Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2801 10 緊急
Network 		XWiki Full Calendar Macro (macro-fullcalendar-pom) XWikiのFull Calendar Macro (macro-fullcalendar-pom)におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-65091 2026-02-2 19:31 2026-01-10 Show GitHub Exploit DB Packet Storm
2802 6.5 警告
Network 		Mega-Fence Project Mega-Fence Mega-Fence ProjectのMega-Fenceにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性 CWE-807
セキュリティ決定の信頼できない入力への依存 		CVE-2025-65328 2026-02-2 19:31 2026-01-5 Show GitHub Exploit DB Packet Storm
2803 7.5 重要
Network 		WebPros International GmbH Plesk Obsidian WebPros International GmbHのPlesk Obsidianにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-65518 2026-02-2 19:31 2026-01-8 Show GitHub Exploit DB Packet Storm
2804 8.8 重要
Network 		Qode Interactive Powerlift Qode InteractiveのWordPress用Powerliftにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-66532 2026-02-2 19:31 2025-12-9 Show GitHub Exploit DB Packet Storm
2805 4.8 警告
Network 		Hotwire Turbo HotwireのTurboにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2025-66803 2026-02-2 19:30 2026-01-20 Show GitHub Exploit DB Packet Storm
2806 7.5 重要
Network 		Manos Websocket Server ManosのWebsocket Serverにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2025-66902 2026-02-2 19:30 2026-01-20 Show GitHub Exploit DB Packet Storm
2807 6.1 警告
Network 		AnyComment AnyComment.io AnyCommentのAnyComment.ioにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-67025 2026-02-2 19:30 2026-01-15 Show GitHub Exploit DB Packet Storm
2808 7.5 重要
Network 		Revotech I6032W-FHW Firmware RevotechのI6032W-FHW Firmwareにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2025-67158 2026-02-2 19:30 2026-01-2 Show GitHub Exploit DB Packet Storm
2809 7.5 重要
Network 		Vatilon PA4 Firmware VatilonのPA4 Firmwareにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2025-67159 2026-02-2 19:30 2026-01-2 Show GitHub Exploit DB Packet Storm
2810 7.5 重要
Network 		Vatilon PA4 Firmware VatilonのPA4 Firmwareにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-67160 2026-02-2 19:30 2026-01-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349581 - digital ultrix Vulnerability in /usr/bin/mail in DEC ULTRIX before 4.2 allows local users to gain privileges. NVD-CWE-Other
CVE-1999-1415 2008-09-6 05:19 1991-08-23 Show GitHub Exploit DB Packet Storm
349582 - mirabilis icq_web_front ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server responses when a file exists ("4… NVD-CWE-Other
CVE-1999-1418 2008-09-6 05:19 1999-05-1 Show GitHub Exploit DB Packet Storm
349583 - sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table e… NVD-CWE-Other
CVE-1999-1424 2008-09-6 05:19 1997-11-10 Show GitHub Exploit DB Packet Storm
349584 - sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files. NVD-CWE-Other
CVE-1999-1426 2008-09-6 05:19 1997-11-10 Show GitHub Exploit DB Packet Storm
349585 - sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-1427 2008-09-6 05:19 1997-11-10 Show GitHub Exploit DB Packet Storm
349586 - sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the save option in the Database Manager, which is running with setgid bin privileges. NVD-CWE-Other
CVE-1999-1428 2008-09-6 05:19 1997-11-10 Show GitHub Exploit DB Packet Storm
349587 - sun sunos Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments. NVD-CWE-Other
CVE-1999-1438 2008-09-6 05:19 1991-02-22 Show GitHub Exploit DB Packet Storm
349588 - sun sunos SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device. NVD-CWE-Other
CVE-1999-1449 2008-09-6 05:19 1997-05-19 Show GitHub Exploit DB Packet Storm
349589 - cisco ios Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enab… NVD-CWE-Other
CVE-1999-1466 2008-09-6 05:19 1992-12-10 Show GitHub Exploit DB Packet Storm
349590 - bsd bsd Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain root privileges by specifying a long shell or GECOS field. NVD-CWE-Other
CVE-1999-1471 2008-09-6 05:19 1989-01-1 Show GitHub Exploit DB Packet Storm