Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3621	9.8	緊急 Network	Grav CMS	grav	Grav CMSのgravにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2021-47812	2026-02-2 19:28	2026-01-16	Show	GitHub Exploit DB Packet Storm

3622	8.8	重要 Network	Repute Infosystems	armember	Repute InfosystemsのWordPress用armemberにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2022-47425	2026-02-2 19:28	2025-12-9	Show	GitHub Exploit DB Packet Storm

3623	7.8	重要 Local	TeamSpeak Systems GmbH	TeamSpeak	TeamSpeak Systems GmbHのTeamSpeakにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2022-50931	2026-02-2 19:28	2026-01-13	Show	GitHub Exploit DB Packet Storm

3624	7.5	重要 Network	京セラ株式会社	Command Center RX	京セラ株式会社のCommand Center RXにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2022-50932	2026-02-2 19:28	2026-01-13	Show	GitHub Exploit DB Packet Storm

3625	6.1	警告 Network	Ametys	Ametys	Ametysにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2022-50937	2026-02-2 19:28	2026-01-13	Show	GitHub Exploit DB Packet Storm

3626	7.8	重要 Local	getoutline	outline	getoutlineのoutlineにおける引用されない検索パスまたは要素に関する脆弱性	CWE-428 引用されない検索パスまたは要素	CVE-2023-54331	2026-02-2 19:28	2026-01-13	Show	GitHub Exploit DB Packet Storm

3627	6.1	警告 Network	Automattic Inc.	Jetpack	Automattic Inc.のWordPress用Jetpackにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2023-54332	2026-02-2 19:28	2026-01-13	Show	GitHub Exploit DB Packet Storm

3628	9.8	緊急 Network	explorerplusplus	explorer++	explorerplusplusのexplorer++における複数の脆弱性	CWE-121 CWE-787	CVE-2023-54334	2026-02-2 19:28	2026-01-13	Show	GitHub Exploit DB Packet Storm

3629	7.5	重要 Network	QNAP Systems	QNAP QTS QuTS hero	QNAP SystemsのQNAP QTS等の複数製品における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2024-13086	2026-02-2 19:28	2025-03-7	Show	GitHub Exploit DB Packet Storm

3630	2.7	低 Network	Palo Alto Networks	PAN-OS	Palo Alto NetworksのPAN-OSにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2024-2433	2026-02-2 19:28	2024-03-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350681	-	bzip	bzip2	bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly systems, uses the permissions of symbolic links instead of the actual files when creating an archive, which could …	NVD-CWE-Other	CVE-2002-0761	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

350682	-	hp	virtualvault	Vulnerability in administration server for HP VirtualVault 4.5 on HP-UX 11.04 allows remote web servers or privileged external processes to bypass access restrictions and establish connections to the…	NVD-CWE-Other	CVE-2002-0763	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

350683	-	phorum	phorum	Phorum 3.3.2a allows remote attackers to execute arbitrary commands via an HTTP request to (1) plugin.php, (2) admin.php, or (3) del.php that modifies the PHORUM[settings_dir] variable to point to a …	NVD-CWE-Other	CVE-2002-0764	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

350684	-	richard_gooch	simpleinit	simpleinit on Linux systems does not close a read/write FIFO file descriptor before creating a child process, which allows the child process to cause simpleinit to execute arbitrary programs with roo…	NVD-CWE-Other	CVE-2002-0767	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

350685	-	luke_mewburn suse	lukemftp suse_linux	Buffer overflow in lukemftp FTP client in SuSE 6.4 through 8.0, and possibly other operating systems, allows a malicious FTP server to execute arbitrary code via a long PASV command.	NVD-CWE-Other	CVE-2002-0768	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

350686	-	cisco	ata-186	The web-based configuration interface for the Cisco ATA 186 Analog Telephone Adaptor allows remote attackers to bypass authentication via an HTTP POST request with a single byte, which allows the att…	NVD-CWE-Other	CVE-2002-0769	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

350687	-	id_software	quake_2i_server	Quake 2 (Q2) server 3.20 and 3.21 allows remote attackers to obtain sensitive server cvar variables, obtain directory listings, and execute Q2 server admin commands via a client that does not expand …	NVD-CWE-Other	CVE-2002-0770	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

350688	-	hosting_controller	hosting_controller	Directory traversal vulnerability in dsnmanager.asp for Hosting Controller allows remote attackers to read arbitrary files and directories via a .. (dot dot) in the RootName parameter.	NVD-CWE-Other	CVE-2002-0772	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

350689	-	hosting_controller	hosting_controller	imp_rootdir.asp for Hosting Controller allows remote attackers to copy or delete arbitrary files and directories via a direct request to imp_rootdir.asp and modifying parameters such as (1) ftp, (2) …	NVD-CWE-Other	CVE-2002-0773	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

350690	-	hosting_controller	hosting_controller	Hosting Controller creates a default user AdvWebadmin with a default password, which could allow remote attackers to gain privileges if the password is not changed.	NVD-CWE-Other	CVE-2002-0774	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm