Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
291 9.8 緊急
Network 		マイクロソフト Azure Logic Apps Azure Logic Apps Elevation of Privilege Vulnerability CWE-22
パス・トラバーサル 		CVE-2026-21227 2026-02-5 15:44 2026-01-22 Show GitHub Exploit DB Packet Storm
292 6.1 警告
Network 		マイクロソフト Microsoft Account Microsoft Account Spoofing Vulnerability CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21264 2026-02-5 15:44 2026-01-22 Show GitHub Exploit DB Packet Storm
293 7.4 重要
Network 		マイクロソフト Azure Data Explorer Azure Data Explorer Information Disclosure Vulnerability CWE-200
情報漏えい 		CVE-2026-21524 2026-02-5 15:44 2026-01-22 Show GitHub Exploit DB Packet Storm
294 6.1 警告
Network 		Aquq Platform Revive Adserver Aquq PlatformのRevive Adserverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21663 2026-02-5 15:44 2026-01-20 Show GitHub Exploit DB Packet Storm
295 6.1 警告
Network 		Aquq Platform Revive Adserver Aquq PlatformのRevive Adserverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21664 2026-02-5 15:44 2026-01-20 Show GitHub Exploit DB Packet Storm
296 9.8 緊急
Network 		Anysphere Cursor AnysphereのCursorにおける複数の脆弱性 CWE-15
CWE-269
CWE-74
CWE-77
CWE-77
CWE-78
CWE-94
CVE-2026-22708 2026-02-5 15:44 2026-01-14 Show GitHub Exploit DB Packet Storm
297 6.1 警告
Local 		openCryptoki Project openCryptoki openCryptoki ProjectのopenCryptokiにおけるバッファサイズの計算の誤りに関する脆弱性 CWE-131
正しくないバッファサイズ計算 		CVE-2026-22791 2026-02-5 15:44 2026-01-13 Show GitHub Exploit DB Packet Storm
298 9.8 緊急
Network 		cal cal.com calのcal.comにおける複数の脆弱性 CWE-602
CWE-639
CVE-2026-23478 2026-02-5 15:44 2026-01-13 Show GitHub Exploit DB Packet Storm
299 7.8 重要
Local 		- sumatrapdfreaderのSumatra PDFにおける信頼できない検索パスに関する脆弱性 Fix CWE-426 Untrusted Search Path for notepad.exe  sumatrapdfreader/sumatrapdf@2762e02  GitHub
CWE-426
CVE-2026-23512 2026-02-5 15:44 2026-01-14 Show GitHub Exploit DB Packet Storm
300 6.1 警告
Network 		Lee Peuker Movary Lee PeukerのMovaryにおける複数の脆弱性 CWE-20
CWE-79
CVE-2026-23839 2026-02-5 15:44 2026-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306531 - ikonboard.com ikonboard Cross-site scripting vulnerability in Ikonboard 3.0.1 allows remote attackers to execute arbitrary script as other Ikonboard users and steal cookies via Javascript in an IMG tag. NVD-CWE-Other
CVE-2002-0328 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
306532 - snitz_communications snitz_forums_2000 Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag. NVD-CWE-Other
CVE-2002-0329 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
306533 - openbb openbb Cross-site scripting vulnerability in codeparse.php of Open Bulletin Board (OpenBB) 1.0.0 allows remote attackers to execute arbitrary script and steal cookies via Javascript in the IMG tag. NVD-CWE-Other
CVE-2002-0330 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
306534 - alcatech_gmbh bpm_studio_pro Directory traversal vulnerability in the HTTP server for BPM Studio Pro 4.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request. NVD-CWE-Other
CVE-2002-0331 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
306535 - xtell xtell Buffer overflows in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to execute arbitrary code via (1) a long DNS hostname that is determined using reverse DNS lookups, … NVD-CWE-Other
CVE-2002-0332 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
306536 - xtell xtell Directory traversal vulnerability in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink … NVD-CWE-Other
CVE-2002-0333 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
306537 - xtell xtell xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a symlink attack on the .xtell-log file. NVD-CWE-Other
CVE-2002-0334 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
306538 - galacticomm_technologies worldgroup
worldgroup_lite_personal_server 		Buffer overflow in Galacticomm Worldgroup web server 3.20 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long HTTP GET request. NVD-CWE-Other
CVE-2002-0335 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
306539 - galacticomm_technologies worldgroup
worldgroup_lite_personal_server 		Buffer overflow in Galacticomm Worldgroup FTP server 3.20 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a LIST command containing a large … NVD-CWE-Other
CVE-2002-0336 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
306540 - realnetworks realplayer RealPlayer 8 allows remote attackers to cause a denial of service (CPU utilization) via malformed .mp3 files. NVD-CWE-Other
CVE-2002-0337 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm