Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239681 7.5 危険 onelook - onelook onebyone CMS におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-1952 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239682 7.5 危険 onelook - onelook obo Shop におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-1951 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239683 9.3 危険 Irfan Skiljan - IrfanView におけるバッファオーバーフローの脆弱性 - CVE-2007-1948 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239684 3.5 注意 parakey inc. - Mozilla Firefox 用の Firebug エクステンションにおけるクロスゾーンスクリプティングの脆弱性 - CVE-2007-1947 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239685 10 危険 マイクロソフト - Microsoft Windows XP SP1 の Windows Explorer における整数オーバーフローの脆弱性 - CVE-2007-1946 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239686 4.9 警告 IBM - IBM TBSM における重要な情報を取得される脆弱性 - CVE-2007-1940 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239687 4.3 警告 ジャストシステム - Ichitaro などの製品における脆弱性 CWE-119
CWE-79
CVE-2007-1938 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239688 6.8 警告 JBMC Software - JBMC Software DirectAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1926 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239689 9.3 危険 Nullsoft - AOL Nullsoft Winamp の S3M モジュールにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-1922 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
239690 9.3 危険 Nullsoft - AOL Nullsoft Winamp で使用される LIBSNDFILE.DLL における任意のコードを実行される脆弱性 - CVE-2007-1921 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2391 8.8 HIGH
Network 		- - A vulnerability has been found in Tenda F1202 1.2.0.20(408). Affected is the function fromPPTPUserSetting of the file /goform/PPTPUserSetting. Such manipulation of the argument delno leads to stack-b… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9428 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2392 8.8 HIGH
Network 		- - A vulnerability was found in Tenda F1202 1.2.0.20(408). Affected by this vulnerability is the function formWrlExtraSet of the file /goform/WrlExtraSet. Performing a manipulation of the argument delno… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9429 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2393 8.8 HIGH
Network 		- - A vulnerability was determined in Tenda F1202 1.2.0.20(408). Affected by this issue is the function formGstDhcpSetSer of the file /goform/GstDhcpSetSerof. Executing a manipulation of the argument dip… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9430 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2394 8.8 HIGH
Network 		- - A vulnerability was identified in Tenda F1202 1.2.0.20(408). This affects the function fromPptpUserAdd of the file /goform/PptpUserAdd. The manipulation of the argument opttype leads to stack-based b… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9431 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2395 5.3 MEDIUM
Network 		- - A vulnerability was determined in calcom cal.diy up to 4.9.4. Affected by this issue is the function getServerSideProps of the file apps/web/modules/bookings/views/bookings-single-view.getServerSideP… CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-9349 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm
2396 3.5 LOW
Network 		- - A vulnerability was found in vBulletin 6.x. This impacts an unknown function of the component Login. Performing a manipulation results in cross site scripting. It is possible to initiate the attack r… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-9357 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm
2397 4.3 MEDIUM
Network 		- - A vulnerability was determined in postcss up to 7.1.1. Affected is the function toString of the file src/selectors/container.js of the component AST Serialization. Executing a manipulation can lead t… CWE-404
CWE-674
 Improper Resource Shutdown or Release
 Uncontrolled Recursion 		CVE-2026-9358 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm
2398 5.6 MEDIUM
Network 		- - A security vulnerability has been detected in ItzCrazyKns Vane up to 1.12.1. Affected by this issue is some unknown functionality of the file route.ts of the component API. The manipulation leads to … CWE-287
CWE-306
Improper Authentication
Missing Authentication for Critical Function 		CVE-2026-9371 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm
2399 7.3 HIGH
Network 		- - A flaw has been found in ItzCrazyKns Vane up to 1.12.1. This vulnerability affects unknown code of the file src/app/api/providers/route.ts of the component Model Provider API. This manipulation of th… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-9372 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm
2400 3.7 LOW
Network 		- - A weakness has been identified in ulisesbocchio jasypt-spring-boot up to 3.0.5/4.0.4. Affected by this vulnerability is the function getSecretKeySaltGenerator of the file jasypt-spring-boot/src/main/… CWE-759
CWE-760
 Use of a One-Way Hash without a Salt
 Use of a One-Way Hash with a Predictable Salt 		CVE-2026-9370 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm