Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3691	5	警告 Network	Weblate	Weblate	Weblateにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40256	2026-04-23 10:10	2026-04-15	Show	GitHub Exploit DB Packet Storm

3692	7.8	重要 Local	Debian LibTIFF レッドハット	LibTIFF Red Hat Enterprise Linux Red Hat Hardened Images Debian GNU/Linux	Debian等の複数ベンダの製品における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-4775	2026-04-23 10:10	2026-03-24	Show	GitHub Exploit DB Packet Storm

3693	5.5	警告 Local	freedesktop.org レッドハット	Polkit Red Hat OpenShift Container Platform Red Hat Enterprise Linux	freedesktop.org等の複数ベンダの製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-4897	2026-04-23 10:10	2026-03-26	Show	GitHub Exploit DB Packet Storm

3694	9.9	緊急 Network	レッドハット	openshift ai	レッドハットのopenshift aiにおける送信データへの重要な情報の挿入に関する脆弱性	CWE-201 送信データへの重要な情報の挿入	CVE-2026-5483	2026-04-23 10:10	2026-04-10	Show	GitHub Exploit DB Packet Storm

3695	7.5	重要 Network	ザイオソフト株式会社	Ziostation2	Ziostation2におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40062	2026-04-22 14:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

3696	7.8	重要 Local	ジャパンメディアシステム株式会社	Windows PC用LiveOn Meetクライアントインストーラキヤノンネットワークカメラ用プラグインインストーラ	LiveOn MeetのWindows PC用クライアントインストーラおよびプラグインインストーラにおける任意のDLL読み込みの脆弱性	CWE-Other その他	CVE-2026-32679	2026-04-22 14:08	2026-04-22	Show	GitHub Exploit DB Packet Storm

3697	6.1	警告 Network	DeepL	DeepL	DeepL Chrome拡張機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40451	2026-04-22 12:06	2026-04-22	Show	GitHub Exploit DB Packet Storm

3698	9.9	緊急 Network	Percona	Percona Monitoring and Management	PerconaのPercona Monitoring and Managementにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2026-25212	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

3699	9.8	緊急 Network	Progress Software Corporation	ShareFile Storage Zone Controller	Progress Software CorporationのShareFile Storage Zone Controllerにおける複数の脆弱性	CWE-284 CWE-698 CWE-noinfo	CVE-2026-2699	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

3700	8.8	重要 Network	Progress Software Corporation	ShareFile Storage Zone Controller	Progress Software CorporationのShareFile Storage Zone Controllerにおける複数の脆弱性	CWE-434 CWE-434 CWE-78 CWE-94	CVE-2026-2701	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347561	-	aftpd	aftpd	AFTPD 5.4.4 allows remote attackers to gain sensitive information via a CD (CWD) ~ (tilde) command, which causes a core dump.	NVD-CWE-Other	CVE-2002-0104	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

347562	-	caldera	unixware	CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable.	NVD-CWE-Other	CVE-2002-0105	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

347563	-	bea	weblogic_server	BEA Systems Weblogic Server 6.1 allows remote attackers to cause a denial of service via a series of requests to .JSP files that contain an MS-DOS device name.	NVD-CWE-Other	CVE-2002-0106	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

347564	-	cacheflow	cacheos	Web administration interface in CacheFlow CacheOS 4.0.13 and earlier allows remote attackers to obtain sensitive information via a series of GET requests that do not end in with HTTP/1.0 or another v…	NVD-CWE-Other	CVE-2002-0107	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

347565	-	linksys	befn2ps4 befsr41 befsr81	Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, and possibly other products, allow remote attackers to gain sensitive information and cause a denial of service via an SNMP query for the def…	NVD-CWE-Other	CVE-2002-0109	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

347566	-	nevrona_designs	miramail	Nevrona Designs MiraMail 1.04 and earlier stores authentication information such as POP usernames and passwords in plaintext in a .ini file, which allows an attacker to gain privileges by reading the…	NVD-CWE-Other	CVE-2002-0110	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

347567	-	funsoft	dinos_webserver	Directory traversal vulnerability in Funsoft Dino's Webserver 1.2 and earlier allows remote attackers to read files or execute arbitrary commands via a .. (dot dot) in the URL.	NVD-CWE-Other	CVE-2002-0111	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

347568	-	etype	eserv	Etype Eserv 2.97 allows remote attackers to view password protected files via /./ in the URL.	NVD-CWE-Other	CVE-2002-0112	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

347569	-	palm	palm_os	Palm OS 3.5h and possibly other versions, as used in Handspring Visor and Xircom products, allows remote attackers to cause a denial of service via a TCP connect scan, e.g. from nmap.	NVD-CWE-Other	CVE-2002-0116	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

347570	-	efax	efax	efax 0.9 and earlier, when installed setuid root, allows local users to read arbitrary files via the -d option, which prints the contents of the file in a warning message.	NVD-CWE-Other	CVE-2002-0129	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed