Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2331 9.8 緊急
Network 		Electerm project Electerm Electerm projectのElectermにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-41501 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
2332 7.8 重要
Local 		Sebastian Bergmann PHPUnit Sebastian BergmannのPHPUnitにおける複数の脆弱性 CWE-88
CWE-93
CVE-2026-41570 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
2333 7.5 重要
Network 		Zcash Foundation Zebra-chain
Zebrad 		Zcash FoundationのZebra-chain等の複数製品における到達可能なアサーションに関する脆弱性 CWE-617
到達可能なアサーション 		CVE-2026-41584 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
2334 5.3 警告
Network 		projectdiscovery Nuclei ProjectDiscovery, Inc.のNucleiにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-41645 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
2335 5.5 警告
Local 		projectdiscovery Nuclei ProjectDiscovery, Inc.のNucleiにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41646 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
2336 8.1 重要
Network 		- OpenC3のOpenC3 COSMOSにおける未検証のパスワード変更に関する脆弱性 CWE-620
未検証のパスワード変更 		CVE-2026-42084 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
2337 4.3 警告
Network 		- OpenC3のOpenC3 COSMOSにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-42085 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
2338 4.6 警告
Network 		- OpenC3のOpenC3 COSMOSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42086 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
2339 9.6 緊急
Network 		- OpenC3のOpenC3 COSMOSにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-42087 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
2340 9.8 緊急
Network 		litellm litellm LiteLLMにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-42208 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
356031 - cisco aironet_ap340 Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections. NVD-CWE-Other
CVE-2001-0163 2008-09-6 05:23 2001-01-1 Show GitHub Exploit DB Packet Storm
356032 - free_java_web_server free_java_web_server Directory traversal vulnerability in Free Java Web Server 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack. NVD-CWE-Other
CVE-2001-0186 2008-09-6 05:23 2001-05-3 Show GitHub Exploit DB Packet Storm
356033 - davide_libenzi xmail Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfileget or domaindel functions. NVD-CWE-Other
CVE-2001-0192 2008-09-6 05:23 2001-05-3 Show GitHub Exploit DB Packet Storm
356034 - heat-on_software hsweb HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled. NVD-CWE-Other
CVE-2001-0200 2008-09-6 05:23 2001-05-3 Show GitHub Exploit DB Packet Storm
356035 - informs picserver Picserver web server allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTP GET request. NVD-CWE-Other
CVE-2001-0202 2008-09-6 05:23 2001-05-3 Show GitHub Exploit DB Packet Storm
356036 - soft_lite serverworx Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbitrary files by inserting a .. (dot dot) or ... into the requested pathname of an HTTP GET request. NVD-CWE-Other
CVE-2001-0206 2008-09-6 05:23 2001-06-2 Show GitHub Exploit DB Packet Storm
356037 - microfocus cobol MicroFocus Cobol 4.1, with the AppTrack feature enabled, installs the mfaslmf directory and the nolicense file with insecure permissions, which allows local users to gain privileges by modifying file… NVD-CWE-Other
CVE-2001-0208 2008-09-6 05:23 2001-06-2 Show GitHub Exploit DB Packet Storm
356038 - carey_internet_service commerce.cgi Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the page parameter. NVD-CWE-Other
CVE-2001-0210 2008-09-6 05:23 2001-06-2 Show GitHub Exploit DB Packet Storm
356039 - silverplatter webspirs Directory traversal vulnerability in WebSPIRS 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the sp.nextform parameter. NVD-CWE-Other
CVE-2001-0211 2008-09-6 05:23 2001-06-2 Show GitHub Exploit DB Packet Storm
356040 - his auktion Directory traversal vulnerability in HIS Auktion 1.62 allows remote attackers to read arbitrary files via a .. (dot dot) in the menue parameter, and possibly execute commands via shell metacharacters. NVD-CWE-Other
CVE-2001-0212 2008-09-6 05:23 2001-06-2 Show GitHub Exploit DB Packet Storm