Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3821	5.4	警告 Network	Lavalite	Lavalite	Lavaliteにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-71177	2026-02-2 19:39	2026-01-23	Show	GitHub Exploit DB Packet Storm

3822	4.2	警告 Network	Fortra	GoAnywhere Managed File Transfer	FortraのGoAnywhere Managed File Transferにおける複数の脆弱性	CWE-732 CWE-863	CVE-2025-8148	2026-02-2 19:39	2025-12-5	Show	GitHub Exploit DB Packet Storm

3823	7.5	重要 Network	TP-LINK Technologies	TL-WR841N ファームウェア	TP-LINK TechnologiesのTL-WR841N ファームウェアにおける複数の脆弱性	CWE-20 CWE-476	CVE-2025-9014	2026-02-2 19:39	2026-01-15	Show	GitHub Exploit DB Packet Storm

3824	5.5	警告 Network	Zoho Corporation	ManageEngine ADManager Plus	Zoho CorporationのManageEngine ADManager Plusにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-9435	2026-02-2 19:39	2026-01-13	Show	GitHub Exploit DB Packet Storm

3825	6.1	警告 Network	Zoho Corporation	manageengine applications manager	Zoho CorporationのManageEngine Applications Managerにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-9787	2026-02-2 19:39	2025-12-18	Show	GitHub Exploit DB Packet Storm

3826	6.1	警告 Network	ironmansoftware	powershell universal	ironmansoftwareのpowershell universalにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-0618	2026-02-2 19:39	2026-01-7	Show	GitHub Exploit DB Packet Storm

3827	8.8	重要 Network	openwebui	open webui	openwebuiのopen webuiにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-0765	2026-02-2 19:39	2026-01-23	Show	GitHub Exploit DB Packet Storm

3828	8.8	重要 Network	openwebui	open webui	openwebuiのopen webuiにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-0766	2026-02-2 19:39	2026-01-23	Show	GitHub Exploit DB Packet Storm

3829	6.5	警告 Adjacent	openwebui	open webui	openwebuiのopen webuiにおける重要な情報の平文での送信に関する脆弱性	CWE-319 重要な情報の平文での送信	CVE-2026-0767	2026-02-2 19:38	2026-01-23	Show	GitHub Exploit DB Packet Storm

3830	3.5	低 Network	gitea project	gitea	gitea projectのgiteaにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-0798	2026-02-2 19:38	2026-01-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349261	-	eric_allman bsdi caldera	sendmail bsd_os openlinux	MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.	NVD-CWE-Other	CVE-1999-0047	2008-09-9 21:33	1997-01-28	Show	GitHub Exploit DB Packet Storm

349262	-	debian ibm nec	netkit aix asl_ux_4800 ews-ux_v up-ux_v	Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges.	NVD-CWE-Other	CVE-1999-0048	2008-09-9 21:33	1997-01-27	Show	GitHub Exploit DB Packet Storm

349263	-	eric_allman freebsd hp ibm sun	vacation freebsd hp-ux vvos aix solaris sunos	Vacation program allows command execution by remote users through a sendmail command.	NVD-CWE-Other	CVE-1999-0057	2008-09-9 21:33	1998-11-16	Show	GitHub Exploit DB Packet Storm

349264	-	php	php	Buffer overflow in PHP cgi program, php.cgi allows shell access.	NVD-CWE-Other	CVE-1999-0058	2008-09-9 21:33	1997-04-17	Show	GitHub Exploit DB Packet Storm

349265	-	openbsd	openbsd	The chpass command in OpenBSD allows a local user to gain root access through file descriptor leakage.	NVD-CWE-Other	CVE-1999-0062	2008-09-9 21:33	1998-08-3	Show	GitHub Exploit DB Packet Storm

349266	-	php	php	CGI PHP mylog script allows an attacker to read any file on the target server.	NVD-CWE-Other	CVE-1999-0068	2008-09-9 21:33	1997-10-19	Show	GitHub Exploit DB Packet Storm

349267	-	washington_university	wu-ftpd	PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password.	NVD-CWE-Other	CVE-1999-0075	2008-09-9 21:33	1996-10-16	Show	GitHub Exploit DB Packet Storm

349268	-	ftp ftpcd	ftp ftpcd	CWD ~root command in ftpd allows root access.	NVD-CWE-Other	CVE-1999-0082	2008-09-9 21:33	1988-11-11	Show	GitHub Exploit DB Packet Storm

349269	-	ibm	aix	Denial of service in AIX telnet can freeze a system and prevent users from accessing the server.	NVD-CWE-Other	CVE-1999-0087	2008-09-9 21:33	1998-02-1	Show	GitHub Exploit DB Packet Storm

349270	-	bsdi freebsd sco	bsd_os freebsd internet_faststart openserver	Sendmail decode alias can be used to overwrite sensitive files.	NVD-CWE-Other	CVE-1999-0096	2008-09-9 21:33	1996-12-10	Show	GitHub Exploit DB Packet Storm