26	2025-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348421	-	rarsoft	rar	Directory traversal vulnerability in rar 2.02 and earlier allows attackers to overwrite arbitrary files during archive extraction via a .. (dot dot) attack on archived filenames.	NVD-CWE-Other	CVE-2001-1271	2008-09-6 05:26	2001-07-12	Show	GitHub Exploit DB Packet Storm

348422	-	wliang	wmtv	wmtv 0.6.5 and earlier does not properly drop privileges, which allows local users to execute arbitrary commands via the -e (external command) option.	NVD-CWE-Other	CVE-2001-1272	2008-09-6 05:26	2001-12-6	Show	GitHub Exploit DB Packet Storm

348423	-	linux	linux_kernel	The "mxcsr P4" vulnerability in the Linux kernel before 2.2.17-14, when running on certain Intel CPUs, allows local users to cause a denial of service (system halt).	NVD-CWE-Other	CVE-2001-1273	2008-09-6 05:26	2001-02-12	Show	GitHub Exploit DB Packet Storm

348424	-	sambar	sambar_server	Sambar Telnet Proxy/Server allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long password.	NVD-CWE-Other	CVE-2001-1292	2008-09-6 05:26	2001-08-13	Show	GitHub Exploit DB Packet Storm

348425	-	grant_averett	cerberus_ftp_server	Directory traversal vulnerability in Cerberus FTP Server 1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the CD command.	NVD-CWE-Other	CVE-2001-1295	2008-09-6 05:26	2001-08-21	Show	GitHub Exploit DB Packet Storm

348426	-	zorbat	zorbstats	Zorbat Zorbstats PHP script before 0.9 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.	NVD-CWE-Other	CVE-2001-1299	2008-09-6 05:26	2001-10-2	Show	GitHub Exploit DB Packet Storm

348427	-	dynu_systems_inc.	dynu_ftp_server	Directory traversal vulnerability in Dynu FTP server 1.05 and earlier allows remote attackers to read arbitrary files via a .. in the CD (CWD) command.	NVD-CWE-Other	CVE-2001-1300	2008-09-6 05:26	2002-06-25	Show	GitHub Exploit DB Packet Storm

348428	-	gnu xemacs	emacs xemacs	rcs2log, as used in Emacs 20.4, xemacs 21.1.10 and other versions before 21.4, and possibly other packages, allows local users to modify files of other users via a symlink attack on a temporary file.	NVD-CWE-Other	CVE-2001-1301	2008-09-6 05:26	2001-08-7	Show	GitHub Exploit DB Packet Storm

348429	-	nullsoft	shoutcast_server	Buffer overflow in SHOUTcast Server 1.8.2 allows remote attackers to cause a denial of service (crash) via several HTTP requests with a long (1) user-agent or (2) host HTTP header.	NVD-CWE-Other	CVE-2001-1304	2008-09-6 05:26	2001-08-3	Show	GitHub Exploit DB Packet Storm

348430	-	sun	iplanet_directory_server	iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstr…	NVD-CWE-Other	CVE-2001-1306	2008-09-6 05:26	2001-07-16	Show	GitHub Exploit DB Packet Storm