Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3041	7.1	重要 Network	Anapi	h6web	Anapiのh6webにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2025-1270	2026-02-2 19:20	2025-02-13	Show	GitHub Exploit DB Packet Storm

3042	6.1	警告 Network	Anapi	h6web	Anapiのh6webにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-1271	2026-02-2 19:20	2025-02-13	Show	GitHub Exploit DB Packet Storm

3043	7.7	重要 Network	jimbob1953	db-access	jimbob1953のWordPress用db-accessにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-13000	2026-02-2 19:20	2025-12-2	Show	GitHub Exploit DB Packet Storm

3044	4.1	警告 Network	Donations project	Donations	Kieran O'SheaのWordPress用DonationsにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-13001	2026-02-2 19:20	2025-12-2	Show	GitHub Exploit DB Packet Storm

3045	6.1	警告 Network	Datateam	Datactive	DatateamのDatactiveにおける複数の脆弱性	CWE-79 CWE-80	CVE-2025-13505	2026-02-2 19:20	2025-12-2	Show	GitHub Exploit DB Packet Storm

3046	2.7	低 Network	efficientip	SOLIDserver IPAM Solutions	efficientipのSOLIDserver IPAM Solutionsにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-13879	2026-02-2 19:20	2025-12-2	Show	GitHub Exploit DB Packet Storm

3047	9.8	緊急 Network	ThemeMove	Aeroland	ThemeMoveのWordPress用AerolandにおけるPHP リモートファイルインクルージョンの脆弱性	CWE-98 PHP リモートファイルインクルージョン	CVE-2025-14429	2026-02-2 19:20	2026-01-8	Show	GitHub Exploit DB Packet Storm

3048	9.8	緊急 Network	TECNO	Boomplay	TECNOのBoomplayにおけるデータの信頼性についての不十分な検証に関する脆弱性	CWE-345 データの信頼性についての不十分な検証	CVE-2025-15385	2026-02-2 19:20	2026-01-6	Show	GitHub Exploit DB Packet Storm

3049	7.5	重要 Network	endress	MEAC300-FNADE4 Firmware	endressのMEAC300-FNADE4 FirmwareにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-1708	2026-02-2 19:20	2025-07-3	Show	GitHub Exploit DB Packet Storm

3050	7.5	重要 Network	endress	MEAC300-FNADE4 Firmware	endressのMEAC300-FNADE4 Firmwareにおけるデフォルトの認証情報の使用に関する脆弱性	CWE-1392 CWE-noinfo	CVE-2025-1711	2026-02-2 19:20	2025-07-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349671	-	microsoft	windows_95	Windows 95, when Remote Administration and File Sharing for NetWare Networks is enabled, creates a share (C$) when an administrator logs in remotely, which allows remote attackers to read arbitrary f…	NVD-CWE-Other	CVE-1999-1105	2008-09-6 05:18	1999-12-31	Show	GitHub Exploit DB Packet Storm

349672	-	hp	apollo_domain_os	Vulnerability in the /etc/suid_exec program in HP Apollo Domain/OS sr10.2 and sr10.3 beta, related to the Korn Shell (ksh).	NVD-CWE-Other	CVE-1999-1115	2008-09-6 05:18	1990-12-31	Show	GitHub Exploit DB Packet Storm

349673	-	allaire	coldfusion	HTTP Client application in ColdFusion allows remote attackers to bypass access restrictions for web pages on other ports by providing the target page to the mainframeset.cfm application, which reques…	NVD-CWE-Other	CVE-1999-1124	2008-09-6 05:18	1999-12-31	Show	GitHub Exploit DB Packet Storm

349674	-	sco	open_desktop unix	Vulnerability in passwd in SCO UNIX 4.0 and earlier allows attackers to cause a denial of service by preventing users from being able to log into the system.	NVD-CWE-Other	CVE-1999-1162	2008-09-6 05:18	1993-05-24	Show	GitHub Exploit DB Packet Storm

349675	-	linux	linux_kernel	Linux 2.0.37 does not properly encode the Custom segment limit, which allows local users to gain root privileges by accessing and modifying kernel memory.	NVD-CWE-Other	CVE-1999-1166	2008-09-6 05:18	1999-07-11	Show	GitHub Exploit DB Packet Storm

349676	-	iss	internet_security_scanner	install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file.	NVD-CWE-Other	CVE-1999-1168	2008-09-6 05:18	1999-02-20	Show	GitHub Exploit DB Packet Storm

349677	-	maximizer	maximizer_enterprise	By design, Maximizer Enterprise 4 calendar and address book program allows arbitrary users to modify the calendar of other users when the calendar is being shared.	NVD-CWE-Other	CVE-1999-1172	2008-09-6 05:18	1999-01-14	Show	GitHub Exploit DB Packet Storm

349678	-	sysadmin_magazine	man.sh	Vulnerability in man.sh CGI script, included in May 1998 issue of SysAdmin Magazine, allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-1999-1179	2008-09-6 05:18	1998-05-15	Show	GitHub Exploit DB Packet Storm

349679	-	sgi	irix	Vulnerability in On-Line Customer Registration software for IRIX 6.2 through 6.4 allows local users to gain root privileges.	NVD-CWE-Other	CVE-1999-1181	2008-09-6 05:18	1998-09-29	Show	GitHub Exploit DB Packet Storm

349680	-	admiral_systems	emailclub	Buffer overflow in POP3 server of Admiral Systems EmailClub 1.05 allows remote attackers to execute arbitrary commands via a long "From" header in an e-mail message.	NVD-CWE-Other	CVE-1999-1190	2008-09-6 05:18	1999-11-15	Show	GitHub Exploit DB Packet Storm