Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2671 6.5 警告
Network 		gitea project gitea gitea projectのgiteaにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-20800 2026-02-2 19:36 2026-01-22 Show GitHub Exploit DB Packet Storm
2672 6.5 警告
Network 		gitea project gitea gitea projectのgiteaにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-20883 2026-02-2 19:36 2026-01-22 Show GitHub Exploit DB Packet Storm
2673 4.3 警告
Network 		gitea project gitea gitea projectのgiteaにおける複数の脆弱性 CWE-284
CWE-862
CVE-2026-20888 2026-02-2 19:36 2026-01-22 Show GitHub Exploit DB Packet Storm
2674 9.1 緊急
Network 		gitea project gitea gitea projectのgiteaにおける複数の脆弱性 CWE-284
CWE-639
CVE-2026-20897 2026-02-2 19:36 2026-01-22 Show GitHub Exploit DB Packet Storm
2675 6.5 警告
Network 		gitea project gitea gitea projectのgiteaにおける複数の脆弱性 CWE-284
CWE-639
CVE-2026-20904 2026-02-2 19:36 2026-01-22 Show GitHub Exploit DB Packet Storm
2676 9.1 緊急
Network 		gitea project gitea gitea projectのgiteaにおける複数の脆弱性 CWE-284
CWE-639
CVE-2026-20912 2026-02-2 19:36 2026-01-22 Show GitHub Exploit DB Packet Storm
2677 5.4 警告
Network 		Stack Ideas Private Limited. EasyDiscuss Stack Ideas Private Limited.のEasyDiscussにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21623 2026-02-2 19:36 2026-01-16 Show GitHub Exploit DB Packet Storm
2678 8.8 重要
Adjacent 		UI UniFi Protect UIのUniFi Protectにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-21633 2026-02-2 19:36 2026-01-5 Show GitHub Exploit DB Packet Storm
2679 6.5 警告
Adjacent 		UI UniFi Protect UIのUniFi Protectにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-21634 2026-02-2 19:36 2026-01-5 Show GitHub Exploit DB Packet Storm
2680 2.7
Network 		Aquq Platform Revive Adserver Aquq PlatformのRevive Adserverにおける書式文字列に関する脆弱性 CWE-134
書式文字列の問題 		CVE-2026-21640 2026-02-2 19:36 2026-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348971 - zope zope ZCatalog plug-in index support capability for Zope 2.4.0 through 2.5.1 allows anonymous users and untrusted code to bypass access restrictions and call arbitrary methods of catalog indexes. NVD-CWE-Other
CVE-2002-0688 2008-09-6 05:28 2002-07-23 Show GitHub Exploit DB Packet Storm
348972 - gisle_aas digest-md5 An interaction between the Perl MD5 module (perl-Digest-MD5) and Perl could produce incorrect MD5 checksums for UTF-8 data, which could prevent a system from properly verifying the integrity of the d… NVD-CWE-Other
CVE-2002-0703 2008-09-6 05:28 2002-07-26 Show GitHub Exploit DB Packet Storm
348973 - greg_roelofs libpng Buffer overflow in the progressive reader for libpng 1.2.x before 1.2.4, and 1.0.x before 1.0.14, allows attackers to cause a denial of service (crash) via a PNG data stream that has more IDAT data t… NVD-CWE-Other
CVE-2002-0728 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
348974 - philip_chinery philip_chinerys_guestbook Cross-site scripting vulnerability in guestbook.pl for Philip Chinery's Guestbook 1.1 allows remote attackers to execute Javascript or HTML via fields such as (1) Name, (2) EMail, or (3) Homepage. NVD-CWE-Other
CVE-2002-0730 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
348975 - vqsoft vqserver Cross-site scripting vulnerability in demonstration scripts for vqServer allows remote attackers to execute arbitrary script via a link that contains the script in arguments to demo scripts such as r… NVD-CWE-Other
CVE-2002-0731 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
348976 - acme_labs thttpd Cross-site scripting vulnerability in thttpd 2.20 and earlier allows remote attackers to execute arbitrary script via a URL to a nonexistent page, which causes thttpd to insert the script into a 404 … NVD-CWE-Other
CVE-2002-0733 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
348977 - michel_valdrighi b2 b2edit.showposts.php in B2 2.0.6pre2 and earlier does not properly load the b2config.php file in some configurations, which allows remote attackers to execute arbitrary PHP code via a URL that sets t… NVD-CWE-Other
CVE-2002-0734 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
348978 - microsoft backoffice Microsoft BackOffice 4.0 and 4.5, when configured to be accessible by other systems, allows remote attackers to bypass authentication and access the administrative ASP pages via an HTTP request with … NVD-CWE-Other
CVE-2002-0736 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
348979 - sambar sambar_server Sambar web server before 5.2 beta 1 allows remote attackers to obtain source code of server-side scripts, or cause a denial of service (resource exhaustion) via DOS devices, using a URL that ends wit… NVD-CWE-Other
CVE-2002-0737 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
348980 - mhonarc mhonarc MHonArc 2.5.2 and earlier does not properly filter Javascript from archived e-mail messages, which could allow remote attackers to execute script in web clients by (1) splitting the SCRIPT tag into s… NVD-CWE-Other
CVE-2002-0738 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm