Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2761 8.1 重要
Network 		inventree project inventree inventree projectのinventreeにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-35478 2026-04-21 10:45 2026-04-8 Show GitHub Exploit DB Packet Storm
2762 7.5 重要
Network 		liquidjs liquidjs liquidjsにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-39412 2026-04-21 10:45 2026-04-8 Show GitHub Exploit DB Packet Storm
2763 5.5 警告
Network 		MaxKB MaxKB MaxKBにおける複数の脆弱性 CWE-20
CWE-78
CVE-2026-39417 2026-04-21 10:45 2026-04-14 Show GitHub Exploit DB Packet Storm
2764 7.4 重要
Network 		MaxKB MaxKB MaxKBにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-39418 2026-04-21 10:45 2026-04-14 Show GitHub Exploit DB Packet Storm
2765 3.1
Network 		MaxKB MaxKB MaxKBにおける複数の脆弱性 CWE-290
CWE-693
CWE-74
CVE-2026-39419 2026-04-21 10:45 2026-04-14 Show GitHub Exploit DB Packet Storm
2766 7.4 重要
Network 		MaxKB MaxKB MaxKBにおける複数の脆弱性 CWE-693
CWE-78
CVE-2026-39420 2026-04-21 10:45 2026-04-14 Show GitHub Exploit DB Packet Storm
2767 7.4 重要
Network 		MaxKB MaxKB MaxKBにおける複数の脆弱性 CWE-693
CWE-94
CVE-2026-39421 2026-04-21 10:45 2026-04-14 Show GitHub Exploit DB Packet Storm
2768 5.4 警告
Network 		MaxKB MaxKB MaxKBにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-39422 2026-04-21 10:45 2026-04-14 Show GitHub Exploit DB Packet Storm
2769 5.4 警告
Network 		MaxKB MaxKB MaxKBにおける複数の脆弱性 CWE-79
CWE-95
CVE-2026-39423 2026-04-21 10:45 2026-04-14 Show GitHub Exploit DB Packet Storm
2770 4.7 警告
Network 		MaxKB MaxKB MaxKBにおけるCSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2026-39424 2026-04-21 10:45 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347431 - redhat docbook_stylesheets
docbook_utils 		The default stylesheet for DocBook on Red Hat Linux 6.2 through 7.2 is installed with an insecure option enabled, which could allow users to overwrite files outside of the current directory from an u… NVD-CWE-Other
CVE-2002-0169 2008-09-11 09:00 2002-05-29 Show GitHub Exploit DB Packet Storm
347432 - sgi irisconsole IRISconsole 2.0 may allow users to log into the icadmin account with an incorrect password in some circumstances, which could allow users to gain privileges. NVD-CWE-Other
CVE-2002-0171 2008-09-11 09:00 2002-05-16 Show GitHub Exploit DB Packet Storm
347433 - sgi irix /dev/ipfilter on SGI IRIX 6.5 is installed by /dev/MAKEDEV with insecure default permissions (644), which could allow a local user to cause a denial of service (traffic disruption). NVD-CWE-Other
CVE-2002-0172 2008-09-11 09:00 2002-05-16 Show GitHub Exploit DB Packet Storm
347434 - sgi irix Buffer overflow in cpr for the eoe.sw.cpr SGI Checkpoint-Restart Software package on SGI IRIX 6.5.10 and earlier may allow local users to gain root privileges. NVD-CWE-Other
CVE-2002-0173 2008-09-11 09:00 2002-05-16 Show GitHub Exploit DB Packet Storm
347435 - sgi irix nsd on SGI IRIX before 6.5.11 allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the nsd.dump file. NVD-CWE-Other
CVE-2002-0174 2008-09-11 09:00 2002-05-29 Show GitHub Exploit DB Packet Storm
347436 - avaya libsafe libsafe 2.0-11 and earlier allows attackers to bypass protection against format string vulnerabilities via format strings that use the "'" and "I" characters, which are implemented in libc but not li… NVD-CWE-Other
CVE-2002-0175 2008-09-11 09:00 2002-04-22 Show GitHub Exploit DB Packet Storm
347437 - avaya libsafe The printf wrappers in libsafe 2.0-11 and earlier do not properly handle argument indexing specifiers, which could allow attackers to exploit certain function calls through arguments that are not ver… NVD-CWE-Other
CVE-2002-0176 2008-09-11 09:00 2002-04-22 Show GitHub Exploit DB Packet Storm
347438 - acd_incorporated cwpapi GetRelativePath in ACD Incorporated CwpAPI 1.1 only verifies if the server root is somewhere within the path, which could allow remote attackers to read or write files outside of the web root, in oth… NVD-CWE-Other
CVE-2002-0196 2008-09-11 09:00 2002-05-16 Show GitHub Exploit DB Packet Storm
347439 - paintbbs paintbbs PaintBBS 1.2 installs certain files and directories with insecure permissions, which allows local users to (1) obtain the encrypted server password via the world-readable oekakibbs.conf file, or (2) … NVD-CWE-Other
CVE-2002-0202 2008-09-11 09:00 2002-05-16 Show GitHub Exploit DB Packet Storm
347440 - nortel alteon_acedirector Nortel Alteon ACEdirector WebOS 9.0, with the Server Load Balancing (SLB) and Cookie-Based Persistence features enabled, allows remote attackers to determine the real IP address of a web server with … NVD-CWE-Other
CVE-2002-0209 2008-09-11 09:00 2002-05-16 Show GitHub Exploit DB Packet Storm