Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245111	6.9	警告	Debian	-	Honeyd の test.sh における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-3928	2012-06-26 16:02	2008-08-24	Show	GitHub Exploit DB Packet Storm

245112	7.5	危険	bitlbee	-	BitlBee における既存のアカウントを "再作成" される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3920	2012-06-26 16:02	2008-09-4	Show	GitHub Exploit DB Packet Storm

245113	5.8	警告	Django Software Foundation	-	Django の管理アプリケーションにおけるデータを削除される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-3909	2012-06-26 16:02	2008-09-4	Show	GitHub Exploit DB Packet Storm

245114	3.5	注意	trixbox Digium	-	Asterisk Open Source における有効なユーザ名を列挙される脆弱性	CWE-200 情報漏えい	CVE-2008-3903	2012-06-26 16:02	2008-09-4	Show	GitHub Exploit DB Packet Storm

245115	2.1	注意	マイクロソフト freed0m	-	DiskCryptor における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3897	2012-06-26 16:02	2008-09-3	Show	GitHub Exploit DB Packet Storm

245116	2.1	注意	GNU Project	-	Grub Legacy における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3896	2012-06-26 16:02	2008-09-3	Show	GitHub Exploit DB Packet Storm

245117	7.5	危険	Google	-	Google Apps 用の SAML SSO サービスにおけるユーザになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2008-3891	2012-06-26 16:02	2008-09-3	Show	GitHub Exploit DB Packet Storm

245118	7.2	危険	Advanced Micro Devices (AMD) FreeBSD	-	amd64 プラットフォーム上の FreeBSD のカーネルにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3890	2012-06-26 16:02	2008-09-3	Show	GitHub Exploit DB Packet Storm

245119	7.5	危険	ASP indir	-	Mini-NUKE Freehost の members.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3888	2012-06-26 16:02	2008-09-2	Show	GitHub Exploit DB Packet Storm

245120	6	警告	dotProject	-	dotProject の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3887	2012-06-26 16:02	2008-09-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1591	6.1	MEDIUM Local	-	-	An origin validation error vulnerability in Synology Active Backup for Business Agent before 3.1.0-4967 allows local users to write arbitrary files with restricted content during installation.	CWE-346 Origin Validation Error	CVE-2025-66592	2026-05-27 23:54	2026-05-27	Show	GitHub Exploit DB Packet Storm

1592	6.1	MEDIUM Local	-	-	An origin validation error vulnerability in Synology Assistant before 7.0.6-50085 allows local users to write arbitrary files with restricted content during installation.	CWE-346 Origin Validation Error	CVE-2025-66593	2026-05-27 23:54	2026-05-27	Show	GitHub Exploit DB Packet Storm

1593	6.2	MEDIUM Local	-	-	A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local attackers to obtain sensitive informatio…	CWE-598 Information Exposure Through Query Strings in GET Request	CVE-2026-2237	2026-05-27 23:54	2026-05-27	Show	GitHub Exploit DB Packet Storm

1594	8.0	HIGH Adjacent	-	-	A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2026-3012	2026-05-27 23:54	2026-05-27	Show	GitHub Exploit DB Packet Storm

1595	4.2	MEDIUM Network	-	-	A flaw was found in Keycloak, an open-source identity and access management solution. When a client application is configured to accept broad redirect Uniform Resource Identifiers (URIs), a remote at…	CWE-1288 Improper Validation of Consistency within Input	CVE-2026-9689	2026-05-27 23:54	2026-05-27	Show	GitHub Exploit DB Packet Storm

1596	7.1	HIGH Network	-	-	A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem wri…	CWE-284 Improper Access Control	CVE-2026-1933	2026-05-27 23:54	2026-05-27	Show	GitHub Exploit DB Packet Storm

1597	6.8	MEDIUM Network	-	-	PostgreSQL Anonymizer contains a vulnerability that allows a user to gain superuser privileges by creating a table and placing malicious code inside a column identifier. If a superuser calls the k-an…	CWE-89 SQL Injection	CVE-2026-9617	2026-05-27 23:54	2026-05-27	Show	GitHub Exploit DB Packet Storm

1598	6.8	MEDIUM Network	-	-	A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subject_token JSON Web Token (JWT) to the TokenEndpoint. When the token …	CWE-1284 Improper Validation of Specified Quantity in Input	CVE-2026-9704	2026-05-27 23:54	2026-05-27	Show	GitHub Exploit DB Packet Storm

1599	5.3	MEDIUM Network	-	-	IBM SDI 7.2.0.0 through 7.2.0.14 and IBM Security Directory Integrator 10.0.0.0 through 10.0.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message …	CWE-209 Information Exposure Through an Error Message	CVE-2024-28765	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

1600	5.9	MEDIUM Network	-	-	IBM Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3.7.0, 1.3.7.1, 1.3.7.2, and 1.3.8.0, 1.3.8.1, 1.3.8.2, 1.3.8.3, 1.3.8.4 IBM SmartCloud Analytics - Log…	CWE-521 Weak Password Requirements	CVE-2024-40684	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm