Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3031 7.8 重要
Local 		WOW 21 WOW 21 WOW 21における引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2022-50921 2026-02-2 19:21 2026-01-13 Show GitHub Exploit DB Packet Storm
3032 9.8 緊急
Network 		Prowise Prowise Reflect ProwiseのProwise Reflectにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2022-50925 2026-02-2 19:21 2026-01-13 Show GitHub Exploit DB Packet Storm
3033 7.8 重要
Local 		IVT Corporation BlueSoleilCS IVT CorporationのBlueSoleilCSにおける引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2022-50928 2026-02-2 19:21 2026-01-13 Show GitHub Exploit DB Packet Storm
3034 7.8 重要
Local 		Malavida Cain & Abel MalavidaのCain & Abelにおける引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2022-50933 2026-02-2 19:20 2026-01-13 Show GitHub Exploit DB Packet Storm
3035 7.1 重要
Network 		Rock Lobster Contact Form 7 BestWebSoftのWordPress用Contact Form 7におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-45771 2026-02-2 19:20 2024-03-26 Show GitHub Exploit DB Packet Storm
3036 7.8 重要
Local 		SOUND4 Ltd. BIG VOICE Firmware
IP Connect Firmware
VOICE ULA2 Firmware
STREAM x4 Firmware
STREAM x8 Firmware
STREAM x2 Firmware
WM2&n… 		SOUND4 Ltd.のBIG VOICE Firmware等の複数製品における引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2023-53965 2026-02-2 19:20 2025-12-22 Show GitHub Exploit DB Packet Storm
3037 5.5 警告
Local 		AimOne Soft Inc AIMONE Video Converter AimOne Soft IncのAIMONE Video Converterにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2023-54328 2026-02-2 19:20 2026-01-13 Show GitHub Exploit DB Packet Storm
3038 9.8 緊急
Network 		Inbit Inbit Messenger InbitのInbit Messengerにおける複数の脆弱性 CWE-121
CWE-787
CVE-2023-54329 2026-02-2 19:20 2026-01-13 Show GitHub Exploit DB Packet Storm
3039 9.8 緊急
Network 		Inbit Inbit Messenger InbitのInbit Messengerにおける複数の脆弱性 CWE-121
CWE-787
CVE-2023-54330 2026-02-2 19:20 2026-01-13 Show GitHub Exploit DB Packet Storm
3040 8.8 重要
Adjacent 		ネットギア DGN1000WW Firmware ネットギアのDGN1000WW Firmwareにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2024-42756 2026-02-2 19:20 2024-08-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348581 - killervault kvpoll KvPoll 1.1 allows remote authenticated users to vote more than once by setting the "already_voted" cookie by various methods, including a direct call to clear_cookies.php. NVD-CWE-Other
CVE-2002-2163 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
348582 - microsoft outlook_express Buffer overflow in Microsoft Outlook Express 5.0, 5.5, and 6.0 allows remote attackers to cause a denial of service (crash) via a long <A HREF> link. NVD-CWE-Other
CVE-2002-2164 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
348583 - imho imho_webmail The IMHO Webmail module 0.97.3 and earlier for Roxen leaks the REFERER from the browser's previous login session in an error page, which allows local users to read another user's inbox. NVD-CWE-Other
CVE-2002-2165 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
348584 - e-zone_media_inc. fusetalk Cross-site scripting (XSS) vulnerability in FuseTalk 2.0 and 3.0 allows remote attackers to insert arbitrary HTML and web script. NVD-CWE-Other
CVE-2002-2166 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
348585 - thorsten_korner 123tkshop Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. (dot dot) sequences terminated by a null… NVD-CWE-Other
CVE-2002-2167 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
348586 - thorsten_korner 123tkshop SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including function_describe_item1.inc.php. NVD-CWE-Other
CVE-2002-2168 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
348587 - aol instant_messenger Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities, such as adding buddies and groups to a use… NVD-CWE-Other
CVE-2002-2169 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
348588 - working_resources_inc. badblue Working Resources Inc. BadBlue Enterprise Edition 1.7 through 1.74 attempts to restrict administrator actions to the IP address of the local host, but does not provide additional authentication, whic… NVD-CWE-Other
CVE-2002-2170 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
348589 - shana informed_designer
informed_filler 		Informed (1) Designer and (2) Filler 3.05 does not zero out newly allocated disk blocks as an encrypted file grows in size, which may allow attackers to obtain sensitive information. NVD-CWE-Other
CVE-2002-2172 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
348590 - cerulean_studios trillian Buffer overflow in the IRC module of Trillian 0.725 and 0.73 allowing remote attackers to execute arbitrary code via a long DCC Chat message. NVD-CWE-Other
CVE-2002-2173 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm