Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3661	9.8	緊急 Network	admerc	Online Cake Ordering System in PHP Project With Source Code	Adrian MercurioのOnline Cake Ordering System in PHP Project With Source Codeにおける複数の脆弱性	CWE-74 CWE-89 CWE-89	CVE-2025-14650	2026-02-4 18:38	2025-12-14	Show	GitHub Exploit DB Packet Storm

3662	9.8	緊急 Network	admerc	Online Cake Ordering System in PHP Project With Source Code	Adrian MercurioのOnline Cake Ordering System in PHP Project With Source Codeにおける複数の脆弱性	CWE-74 CWE-89 CWE-89	CVE-2025-14832	2026-02-4 18:38	2025-12-17	Show	GitHub Exploit DB Packet Storm

3663	6.2	警告 Local	サムスン	Wear OS	サムスンのWear OSにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-20910	2026-02-4 18:38	2025-03-6	Show	GitHub Exploit DB Packet Storm

3664	4.4	警告 Local	サムスン	Wear OS	サムスンのWear OSにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-20911	2026-02-4 18:38	2025-03-6	Show	GitHub Exploit DB Packet Storm

3665	6.2	警告 Local	サムスン	Wear OS	サムスンのWear OSにおける重要な情報のセキュアでない格納に関する脆弱性	CWE-922 重要な情報のセキュアでない格納	CVE-2025-20912	2026-02-4 18:38	2025-03-6	Show	GitHub Exploit DB Packet Storm

3666	5.5	警告 Local	サムスン	android	サムスンのAndroidにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-20952	2026-02-4 18:38	2025-04-9	Show	GitHub Exploit DB Packet Storm

3667	6.2	警告 Local	サムスン	Wear OS	サムスンのWear OSにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-20984	2026-02-4 18:38	2025-06-4	Show	GitHub Exploit DB Packet Storm

3668	5.5	警告 Local	サムスン	Wear OS	サムスンのWear OSにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-20986	2026-02-4 18:38	2025-06-4	Show	GitHub Exploit DB Packet Storm

3669	7.8	重要 Local	Lenovo	PCManager	LenovoのPCManagerにおける信頼できない検索パスに関する脆弱性	CWE-426 信頼性のない検索パス	CVE-2025-2501	2026-02-4 18:38	2025-05-30	Show	GitHub Exploit DB Packet Storm

3670	7.8	重要 Local	Lenovo	PCManager	LenovoのPCManagerにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-2502	2026-02-4 18:38	2025-05-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349181	-	yamt	yamt	Multiple buffer overflows in YaMT before 0.5_2 allow attackers to execute arbitrary code via the (1) rename or (2) sort options.	NVD-CWE-Other	CVE-2005-1847	2008-09-6 05:50	2005-01-20	Show	GitHub Exploit DB Packet Storm

349182	-	phystech	dhcpcd	The dhcpcd DHCP client before 1.3.22 allows remote attackers to cause a denial of service (daemon crash) via unknown vectors that cause an out-of-bounds memory read.	NVD-CWE-Other	CVE-2005-1848	2008-09-6 05:50	2005-07-11	Show	GitHub Exploit DB Packet Storm

349183	-	university_of_minnesota	gopher	gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.	NVD-CWE-Other	CVE-2005-1853	2008-09-6 05:50	2005-08-3	Show	GitHub Exploit DB Packet Storm

349184	-	sukria debian	backup_manager debian_linux	Backup Manager (backup-manager) before 0.5.8 creates backup files with world-readable default permissions, which allows local users to obtain sensitive information.	NVD-CWE-Other	CVE-2005-1855	2008-09-6 05:50	2005-08-30	Show	GitHub Exploit DB Packet Storm

349185	-	-	-	The CD-burning feature in backup-manager 0.5.8 and earlier uses a fixed filename in a world-writable directory for logging, which allows local users to overwrite files via a symlink attack.	NVD-CWE-Other	CVE-2005-1856	2008-09-6 05:50	2005-08-30	Show	GitHub Exploit DB Packet Storm

349186	-	fuse	fuse	FUSE 2.x before 2.3.0 does not properly clear previously used memory from unfilled pages when the filesystem returns a short byte count to a read request, which may allow local users to obtain sensit…	NVD-CWE-Other	CVE-2005-1858	2008-09-6 05:50	2005-06-3	Show	GitHub Exploit DB Packet Storm

349187	-	vincent_hor	calendarix_advanced	PHP remote file inclusion vulnerability in cal_admintop.php in Calendarix Advanced 1.5 allows remote attackers to execute arbitrary PHP code via the calpath parameter.	NVD-CWE-Other	CVE-2005-1864	2008-09-6 05:50	2005-06-9	Show	GitHub Exploit DB Packet Storm

349188	-	vincent_hor	calendarix_advanced	Cross-site scripting (XSS) vulnerability in calendar.php in Calendarix Advanced 1.5 allows remote attackers to inject arbitrary web script or HTML via the year parameter.	NVD-CWE-Other	CVE-2005-1866	2008-09-6 05:50	2005-05-31	Show	GitHub Exploit DB Packet Storm

349189	-	lpanel	lpanel	Cross-site scripting (XSS) vulnerability in view_ticket.php in Lpanel 1.59 and earlier allows remote attackers to inject arbitrary web script or HTML and obtain sensitive information via the pid para…	NVD-CWE-Other	CVE-2005-1877	2008-09-6 05:50	2005-06-6	Show	GitHub Exploit DB Packet Storm

349190	-	giptables	giptables_firewall	GIPTables Firewall 1.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the temp.ip.addresses temporary file.	NVD-CWE-Other	CVE-2005-1878	2008-09-6 05:50	2005-06-9	Show	GitHub Exploit DB Packet Storm