Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3341	9.8	緊急 Network	エレコム株式会社	WAB-S300IW2-PD WRC-X1500GSA-B WAB-S300IW-AC WAB-S733IW2-PD WRC-X1500GS-B WAB-S300IW-PD WAB-S733IW-PD WAB-S733IW-AC	エレコム無線LAN関連製品における複数の脆弱性	CWE-352 CWE-78 CWE-Other	CVE-2026-20704 CVE-2026-22550 CVE-2026-24449 CVE-2026-24465	2026-02-3 14:15	2026-02-3	Show	GitHub Exploit DB Packet Storm

3342	7.8	重要 Local	三菱電機	FREQSHIP-mini	三菱小容量UPS用シャットダウンソフトウェア FREQSHIP-mini for Windowsにおけるインストール時の不適切なファイルアクセス権設定の脆弱性	CWE-Other その他	CVE-2025-10314	2026-02-3 12:35	2026-02-3	Show	GitHub Exploit DB Packet Storm

3343	7.8	重要 Local	ローランド株式会社	Roland Cloud Manager	Roland Cloud ManagerのインストーラにおけるDLL読み込みに関する脆弱性	CWE-Other その他	CVE-2026-24694	2026-02-3 12:08	2026-02-3	Show	GitHub Exploit DB Packet Storm

3344	7.5	重要 Network	trustwallet	trust wallet core	trustwalletのtrust wallet coreにおけるバッファオーバーリードの脆弱性	CWE-126 バッファオーバーリード	CVE-2025-66692	2026-02-2 19:40	2026-01-20	Show	GitHub Exploit DB Packet Storm

3345	9.8	緊急 Network	JEECG	jimureport	JEECGのjimureportにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2025-66913	2026-02-2 19:40	2026-01-8	Show	GitHub Exploit DB Packet Storm

3346	9.4	緊急 Network	dromara	RuoYi-Vue-Plus	DromaraのRuoYi-Vue-Plusにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2025-66916	2026-02-2 19:40	2026-01-8	Show	GitHub Exploit DB Packet Storm

3347	5.4	警告 Network	PHPGurukul	Employee Leaves Management System (ELMS)	PHPGurukulのEmployee Leaves Management System (ELMS)におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2025-67315	2026-02-2 19:40	2026-01-5	Show	GitHub Exploit DB Packet Storm

3348	5.4	警告 Network	heytap	internet browser	heytapのinternet browserにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-67316	2026-02-2 19:40	2026-01-5	Show	GitHub Exploit DB Packet Storm

3349	9.8	緊急 Network	webkul	qloapps	webkulのqloappsにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2025-67325	2026-02-2 19:40	2026-01-8	Show	GitHub Exploit DB Packet Storm

3350	8.8	重要 Network	b3log	SiYuan	B3logのSiYuanにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-67488	2026-02-2 19:40	2025-12-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350441	-	analogx	proxy	Buffer overflows in AnalogX Proxy before 4.12 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long HTTP request to TCP port 6588 or (2) a SOCKS 4A r…	NVD-CWE-Other	CVE-2002-1001	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

350442	-	novell	emframe	Buffer overflow in Novell iManager (eMFrame 1.2.1) allows remote attackers to cause a denial of service (crash) via a long user name.	NVD-CWE-Other	CVE-2002-1002	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

350443	-	mywebserver	mywebserver	Buffer overflow in MyWebServer 1.02 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.	NVD-CWE-Other	CVE-2002-1003	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

350444	-	argosoft	argosoft_mail_server	Directory traversal vulnerability in webmail feature of ArGoSoft Mail Server Plus or Pro 1.8.1.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in a URL.	NVD-CWE-Other	CVE-2002-1004	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

350445	-	bbc_education	betsie	Cross-site scripting (XSS) vulnerability in BBC Education Text to Speech Internet Enhancer (Betsie) 1.5.11 and earlier allows remote attackers to execute arbitrary web script via parserl.pl.	NVD-CWE-Other	CVE-2002-1006	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

350446	-	blackboard	blackboard	Cross-site scripting vulnerabilities in Blackboard 5 allow remote attackers to execute arbitrary web script via (1) the course_id parameter in a link to login.pl, (2) the CTID parameter in ProcessInf…	NVD-CWE-Other	CVE-2002-1007	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

350447	-	summit_computer_networks	lil_http_server	Cross-site scripting vulnerability in PowerBASIC urlcount.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via a request to urlc…	NVD-CWE-Other	CVE-2002-1008	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

350448	-	summit_computer_networks	lil_http_server	Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via the (1) "Name" or (2…	NVD-CWE-Other	CVE-2002-1009	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

350449	-	lotus	domino_r4	Lotus Domino R4 allows remote attackers to bypass access restrictions for files in the web root via an HTTP request appended with a "?" character, which is treated as a wildcard character and bypasse…	NVD-CWE-Other	CVE-2002-1010	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

350450	-	ibm	tivoli_management_framework	Buffer overflow in web server for Tivoli Management Framework (TMF) Endpoint 3.6.x through 3.7.1, before Fixpack 2, allows remote attackers to cause a denial of service or execute arbitrary code via …	NVD-CWE-Other	CVE-2002-1011	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm