Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2231	9.8	緊急 Network	Blue Access Technologies Inc.	Cobalt X1	Blue Access Technologies Inc.のCobalt X1における認証に関する脆弱性	CWE-287 不適切な認証	CVE-2025-60534	2026-01-30 14:13	2026-01-6	Show	GitHub Exploit DB Packet Storm

2232	6.5	警告 Network	Marquitos	mcp-shell	Marquitosのmcp-shellにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2025-61489	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

2233	9.8	緊急 Network	NJHYST	HY511 POE core devices Firmware	NJHYSTのHY511 POE core devices Firmwareにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性	CWE-565 検証および完全性チェックを行っていない Cookie への依存	CVE-2025-65212	2026-01-30 14:13	2026-01-6	Show	GitHub Exploit DB Packet Storm

2234	7.5	重要 Network	OpenAirInterface Software Alliance	OpenAir CN 5G for AMF	OpenAirInterface Software AllianceのOpenAir CN 5G for AMFにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2025-65805	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

2235	7.5	重要 Network	OpenAirInterface Software Alliance	OpenAir CN 5G for AMF	OpenAirInterface Software AllianceのOpenAir CN 5G for AMFにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2025-66786	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

2236	7.5	重要 Network	efforthye	fast-filesystem-mcp	efforthyeのfast-filesystem-mcpにおけるパストラバーサルの脆弱性	CWE-24 パストラバーサル (../filedir)	CVE-2025-67364	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

2237	7.5	重要 Network	Sylphx	Filesystem MCP	SylphxのFilesystem MCPにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2025-67366	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

2238	3.8	低 Network	Eli Hanna	Compress & Upload	Eli HannaのWordPress用Compress & Uploadにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2025-8889	2026-01-30 14:13	2025-09-9	Show	GitHub Exploit DB Packet Storm

2239	5.4	警告 Network	ngsurvey	ngsurvey	ngsurveyにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-15479	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

2240	6.1	警告 Network	WPForms	wpforms	WPFormsのWordPress用wpformsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-36919	2026-01-30 14:13	2026-01-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348581	-	alex_linde	alexs_ftp_server	Directory traversal vulnerability in Alex's FTP Server 0.7 allows remote attackers to read arbitrary files via a ... (modified dot dot) in the (1) GET or (2) CD commands.	NVD-CWE-Other	CVE-2001-0480	2008-09-6 05:24	2001-06-27	Show	GitHub Exploit DB Packet Storm

348582	-	symantec	raptor_firewall	Configuration error in Axent Raptor Firewall 6.5 allows remote attackers to use the firewall as a proxy to access internal web resources when the http.noproxy Rule is not set.	NVD-CWE-Other	CVE-2001-0483	2008-09-6 05:24	2001-06-18	Show	GitHub Exploit DB Packet Storm

348583	-	nullsoft	winamp	Buffer overflow in WINAMP 2.6x and 2.7x allows attackers to execute arbitrary code via a long string in an AIP file.	NVD-CWE-Other	CVE-2001-0490	2008-09-6 05:24	2001-06-27	Show	GitHub Exploit DB Packet Storm

348584	-	macromedia	coldfusion_server	Example applications (Exampleapps) in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote attackers to conduct upload, read, or exe…	NVD-CWE-Other	CVE-2001-0535	2008-09-6 05:24	2001-10-30	Show	GitHub Exploit DB Packet Storm

348585	-	zope	zope	Digital Creations Zope 2.3.1 b1 and earlier allows a local attacker (Zope user) with through-the-web scripting capabilities to alter ZClasses class attributes.	NVD-CWE-Other	CVE-2001-0568	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

348586	-	zope	zope	Digital Creations Zope 2.3.1 b1 and earlier contains a problem in the method return values related to the classes (1) ObjectManager, (2) PropertyManager, and (3) PropertySheet.	NVD-CWE-Other	CVE-2001-0569	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

348587	-	openbsd ssh	openssh ssh	The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: (1) pass…	NVD-CWE-Other	CVE-2001-0572	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

348588	-	sun	chilisoft	Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the default installation, which can allow a remote attacker to gain additional privileges.	NVD-CWE-Other	CVE-2001-0632	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

348589	-	sun	chilisoft	Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '..' (dot dot) attack in the sample script 'codebr…	NVD-CWE-Other	CVE-2001-0633	2008-09-6 05:24	2001-08-22	Show	GitHub Exploit DB Packet Storm

348590	-	raytheon	silentrunner	Buffer overflows in Raytheon SilentRunner allow remote attackers to (1) cause a denial of service in the collector (cle.exe) component of SilentRunner 2.0 via traffic containing long passwords, or (2…	NVD-CWE-Other	CVE-2001-0636	2008-09-6 05:24	2001-09-20	Show	GitHub Exploit DB Packet Storm