Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2531 6.5 警告
Network 		Pterodactyl Wings PterodactylのWingsにおける複数の脆弱性 CWE-400
CWE-770
CWE-770
CVE-2025-69199 2026-02-4 18:37 2026-01-19 Show GitHub Exploit DB Packet Storm
2532 9.8 緊急
Network 		fabianros Mobile Shop Management System In PHP With Source Code Fabian RosのMobile Shop Management System In PHP With Source Codeにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2025-69564 2026-02-4 18:37 2026-01-27 Show GitHub Exploit DB Packet Storm
2533 6.5 警告
Network 		PHPGurukul Online Course Registration PHPGurukulのOnline Course Registrationにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2025-70899 2026-02-4 18:37 2026-01-22 Show GitHub Exploit DB Packet Storm
2534 7.3 重要
Local 		Lenovo app store Lenovoのapp storeにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2025-8485 2026-02-4 18:37 2025-11-12 Show GitHub Exploit DB Packet Storm
2535 7.8 重要
Local 		Lenovo PCManager LenovoのPCManagerにおける不要な特権による実行に関する脆弱性 CWE-250
不要な特権による実行 		CVE-2025-8486 2026-02-4 18:37 2025-10-15 Show GitHub Exploit DB Packet Storm
2536 4.9 警告
Network 		M-Files M-Files Server M-FilesのM-Files Serverにおける入力の構文的正当性の検証に関する脆弱性 CWE-1286
入力の構文的正当性の不適切な検証 		CVE-2026-0663 2026-02-4 18:37 2026-01-21 Show GitHub Exploit DB Packet Storm
2537 6.1 警告
Network 		plantuml plantuml plantumlにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-0858 2026-02-4 18:37 2026-01-16 Show GitHub Exploit DB Packet Storm
2538 9.8 緊急
Network 		itsourcecode School Management System itsourcecodeのSchool Management Systemにおける複数の脆弱性 CWE-74
CWE-89
CVE-2026-1176 2026-02-4 18:37 2026-01-19 Show GitHub Exploit DB Packet Storm
2539 4.6 警告
Local 		Esri ArcGIS Pro EsriのArcGIS Proにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-1446 2026-02-4 18:37 2026-01-26 Show GitHub Exploit DB Packet Storm
2540 6.1 警告
Network 		NHN Japan billboard.js NHN Japanのbillboard.jsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-1513 2026-02-4 18:37 2026-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349291 - trend_micro officescan
virus_buster 		Vulnerability in cgiWebupdate.exe in Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.5.2 through 3.5.4 allows remote attackers to read arbitrary files. NVD-CWE-Other
CVE-2001-1150 2008-09-6 05:25 2001-08-22 Show GitHub Exploit DB Packet Storm
349292 - baltimore_technologies websweeper Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested… NVD-CWE-Other
CVE-2001-1152 2008-09-6 05:25 2001-09-5 Show GitHub Exploit DB Packet Storm
349293 - typsoft typsoft_ftp_server TYPSoft FTP 0.95 allows remote attackers to cause a denial of service (CPU consumption) via a "../../*" argument to (1) STOR or (2) RETR. NVD-CWE-Other
CVE-2001-1156 2008-09-6 05:25 2001-10-8 Show GitHub Exploit DB Packet Storm
349294 - baltimore_technologies websweeper Baltimore Technologies WEBsweeper 4.0 and 4.02 does not properly filter Javascript from HTML pages, which could allow remote attackers to bypass the filtering via (1) an extra leading < and one or mo… NVD-CWE-Other
CVE-2001-1157 2008-09-6 05:25 2001-08-12 Show GitHub Exploit DB Packet Storm
349295 - squirrelmail squirrelmail load_prefs.php and supporting include files in SquirrelMail 1.0.4 and earlier do not properly initialize certain PHP variables, which allows remote attackers to (1) view sensitive files via the confi… NVD-CWE-Other
CVE-2001-1159 2008-09-6 05:25 2001-07-2 Show GitHub Exploit DB Packet Storm
349296 - lotus domino_r5_server Cross-site scripting (CSS) vulnerability in Lotus Domino 5.0.6 allows remote attackers to execute script on other web clients via a URL that ends in Javascript, which generates an error message that … NVD-CWE-Other
CVE-2001-1161 2008-09-6 05:25 2001-07-2 Show GitHub Exploit DB Packet Storm
349297 - munica netsql Buffer overflow in Munica Corporation NetSQL 1.0 allows remote attackers to execute arbitrary code via a long CONNECT argument to port 6500. NVD-CWE-Other
CVE-2001-1163 2008-09-6 05:25 2001-06-16 Show GitHub Exploit DB Packet Storm
349298 - caldera unixware Buffer overflow in uucp utilities in UnixWare 7 allows local users to execute arbitrary code via long command line arguments to (1) uucp, (2) uux, (3) bnuconvert, (4) uucico, (5) uuxcmd, or (6) uuxqt. NVD-CWE-Other
CVE-2001-1164 2008-09-6 05:25 2001-06-27 Show GitHub Exploit DB Packet Storm
349299 - intego diskguard
fileguard 		Intego FileGuard 4.0 uses weak encryption to store user information and passwords, which allows local users to gain privileges by decrypting the information, e.g., with the Disengage tool. NVD-CWE-Other
CVE-2001-1165 2008-09-6 05:25 2002-04-1 Show GitHub Exploit DB Packet Storm
349300 - freebsd freebsd linprocfs on FreeBSD 4.3 and earlier does not properly restrict access to kernel memory, which allows one process with debugging rights on a privileged process to read restricted memory from that pro… NVD-CWE-Other
CVE-2001-1166 2008-09-6 05:25 2001-08-21 Show GitHub Exploit DB Packet Storm