Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3541 7.1 重要
Network 		vLLM vLLM vLLMにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-24779 2026-02-2 19:32 2026-01-27 Show GitHub Exploit DB Packet Storm
3542 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおける保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-24868 2026-02-2 19:32 2026-01-27 Show GitHub Exploit DB Packet Storm
3543 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-24869 2026-02-2 19:31 2026-01-27 Show GitHub Exploit DB Packet Storm
3544 8.2 重要
Network 		ThemeMove SmilePure ThemeMoveのWordPress用SmilePureにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-58958 2026-02-2 19:31 2025-10-22 Show GitHub Exploit DB Packet Storm
3545 8.2 重要
Network 		ThemeMove Businext ThemeMoveのWordPress用BusinextにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-58967 2026-02-2 19:31 2025-10-22 Show GitHub Exploit DB Packet Storm
3546 7.6 重要
Network 		Shopify Remix
React Router 		ShopifyのReact Router等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-59057 2026-02-2 19:31 2026-01-10 Show GitHub Exploit DB Packet Storm
3547 8.1 重要
Network 		ThemeMove Medizin ThemeMoveのWordPress用MedizinにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-59555 2026-02-2 19:31 2025-10-22 Show GitHub Exploit DB Packet Storm
3548 8.1 重要
Network 		ThemeMove Billey ThemeMoveのWordPress用BilleyにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-59558 2026-02-2 19:31 2025-10-22 Show GitHub Exploit DB Packet Storm
3549 8.1 重要
Network 		ThemeMove EduMall ThemeMoveのWordPress用EduMallにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-59564 2026-02-2 19:31 2025-10-22 Show GitHub Exploit DB Packet Storm
3550 8.1 重要
Network 		ThemeMove Minimogwp ThemeMoveのWordPress用MinimogwpにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-60069 2026-02-2 19:31 2025-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349511 - apache mod_python Unknown vulnerability in mod_python 2.7.9 allows remote attackers to cause a denial of service (httpd crash) via a certain query string, a variant of CAN-2003-0973. NVD-CWE-Other
CVE-2004-0096 2008-09-6 05:37 2004-03-3 Show GitHub Exploit DB Packet Storm
349512 - gnu mailman Mailman before 2.0.13 allows remote attackers to cause a denial of service (crash) via an email message with an empty subject field. NVD-CWE-Other
CVE-2004-0182 2008-09-6 05:37 2004-06-1 Show GitHub Exploit DB Packet Storm
349513 - phorum phorum Unspecified vulnerability in Phorum 3.4 through 3.4.2 allows remote attackers to use Phorum as a connection proxy to other sites via (1) register.php or (2) login.php. NVD-CWE-Other
CVE-2003-1466 2008-09-6 05:37 2003-12-31 Show GitHub Exploit DB Packet Storm
349514 - freebsd slashem-tty slashem-tty in the FreeBSD Ports Collection is installed with write permissions for the games group, which allows local users with group games privileges to modify slashem-tty and execute arbitrary c… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2003-1474 2008-09-6 05:37 2003-12-31 Show GitHub Exploit DB Packet Storm
349515 - cerberus ftp_server Cerberus FTP Server 2.1 stores usernames and passwords in plaintext, which could allow local users to gain access. NVD-CWE-Other
CVE-2003-1476 2008-09-6 05:37 2003-12-31 Show GitHub Exploit DB Packet Storm
349516 - microsoft mn-500_wireless_base_station The backup configuration file for Microsoft MN-500 wireless base station stores administrative passwords in plaintext, which allows local users to gain access. CWE-255
Credentials Management 		CVE-2003-1482 2008-09-6 05:37 2003-12-31 Show GitHub Exploit DB Packet Storm
349517 - clearswift mailsweeper Clearswift MAILsweeper 4.0 through 4.3.7 allows remote attackers to bypass filtering via a file attachment that contains "multiple extensions combined with large blocks of white space." CWE-20
 Improper Input Validation  		CVE-2003-1485 2008-09-6 05:37 2003-12-31 Show GitHub Exploit DB Packet Storm
349518 - snert.com mod_throttle mod_throttle 3.0 allows local users with Apache privileges to access shared memory that points to a file that is writable by the apache user, which could allow local users to gain privileges. NVD-CWE-Other
CVE-2003-1502 2008-09-6 05:37 2003-12-31 Show GitHub Exploit DB Packet Storm
349519 - mirc mirc Buffer overflow in mIRC 6.12, when the DCC get dialog window has been minimized and the user opens the minimized window, allows remote attackers to cause a denial of service (crash) via a long filena… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2003-1508 2008-09-6 05:37 2003-12-31 Show GitHub Exploit DB Packet Storm
349520 - bajie java_http_server Cross-site scripting (XSS) vulnerability in Bajie Java HTTP Server 0.95 through 0.95zxv4 allows remote attackers to inject arbitrary web script or HTML via (1) the query string to test.txt, (2) the g… CWE-79
Cross-site Scripting 		CVE-2003-1511 2008-09-6 05:37 2003-12-31 Show GitHub Exploit DB Packet Storm