Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3581 8.1 重要
Network 		Qode Interactive Lekker Qode InteractiveのWordPress用LekkerにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-69034 2026-02-2 19:30 2025-12-30 Show GitHub Exploit DB Packet Storm
3582 5.4 警告
Network 		remyandrade Domain Availability Checker Using PHP and JavaScript with Source Code Remy AndradeのDomain Availability Checker Using PHP and JavaScript with Source Codeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-70458 2026-02-2 19:30 2026-01-23 Show GitHub Exploit DB Packet Storm
3583 6.1 警告
Network 		fahadmahmood External Store for Shopify fahadmahmoodのWordPress用External Store for Shopifyにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-7808 2026-02-2 19:29 2025-08-14 Show GitHub Exploit DB Packet Storm
3584 9.8 緊急
Network 		Cockroach Labs cockroach-k8s-request-cert Cockroach Labsのcockroach-k8s-request-certにおける設定ファイル内の空のパスワードに関する脆弱性 CWE-258
設定ファイル内に空のパスワード 		CVE-2025-9276 2026-02-2 19:29 2025-09-2 Show GitHub Exploit DB Packet Storm
3585 7.5 重要
Network 		lfprojects MCP TypeScript SDK lfprojectsのMCP TypeScript SDKにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-0621 2026-02-2 19:29 2026-01-5 Show GitHub Exploit DB Packet Storm
3586 7.5 重要
Network 		TOTOLINK WA1200-PoE Firmware
WA1200-PoE 		TOTOLINK等の複数ベンダの製品における複数の脆弱性 CWE-404
CWE-476
CWE-476
CVE-2026-0731 2026-02-2 19:29 2026-01-8 Show GitHub Exploit DB Packet Storm
3587 7.8 重要
Local 		Google SentencePiece GoogleのSentencePieceにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-1260 2026-02-2 19:29 2026-01-22 Show GitHub Exploit DB Packet Storm
3588 7.2 重要
Network 		D-Link Systems, Inc. DCS-700L Firmware D-Link CorporationのDCS-700L Firmwareにおける複数の脆弱性 CWE-74
CWE-77
CWE-77
CVE-2026-1419 2026-02-2 19:29 2026-01-26 Show GitHub Exploit DB Packet Storm
3589 6.5 警告
Adjacent 		UI UniFi Connect EV Station Lite Firmware UIのUniFi Connect EV Station Lite Firmwareにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-21635 2026-02-2 19:29 2026-01-5 Show GitHub Exploit DB Packet Storm
3590 8.2 重要
Network 		Shopify Remix
React Router 		ShopifyのReact Router等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21884 2026-02-2 19:29 2026-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350741 - trend_micro interscan_viruswall Buffer overflow in (1) HttpSaveCVP.dll and (2) HttpSaveCSP.dll in Trend Micro InterScan VirusWall 3.5.1 allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2001-1574 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
350742 - caldera unixware Buffer overflow in cron in Caldera UnixWare 7 allows local users to execute arbitrary code via a command line argument. NVD-CWE-Other
CVE-2001-1576 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
350743 - sco openserver Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors. NVD-CWE-Other
CVE-2001-1578 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
350744 - sco open_unix
unixware 		The timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0 does not properly terminate certain strings with a null, which allows remote attackers to cause a denial of service. NVD-CWE-Other
CVE-2001-1579 2008-09-6 05:26 2001-12-31 Show GitHub Exploit DB Packet Storm
350745 - sgi irix Buffer overflow in SNMP daemon (snmpd) on SGI IRIX 6.5 through 6.5.15m allows remote attackers to execute arbitrary code via an SNMP request. NVD-CWE-Other
CVE-2002-0017 2008-09-6 05:26 2002-04-3 Show GitHub Exploit DB Packet Storm
350746 - yahoo messenger Buffer overflows in Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary code via a ymsgr URI with long arguments to (1) call, (2) sendim, (3) getimv, (4) chat, (5) ad… NVD-CWE-Other
CVE-2002-0031 2008-09-6 05:26 2002-07-26 Show GitHub Exploit DB Packet Storm
350747 - compaq insight_manager_xe Buffer overflow in Compaq Insight Manager XE 2.1b and earlier allows remote attackers to execute arbitrary code via (1) SNMP and (2) DMI. NVD-CWE-Other
CVE-2001-0840 2008-09-6 05:25 2001-12-6 Show GitHub Exploit DB Packet Storm
350748 - cisco 12000_router Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could al… NVD-CWE-Other
CVE-2001-0866 2008-09-6 05:25 2001-12-6 Show GitHub Exploit DB Packet Storm
350749 - oracle database_server dbsnmp in Oracle 8.0.5 and 8.1.5, under certain conditions, trusts the PATH environment variable to find and execute the (1) chown or (2) chgrp commands, which allows local users to execute arbitrary… NVD-CWE-Other
CVE-2001-0943 2008-09-6 05:25 2001-08-31 Show GitHub Exploit DB Packet Storm
350750 - glftpd glftpd glFTPD 1.23 allows remote attackers to cause a denial of service (CPU consumption) via a LIST command with an argument that contains a large number of * (asterisk) characters. NVD-CWE-Other
CVE-2001-0965 2008-09-6 05:25 2001-08-31 Show GitHub Exploit DB Packet Storm