Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3021	7.8	重要 Local	PY Software.	Active WebCam	PY Software.のActive WebCamにおける引用されない検索パスまたは要素に関する脆弱性	CWE-428 引用されない検索パスまたは要素	CVE-2021-47790	2026-02-2 19:21	2026-01-16	Show	GitHub Exploit DB Packet Storm

3022	7.8	重要 Local	Remote Mouse	Remote Mouse	Remote Mouseにおける引用されない検索パスまたは要素に関する脆弱性	CWE-428 引用されない検索パスまたは要素	CVE-2021-47792	2026-02-2 19:21	2026-01-16	Show	GitHub Exploit DB Packet Storm

3023	7.8	重要 Local	Flexense Ltd.	DupScout	Flexense Ltd.のDupScoutにおける引用されない検索パスまたは要素に関する脆弱性	CWE-428 引用されない検索パスまたは要素	CVE-2021-47806	2026-02-2 19:21	2026-01-16	Show	GitHub Exploit DB Packet Storm

3024	7.8	重要 Local	Flexense Ltd.	SyncBreeze	Flexense Ltd.のSyncBreezeにおける引用されない検索パスまたは要素に関する脆弱性	CWE-428 引用されない検索パスまたは要素	CVE-2021-47807	2026-02-2 19:21	2026-01-16	Show	GitHub Exploit DB Packet Storm

3025	7.8	重要 Local	Flexense Ltd.	DiskSorter	Flexense Ltd.のDiskSorterにおける引用されない検索パスまたは要素に関する脆弱性	CWE-428 引用されない検索パスまたは要素	CVE-2021-47809	2026-02-2 19:21	2026-01-16	Show	GitHub Exploit DB Packet Storm

3026	9.1	緊急 Network	Grocery CRUD	Grocery CRUD	Grocery CRUDにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2021-47811	2026-02-2 19:21	2026-01-16	Show	GitHub Exploit DB Packet Storm

3027	7.5	重要 Network	Nsasoft US LLC.	NBMonitor	Nsasoft US LLC.のNBMonitorにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2021-47814	2026-02-2 19:21	2026-01-16	Show	GitHub Exploit DB Packet Storm

3028	5.4	警告 Network	TAGSTOO	TAGSTOO	TAGSTOOにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-47843	2026-02-2 19:21	2026-01-15	Show	GitHub Exploit DB Packet Storm

3029	7.8	重要 Local	ヒューレット・パッカード	HP Prodesk 405 G6 Small Form Factor PC Firmware HP Probook 11 EE G2 Firmware HP mt20 Mobile Thin Client …	ヒューレット・パッカードのHP Dragonfly Folio 13.5 inch G3 2-in-1 Notebook PC Firmware等の複数製品におけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2022-27540	2026-02-2 19:21	2024-06-28	Show	GitHub Exploit DB Packet Storm

3030	9.8	緊急 Network	Tdarr	Tdarr	TdarrにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2022-50919	2026-02-2 19:21	2026-01-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349411	-	aol	instant_messenger	Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messenger (AIM) 4.4 allow remote attackers to execute arbitrary web script or HTML via…	NVD-CWE-Other	CVE-2001-1416	2008-09-6 05:26	2001-01-18	Show	GitHub Exploit DB Packet Storm

349412	-	surfcontrol	superscout_web_filter	SurfControl SuperScout only filters packets containing both an HTTP GET request and a Host header, which allows local users to bypass filtering by fragmenting packets so that no packet contains both …	NVD-CWE-Other	CVE-2001-1465	2008-09-6 05:26	2002-02-26	Show	GitHub Exploit DB Packet Storm

349413	-	macromedia	jrun	Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server (JWS), and possibly other web servers allows remote attackers to read arbitrary files and directories by a…	NVD-CWE-Other	CVE-2001-1510	2008-09-6 05:26	2001-12-31	Show	GitHub Exploit DB Packet Storm

349414	-	macromedia	jrun	JRun 3.0 and 3.1 running on JRun Web Server (JWS) and IIS allows remote attackers to read arbitrary JavaServer Pages (JSP) source code via a request URL containing the source filename ending in (1) "…	NVD-CWE-Other	CVE-2001-1511	2008-09-6 05:26	2001-12-31	Show	GitHub Exploit DB Packet Storm

349415	-	macromedia	coldfusion	ColdFusion 4.5 and 5, when running on Windows with the advanced security sandbox type set to "operating system," does not properly pass security context to (1) child processes created with <CFEXECUTE…	NVD-CWE-Other	CVE-2001-1514	2008-09-6 05:26	2001-12-31	Show	GitHub Exploit DB Packet Storm

349416	-	hans_wolters	phpreview	Cross-site scripting (XSS) vulnerability in phpReview 0.9.0 rc2 and earlier allows remote attackers to inject arbitrary web script or HTML via user-submitted reviews.	NVD-CWE-Other	CVE-2001-1516	2008-09-6 05:26	2001-12-31	Show	GitHub Exploit DB Packet Storm

349417	-	intel	xircom_rex_6000	Xircom REX 6000 allows local users to obtain the 10 digit PIN by starting a serial monitor, connecting to the personal digital assistant (PDA) via Rextools, and capturing the cleartext PIN.	NVD-CWE-Other	CVE-2001-1520	2008-09-6 05:26	2001-12-31	Show	GitHub Exploit DB Packet Storm

349418	-	francisco_burzi	php-nuke	Cross-site scripting (XSS) vulnerability in im.php in IMessenger for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via a message.	NVD-CWE-Other	CVE-2001-1522	2008-09-6 05:26	2001-12-31	Show	GitHub Exploit DB Packet Storm

349419	-	dmozgateway	dmozgateway	Cross-site scripting (XSS) vulnerability in the DMOZGateway module for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the topic parameter.	NVD-CWE-Other	CVE-2001-1523	2008-09-6 05:26	2001-12-31	Show	GitHub Exploit DB Packet Storm

349420	-	easyscripts	easynews	Directory traversal vulnerability in the comments action in easyNews 1.5 and earlier allows remote attackers to modify news.dat, template.dat and possibly other files via a ".." in the cid parameter.	NVD-CWE-Other	CVE-2001-1525	2008-09-6 05:26	2001-12-31	Show	GitHub Exploit DB Packet Storm