Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251	7.8	重要 Local	Forcepoint LLC.	Next Generation Firewall (NGFW)	Forcepoint LLC.のNext Generation Firewall (NGFW)における不要な特権による実行に関する脆弱性 New	CWE-250 CWE-noinfo	CVE-2025-12690	2026-05-11 11:03	2026-03-11	Show	GitHub Exploit DB Packet Storm

252	6.8	警告 Network	vaadin	Vaadin	Vaadin Ltd.のVaadinにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-2741	2026-05-11 11:03	2026-03-10	Show	GitHub Exploit DB Packet Storm

253	5.3	警告 Network	vaadin	Vaadin	Vaadin Ltd.のVaadinにおけるアクセス制御に関する脆弱性 New	CWE-284 CWE-Other	CVE-2026-2742	2026-05-11 11:03	2026-03-10	Show	GitHub Exploit DB Packet Storm

254	7.8	重要 Local	ASSA ABLOY	Visionline	ASSA ABLOYのVisionlineにおける複数の脆弱性 New	CWE-250 CWE-276 CWE-732 CWE-732	CVE-2026-3315	2026-05-11 11:03	2026-03-10	Show	GitHub Exploit DB Packet Storm

255	9.8	緊急 Network	NetBox Labs	Netbox-docker	NetBox LabsのNetbox-dockerにおける複数の脆弱性 New	CWE-1392 CWE-798	CVE-2023-27573	2026-05-11 11:03	2026-03-11	Show	GitHub Exploit DB Packet Storm

256	6.1	警告 Network	HCL Technologies Limited	DFX Analytics	HCL Technologies LimitedのDFX Analyticsにおける複数の脆弱性 New	CWE-358 CWE-79	CVE-2025-31970	2026-05-11 11:03	2026-05-6	Show	GitHub Exploit DB Packet Storm

257	9.8	緊急 Network	HCL Technologies Limited	DFX Analytics	HCL Technologies LimitedのDFX Analyticsにおける不特定の脆弱性 New	CWE-noinfo 情報不足	CVE-2025-59851	2026-05-11 11:03	2026-05-6	Show	GitHub Exploit DB Packet Storm

258	9.1	緊急 Network	HCL Technologies Limited	DFX Analytics	HCL Technologies LimitedのDFX Analyticsにおける重要な情報の平文での送信に関する脆弱性 New	CWE-319 重要な情報の平文での送信	CVE-2025-59852	2026-05-11 11:03	2026-05-6	Show	GitHub Exploit DB Packet Storm

259	5.3	警告 Network	HCL Technologies Limited	DFX Analytics	HCL Technologies LimitedのDFX Analyticsにおけるエラーメッセージによる情報漏えいに関する脆弱性 New	CWE-209 エラーメッセージによる情報漏えい	CVE-2025-59853	2026-05-11 11:03	2026-05-6	Show	GitHub Exploit DB Packet Storm

260	6.1	警告 Network	HCL Technologies Limited	DFX Analytics	HCL Technologies LimitedのDFX Analyticsにおける複数の脆弱性 New	CWE-79 CWE-80	CVE-2025-59854	2026-05-11 11:03	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346881	-	mutt	mutt	Mutt mail client allows a remote attacker to execute commands via shell metacharacters.	NVD-CWE-Other	CVE-1999-0941	2016-10-18 10:59	1998-07-28	Show	GitHub Exploit DB Packet Storm

346882	-	yamaha	midiplug	Buffer overflow in Yamaha MidiPlug via a Text variable in an EMBED tag.	NVD-CWE-Other	CVE-1999-0946	2016-10-18 10:59	1999-11-2	Show	GitHub Exploit DB Packet Storm

346883	-	an	an-httpd	AN-HTTPd provides example CGI scripts test.bat, input.bat, input2.bat, and envout.bat, which allow remote attackers to execute commands via shell metacharacters.	NVD-CWE-Other	CVE-1999-0947	2016-10-18 10:59	1999-11-2	Show	GitHub Exploit DB Packet Storm

346884	-	positive_software	cp\+	Unspecified vulnerability in Positive Software Corporation CP+ (cpplus) before 2.5.5 allows attackers to have unknown impact and attack vectors, related to "a possible security flaw caused by a bug i…	NVD-CWE-Other	CVE-2005-4261	2016-10-15 10:59	2005-12-15	Show	GitHub Exploit DB Packet Storm

346885	-	softwin	bitdefender	Format string vulnerability in the logging functionality in BitDefender AntiVirus 7.2 through 9 allows remote attackers to cause a denial of service and possibly execute arbitrary code via format str…	CWE-134 Use of Externally-Controlled Format String	CVE-2005-3154	2016-09-30 23:33	2005-10-6	Show	GitHub Exploit DB Packet Storm

346886	-	cisco	ios	Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.	CWE-200 Information Exposure	CVE-2000-0368	2016-09-21 22:06	2001-03-12	Show	GitHub Exploit DB Packet Storm

346887	-	ibm	aix	Buffer overflow in uuq in AIX 4 could allow local users to execute arbitrary code via a long -r parameter.	NVD-CWE-Other	CVE-2001-1095	2016-09-17 10:59	2001-10-9	Show	GitHub Exploit DB Packet Storm

346888	-	phpbb_group	phpbb	db.php in phpBB 2.0 (aka phpBB2) RC-3 and earlier allows remote attackers to execute arbitrary code from remote servers via the phpbb_root_path parameter.	NVD-CWE-Other	CVE-2002-0473	2016-09-17 10:59	2002-08-12	Show	GitHub Exploit DB Packet Storm

346889	-	pablo_software_solutions	pablo_ftp_server	Directory traversal vulnerability in Pablo FTP server 1.0 build 9 and earlier allows remote authenticated users to list arbitrary directories via "..\" (dot-dot backslash) sequences in a LIST command.	NVD-CWE-Other	CVE-2002-1054	2016-09-17 10:59	2002-10-4	Show	GitHub Exploit DB Packet Storm

346890	-	sun	java	Unspecified vulnerability in the New Java Plug-in component in Oracle Java SE and Java for Business JDK and JRE 6 Update 18 and 19 allows remote attackers to affect confidentiality, integrity, and av…	NVD-CWE-noinfo	CVE-2010-0887	2016-08-23 11:01	2010-04-21	Show	GitHub Exploit DB Packet Storm