Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3441 7.1 重要
Network 		SalesAgility SuiteCRM SalesAgilityのSuiteCRMにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2019-25663 2026-04-21 10:40 2026-04-5 Show GitHub Exploit DB Packet Storm
3442 7.1 重要
Network 		SalesAgility SuiteCRM SalesAgilityのSuiteCRMにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2019-25664 2026-04-21 10:40 2026-04-5 Show GitHub Exploit DB Packet Storm
3443 5.5 警告
Local 		Nsasoft US LLC. SpotAuditor Nsasoft US LLC.のSpotAuditorにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2019-25666 2026-04-21 10:40 2026-04-5 Show GitHub Exploit DB Packet Storm
3444 7.5 重要
Network 		Georgia Tech Computing For Good's Basic Laboratory Information System Georgia TechのComputing For Good's Basic Laboratory Information Systemにおける複数の脆弱性 CWE-306
CWE-89
CVE-2019-25678 2026-04-21 10:40 2026-04-5 Show GitHub Exploit DB Packet Storm
3445 7.8 重要
Local 		Simon Bridger (crun) RealTerm Simon Bridger (crun)のRealTermにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2019-25679 2026-04-21 10:40 2026-04-5 Show GitHub Exploit DB Packet Storm
3446 4.3 警告
Network 		フォーティネット FortiVoice
FortiNDR 		フォーティネットのFortiNDR等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2024-23104 2026-04-21 10:40 2026-04-14 Show GitHub Exploit DB Packet Storm
3447 6.5 警告
Network 		Grafana Labs Grafana Grafana LabsのGrafanaにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-12141 2026-04-21 10:40 2026-04-15 Show GitHub Exploit DB Packet Storm
3448 7.8 重要
Local 		Truesec LAPSWebUI TruesecのLAPSWebUIにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2025-15552 2026-04-21 10:40 2026-03-16 Show GitHub Exploit DB Packet Storm
3449 7.1 重要
Local 		Truesec LAPSWebUI TruesecのLAPSWebUIにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2025-15553 2026-04-21 10:40 2026-03-16 Show GitHub Exploit DB Packet Storm
3450 7.8 重要
Local 		デル data domain operating system デルのdata domain operating systemにおける認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2025-36568 2026-04-21 10:40 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351461 - caldera openlinux_server
openlinux_workstation 		startkde in KDE for Caldera OpenLinux 2.3 through 3.1.1 sets the LD_LIBRARY_PATH environment variable to include the current working directory, which could allow local users to gain privileges of oth… NVD-CWE-Other
CVE-2002-0512 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
351462 - squirrelmail squirrelmail SquirrelMail 1.2.5 and earlier allows authenticated SquirrelMail users to execute arbitrary commands by modifying the THEME variable in a cookie. NVD-CWE-Other
CVE-2002-0516 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
351463 - caldera unixware
openunix 		Buffer overflow in X11 library (libX11) on Caldera Open UNIX 8.0.0, UnixWare 7.1.1, and possibly other operating systems, allows local users to gain root privileges via a long -xrm argument to progra… NVD-CWE-Other
CVE-2002-0517 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
351464 - freebsd freebsd The SYN cache (syncache) and SYN cookie (syncookie) mechanism in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service (crash) (1) via a SYN packet that is accepted using synco… NVD-CWE-Other
CVE-2002-0518 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
351465 - asp-nuke asp-nuke Cross-site scripting vulnerability in functions-inc.asp for ASP-Nuke RC1 allows remote attackers to execute script as other ASP-Nuke users by embedding it within an IMG tag. NVD-CWE-Other
CVE-2002-0520 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
351466 - asp-nuke asp-nuke Cross-site scripting vulnerabilities in ASP-Nuke RC2 and earlier allow remote attackers to execute script or gain privileges as other ASP-Nuke users via script in (1) the name parameter in downloads.… NVD-CWE-Other
CVE-2002-0521 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
351467 - asp-nuke asp-nuke ASP-Nuke RC2 and earlier allows remote attackers to bypass authentication and gain privileges by modifying the "pseudo" cookie. NVD-CWE-Other
CVE-2002-0522 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
351468 - asp-nuke asp-nuke ASP-Nuke RC2 and earlier allows remote attackers to list all logged-in users by submitting an invalid "pseudo" cookie. NVD-CWE-Other
CVE-2002-0523 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
351469 - asp-nuke asp-nuke ASP-Nuke RC2 and earlier allows remote attackers to determine the absolute path of the server by (1) calling database-inc.asp with incorrect cookies, or (2) calling Post.asp with certain arguments, w… NVD-CWE-Other
CVE-2002-0524 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
351470 - isc inn Format string vulnerabilities in (1) inews or (2) rnews for INN 2.2.3 and earlier allow local users and remote malicious NNTP servers to gain privileges via format string specifiers in NTTP responses. NVD-CWE-Other
CVE-2002-0525 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm