Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3821	7.5	重要 Network	Html2Pdf project	Html2Pdf	Apryse Software Inc.のHTML2PDFにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2025-56589	2026-02-4 18:40	2026-01-22	Show	GitHub Exploit DB Packet Storm

3822	8.8	重要 Network	ZwiiCMS	ZwiiCMS	ZwiiCMSにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2025-57130	2026-02-4 18:40	2025-11-5	Show	GitHub Exploit DB Packet Storm

3823	5.4	警告 Network	The Starware	WorklogPRO	The StarwareのWorklogPROにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-57681	2026-02-4 18:40	2026-01-21	Show	GitHub Exploit DB Packet Storm

3824	7.5	重要 Network	ollama	ollama	ollamaにおける複数の脆弱性	CWE-20 CWE-400	CVE-2025-66959	2026-02-4 18:40	2026-01-21	Show	GitHub Exploit DB Packet Storm

3825	7.5	重要 Network	ollama	ollama	ollamaにおける複数の脆弱性	CWE-20 CWE-400	CVE-2025-66960	2026-02-4 18:40	2026-01-21	Show	GitHub Exploit DB Packet Storm

3826	7.5	重要 Network	Absolute Software	secure access	Absolute Softwareのsecure accessにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-0517	2026-02-4 18:40	2026-01-17	Show	GitHub Exploit DB Packet Storm

3827	4.8	警告 Network	Absolute Software	secure access	Absolute Softwareのsecure accessにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-0518	2026-02-4 18:40	2026-01-17	Show	GitHub Exploit DB Packet Storm

3828	3.4	低 Local	Absolute Software	secure access	Absolute Softwareのsecure accessにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-0519	2026-02-4 18:39	2026-01-17	Show	GitHub Exploit DB Packet Storm

3829	8.8	重要 Network	angeljudesuarez	School Management System Project In PHP Source Code	Angel Jude Reyes SuarezのSchool Management System Project In PHP Source Codeにおける複数の脆弱性	CWE-74 CWE-89	CVE-2026-1551	2026-02-4 18:39	2026-01-29	Show	GitHub Exploit DB Packet Storm

3830	9.8	緊急 Network	angeljudesuarez	School Management System Project In PHP Source Code	Angel Jude Reyes SuarezのSchool Management System Project In PHP Source Codeにおける複数の脆弱性	CWE-74 CWE-89	CVE-2026-1589	2026-02-4 18:39	2026-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348951	-	checkpoint	firewall-1	Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection.	NVD-CWE-Other	CVE-2000-0181	2008-09-11 04:03	2000-03-11	Show	GitHub Exploit DB Packet Storm

348952	-	michael_sandrof	ircii	Buffer overflow in ircII 4.4 IRC client allows remote attackers to execute commands via the DCC chat capability.	NVD-CWE-Other	CVE-2000-0183	2008-09-11 04:03	2000-03-10	Show	GitHub Exploit DB Packet Storm

348953	-	mandrakesoft redhat	mandrake_linux linux	Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords.	NVD-CWE-Other	CVE-2000-0184	2008-09-11 04:03	2000-03-9	Show	GitHub Exploit DB Packet Storm

348954	-	realnetworks	realserver realserver_g2	RealMedia RealServer reveals the real IP address of a Real Server, even if the address is supposed to be private.	NVD-CWE-Other	CVE-2000-0185	2008-09-11 04:03	2000-03-8	Show	GitHub Exploit DB Packet Storm

348955	-	freebsd mandrakesoft redhat turbolinux	freebsd mandrake_linux linux turbolinux	Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument.	NVD-CWE-Other	CVE-2000-0186	2008-09-11 04:03	2000-02-28	Show	GitHub Exploit DB Packet Storm

348956	-	alex_heiphetz_group	ezshopper	EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters.	NVD-CWE-Other	CVE-2000-0187	2008-09-11 04:03	2000-02-27	Show	GitHub Exploit DB Packet Storm

348957	-	alex_heiphetz_group	ezshopper	EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters.	NVD-CWE-Other	CVE-2000-0188	2008-09-11 04:03	2000-02-27	Show	GitHub Exploit DB Packet Storm

348958	-	allaire	coldfusion_server	ColdFusion Server 4.x allows remote attackers to determine the real pathname of the server via an HTTP request to the application.cfm or onrequestend.cfm files.	NVD-CWE-Other	CVE-2000-0189	2008-09-11 04:03	2000-03-1	Show	GitHub Exploit DB Packet Storm

348959	-	aol	instant_messenger	AOL Instant Messenger (AIM) client allows remote attackers to cause a denial of service via a message with a malformed ASCII value.	NVD-CWE-Other	CVE-2000-0190	2008-09-11 04:03	2000-03-2	Show	GitHub Exploit DB Packet Storm

348960	-	caldera	openlinux	The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.	NVD-CWE-Other	CVE-2000-0192	2008-09-11 04:03	2000-03-5	Show	GitHub Exploit DB Packet Storm