Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3471 9.8 緊急
Network 		opensagres XDocReport opensagresのXDocReportにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2025-65482 2026-02-5 15:50 2026-01-20 Show GitHub Exploit DB Packet Storm
3472 5.3 警告
Network 		pymdown extensions project pymdown extensions facelessuserのPyMdown Extensionsにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2025-68142 2026-02-5 15:50 2025-12-16 Show GitHub Exploit DB Packet Storm
3473 9.8 緊急
Network 		code-projects Computer Book Store carmelo (Carmelo Garcia)のComputer Book Storeにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2025-69559 2026-02-5 15:50 2026-01-27 Show GitHub Exploit DB Packet Storm
3474 6.5 警告
Network 		TMS Global Software TMS Management Console TMS Global SoftwareのTMS Management Consoleにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-69612 2026-02-5 15:50 2026-01-22 Show GitHub Exploit DB Packet Storm
3475 6.5 警告
Network 		Keichi Takahashi binary-parser Keichi TakahashiのBinary-parserにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-1245 2026-02-5 15:50 2026-01-20 Show GitHub Exploit DB Packet Storm
3476 9.8 緊急
Network 		csa-iot matter GoogleのMatterにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-20418 2026-02-5 15:50 2026-02-2 Show GitHub Exploit DB Packet Storm
3477 9.8 緊急
Network 		tarkov.dev Tarkov Data Manager tarkov.devのTarkov Data Managerにおける複数の脆弱性 CWE-1321
CWE-287
CWE-843
CVE-2026-21854 2026-02-5 15:49 2026-01-7 Show GitHub Exploit DB Packet Storm
3478 6.1 警告
Network 		tarkov.dev Tarkov Data Manager tarkov.devのTarkov Data Managerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21855 2026-02-5 15:49 2026-01-7 Show GitHub Exploit DB Packet Storm
3479 8.8 重要
Network 		tarkov.dev Tarkov Data Manager tarkov.devのTarkov Data ManagerにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-21856 2026-02-5 15:49 2026-01-7 Show GitHub Exploit DB Packet Storm
3480 5.3 警告
Network 		ajax file browser File Browserにおける複数の脆弱性 CWE-203
CWE-208
CVE-2026-23849 2026-02-5 15:49 2026-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351511 - icredibb icredibb Cross-site scripting (CSS) vulnerability in IcrediBB 1.1 Beta allows remote attackers to execute arbitrary script and steal cookies as other IcrediBB users via the (1) title or (2) body of posts. NVD-CWE-Other
CVE-2002-0590 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm
351512 - aol instant_messenger Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and earlier allows remote attackers to create arbitrary files and execute commands via a Direct Connection with an IMG tag wi… NVD-CWE-Other
CVE-2002-0591 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm
351513 - mozilla
netscape 		mozilla
communicator
navigator 		Buffer overflow in Netscape 6 and Mozilla 1.0 RC1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long channel name in an IRC URI. NVD-CWE-Other
CVE-2002-0593 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm
351514 - galeon
mozilla
netscape 		galeon_browser
mozilla
navigator 		Netscape 6 and Mozilla 1.0 RC1 and earlier allows remote attackers to determine the existence of files on the client system via a LINK element in a Cascading Style Sheet (CSS) page that causes an HTT… NVD-CWE-Other
CVE-2002-0594 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm
351515 - webtrends reporting_center Buffer overflow in WTRS_UI.EXE (WTX_REMOTE.DLL) for WebTrends Reporting Center 4.0d allows remote attackers to execute arbitrary code via a long HTTP GET request to the /reports/ directory. NVD-CWE-Other
CVE-2002-0595 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm
351516 - foundstone fscan Format string vulnerability in Foundstone FScan 1.12 with banner grabbing enabled allows remote attackers to execute arbitrary code on the scanning system via format string specifiers in the server b… NVD-CWE-Other
CVE-2002-0598 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm
351517 - blahz-dns blahz-dns Blahz-DNS 0.2 and earlier allows remote attackers to bypass authentication and modify configuration by directly requesting CGI programs such as dostuff.php instead of going through the login screen. NVD-CWE-Other
CVE-2002-0599 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm
351518 - information_security_systems realsecure_network_sensor ISS RealSecure Network Sensor 5.x through 6.5 allows remote attackers to cause a denial of service (crash) via malformed DHCP packets that cause RealSecure to dereference a null pointer. NVD-CWE-Other
CVE-2002-0601 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm
351519 - 3com 3cdaemon Buffer overflow in 3Cdaemon 2.0 FTP server allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long commands such as login. NVD-CWE-Other
CVE-2002-0606 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm
351520 - snitz_communications snitz_forums_2000 members.asp in Snitz Forums 2000 version 3.3.03 and earlier allows remote attackers to execute arbitrary code via a SQL injection attack on the parameters (1) M_NAME, (2) UserName, (3) FirstName, (4)… NVD-CWE-Other
CVE-2002-0607 2008-09-6 05:28 2002-06-18 Show GitHub Exploit DB Packet Storm