Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3521 7.5 重要
Network 		oneflow oneflow oneflowにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-65890 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3522 7.5 重要
Network 		oneflow oneflow oneflowにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-65891 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3523 7.5 重要
Network 		Quarkus Quarkus Quarkusにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2025-66560 2026-02-5 15:45 2026-01-7 Show GitHub Exploit DB Packet Storm
3524 9.8 緊急
Network 		Fabian Ros Mobile Shop Management System In PHP With Source Code Fabian RosのMobile Shop Management System In PHP With Source CodeにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-69562 2026-02-5 15:45 2026-01-27 Show GitHub Exploit DB Packet Storm
3525 9.8 緊急
Network 		Fabian Ros Mobile Shop Management System In PHP With Source Code Fabian RosのMobile Shop Management System In PHP With Source CodeにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-69563 2026-02-5 15:45 2026-01-27 Show GitHub Exploit DB Packet Storm
3526 9.8 緊急
Network 		Fabian Ros Mobile Shop Management System In PHP With Source Code Fabian RosのMobile Shop Management System In PHP With Source Codeにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2025-69565 2026-02-5 15:45 2026-01-27 Show GitHub Exploit DB Packet Storm
3527 7.5 重要
Network 		oneflow oneflow oneflowにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-70999 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3528 7.5 重要
Network 		oneflow oneflow oneflowにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-71000 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3529 6.5 警告
Network 		oneflow oneflow oneflowにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2025-71001 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3530 6.5 警告
Network 		oneflow oneflow oneflowにおける複数の脆弱性 CWE-369
CWE-681
CWE-704
CVE-2025-71002 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348111 - adobe acrobat
acrobat_reader 		The digital signature mechanism for the Adobe Acrobat PDF viewer only verifies the PE header of executable code for a plug-in, which can allow attackers to execute arbitrary code in certified mode by… NVD-CWE-Other
CVE-2002-0030 2008-09-11 04:11 2003-04-2 Show GitHub Exploit DB Packet Storm
348112 - bindview
funk_software 		netrc
funk_software_proxy 		Funk Software Proxy Host 3.x is installed with insecure permissions for the registry and the file system. NVD-CWE-Other
CVE-2002-0064 2008-09-11 04:11 2002-04-22 Show GitHub Exploit DB Packet Storm
348113 - bindview
funk_software 		netrc
funk_software_proxy 		Funk Software Proxy Host 3.x uses weak encryption for the Proxy Host password, which allows local users to gain privileges by recovering the passwords from the PHOST.INI file or the Windows registry. NVD-CWE-Other
CVE-2002-0065 2008-09-11 04:11 2002-04-22 Show GitHub Exploit DB Packet Storm
348114 - bindview
funk_software 		netrc
funk_software_proxy 		Funk Software Proxy Host 3.x before 3.09A creates a Named Pipe that does not require authentication and is installed with insecure access control, which allows local and possibly remote users to use … NVD-CWE-Other
CVE-2002-0066 2008-09-11 04:11 2002-04-22 Show GitHub Exploit DB Packet Storm
348115 - geeklog geeklog Geeklog 1.3 allows remote attackers to hijack user accounts, including the administrator account, by modifying the UID of a user's permanent cookie to the target account. NVD-CWE-Other
CVE-2002-0097 2008-09-11 04:11 2002-03-25 Show GitHub Exploit DB Packet Storm
348116 - scott_parish chuid Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outside of the upload directory via a .. (dot dot) attack. NVD-CWE-Other
CVE-2002-0144 2008-09-11 04:11 2002-03-25 Show GitHub Exploit DB Packet Storm
348117 - apple quicktime Buffer overflow in Apple QuickTime 5.0 ActiveX component allows remote attackers to execute arbitrary code via a long pluginspage field. NVD-CWE-Other
CVE-2002-0376 2008-09-11 04:11 2002-09-24 Show GitHub Exploit DB Packet Storm
348118 - astart_technologies lprng The default configuration of LPRng print spooler in Red Hat Linux 7.0 through 7.3, Mandrake 8.1 and 8.2, and other operating systems, accepts print jobs from arbitrary remote hosts. NVD-CWE-Other
CVE-2002-0378 2008-09-11 04:11 2002-07-3 Show GitHub Exploit DB Packet Storm
348119 - rob_flynn gaim Buffer overflow in Jabber plug-in for Gaim client before 0.58 allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2002-0384 2008-09-11 04:11 2002-10-4 Show GitHub Exploit DB Packet Storm
348120 - oracle application_server The administration module for Oracle Web Cache in Oracle9iAS (9i Application Suite) 9.0.2 allows remote attackers to cause a denial of service (crash) via (1) an HTTP GET request containing a ".." (d… NVD-CWE-Other
CVE-2002-0386 2008-09-11 04:11 2002-11-4 Show GitHub Exploit DB Packet Storm