Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2151 7.5 重要
Network 		Gleam-wisp Wisp Gleam-wispのWispにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-32145 2026-05-28 14:33 2026-04-2 Show GitHub Exploit DB Packet Storm
2152 7.5 重要
Network 		Elixir Plug Plug.cowboy Elixir PlugのPlug.cowboyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-32688 2026-05-28 14:33 2026-04-27 Show GitHub Exploit DB Packet Storm
2153 8.8 重要
Network 		9bis KiTTY KovidgoyalのKittyにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-33633 2026-05-28 14:33 2026-05-19 Show GitHub Exploit DB Packet Storm
2154 9.8 緊急
Network 		9bis KiTTY KovidgoyalのKittyにおける複数の脆弱性 CWE-125
CWE-190
CWE-787
CVE-2026-33642 2026-05-28 14:33 2026-05-19 Show GitHub Exploit DB Packet Storm
2155 7.5 重要
Network 		Tatsuhiro-t Ngtcp2 Tatsuhiro-tのNgtcp2におけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-40170 2026-05-28 14:33 2026-04-16 Show GitHub Exploit DB Packet Storm
2156 7.8 重要
Local 		opentelemetry OpenTelemetry.Exporter.OpenTelemetryProtocol opentelemetryのOpenTelemetry.Exporter.OpenTelemetryProtocolにおけるアクセスパーミションのディレクトリの一時ファイル作成に関する脆弱性 CWE-379
不適切なアクセスパーミションのディレクトリに一時ファイル作成 		CVE-2026-42191 2026-05-28 14:33 2026-05-12 Show GitHub Exploit DB Packet Storm
2157 7.5 重要
Network 		Absinthe-graphql Absinthe Absinthe-graphqlのAbsintheにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42793 2026-05-28 14:32 2026-05-8 Show GitHub Exploit DB Packet Storm
2158 7.5 重要
Network 		Absinthe-graphql Absinthe Absinthe-graphqlのAbsintheにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-43967 2026-05-28 14:32 2026-05-8 Show GitHub Exploit DB Packet Storm
2159 6.1 警告
Network 		The Kyverno Authors Policy-reporter-ui The Kyverno AuthorsのPolicy-reporter-uiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-44245 2026-05-28 14:32 2026-05-12 Show GitHub Exploit DB Packet Storm
2160 8.6 重要
Network 		Marginal v1-core Marginalのv1-coreにおける数値型間の変換の誤りに関する脆弱性 CWE-681
数値型間の変換の誤り 		CVE-2026-4931 2026-05-28 14:32 2026-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344641 - alex_heiphetz_group ezshopper loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" param… NVD-CWE-Other
CVE-2000-1092 2017-12-19 11:29 2001-01-9 Show GitHub Exploit DB Packet Storm
344642 - transsoft broker_ftp_server Buffer overflow in TransSoft Broker FTP Server before 4.3.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long command. NVD-CWE-Other
CVE-2000-1116 2017-12-19 11:29 2001-01-9 Show GitHub Exploit DB Packet Storm
344643 - microsoft internet_information_server Buffer overflow in IIS ISAPI .ASP parsing mechanism allows attackers to execute arbitrary commands via a long string to the "LANGUAGE" argument in a script tag. NVD-CWE-Other
CVE-2000-1147 2017-12-19 11:29 2001-01-9 Show GitHub Exploit DB Packet Storm
344644 - sun staroffice StarOffice 5.2 follows symlinks and sets world-readable permissions for the /tmp/soffice.tmp directory, which allows a local user to read files of the user who is using StarOffice. NVD-CWE-Other
CVE-2000-1156 2017-12-19 11:29 2001-01-9 Show GitHub Exploit DB Packet Storm
344645 - phf phf Buffer overflow in phf CGI program allows remote attackers to execute arbitrary commands by specifying a large number of arguments and including a long MIME header. NVD-CWE-Other
CVE-2000-1186 2017-12-19 11:29 2001-01-9 Show GitHub Exploit DB Packet Storm
344646 - postgresql postgresql PostgreSQL stores usernames and passwords in plaintext in (1) pg_shadow and (2) pg_pwd, which allows attackers with sufficient privileges to gain access to databases. NVD-CWE-Other
CVE-2000-1199 2017-12-19 11:29 2001-08-31 Show GitHub Exploit DB Packet Storm
344647 - ibm http_server_ssl_module_common ikeyman in IBM IBMHSSSB 1.0 sets the CLASSPATH environmental variable to include the user's own CLASSPATH directories before the system's directories, which allows a malicious local user to execute a… NVD-CWE-Other
CVE-2000-1202 2017-12-19 11:29 2001-08-31 Show GitHub Exploit DB Packet Storm
344648 - leif_m._wright simplestguest.cgi simplestguest.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the guestbook parameter. NVD-CWE-Other
CVE-2001-0022 2017-12-19 11:29 2001-02-12 Show GitHub Exploit DB Packet Storm
344649 - leif_m._wright everythingform.cgi everythingform.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter. NVD-CWE-Other
CVE-2001-0023 2017-12-19 11:29 2001-02-12 Show GitHub Exploit DB Packet Storm
344650 - leif_m._wright simplestmail.cgi simplestmail.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the MyEmail parameter. NVD-CWE-Other
CVE-2001-0024 2017-12-19 11:29 2001-02-12 Show GitHub Exploit DB Packet Storm