Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3851	3.9	低 Physics	サムスン	android	サムスンのAndroidにおける不特定の脆弱性	CWE-Other その他	CVE-2024-49422	2026-02-4 18:39	2024-12-31	Show	GitHub Exploit DB Packet Storm

3852	7.8	重要 Local	Lenovo	PCManager	LenovoのPCManagerにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2025-10581	2026-02-4 18:38	2025-10-15	Show	GitHub Exploit DB Packet Storm

3853	8.1	重要 Network	Zoho Corporation	ManageEngine Password Manager Pro ManageEngine PAM360 ManageEngine Access Manager Plus	Zoho CorporationのManageEngine Access Manager Plus等の複数製品における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-11669	2026-02-4 18:38	2026-01-13	Show	GitHub Exploit DB Packet Storm

3854	5.3	警告 Network	Python Software Foundation	Python	Python Software FoundationのPythonにおける不正な型変換に関する脆弱性	CWE-704 不正な型変換またはキャスト	CVE-2025-12781	2026-02-4 18:38	2026-01-21	Show	GitHub Exploit DB Packet Storm

3855	7.5	重要 Network	GNU Project	GNU Libtasn1	GNU ProjectのGNU Libtasn1における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2025-13151	2026-02-4 18:38	2026-01-7	Show	GitHub Exploit DB Packet Storm

3856	9.8	緊急 Network	Patrick Mvuma	Patients Waiting Area Queue Management System	Patrick MvumaのPatients Waiting Area Queue Management Systemにおける複数の脆弱性	CWE-74 CWE-89 CWE-89	CVE-2025-13248	2026-02-4 18:38	2025-11-16	Show	GitHub Exploit DB Packet Storm

3857	9.8	緊急 Network	admerc	Online Cake Ordering System in PHP Project With Source Code	Adrian MercurioのOnline Cake Ordering System in PHP Project With Source Codeにおける複数の脆弱性	CWE-74 CWE-89 CWE-89	CVE-2025-14650	2026-02-4 18:38	2025-12-14	Show	GitHub Exploit DB Packet Storm

3858	9.8	緊急 Network	admerc	Online Cake Ordering System in PHP Project With Source Code	Adrian MercurioのOnline Cake Ordering System in PHP Project With Source Codeにおける複数の脆弱性	CWE-74 CWE-89 CWE-89	CVE-2025-14832	2026-02-4 18:38	2025-12-17	Show	GitHub Exploit DB Packet Storm

3859	6.2	警告 Local	サムスン	Wear OS	サムスンのWear OSにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-20910	2026-02-4 18:38	2025-03-6	Show	GitHub Exploit DB Packet Storm

3860	4.4	警告 Local	サムスン	Wear OS	サムスンのWear OSにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-20911	2026-02-4 18:38	2025-03-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348841	-	michael_a._gumienny	fcheck	fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck.	NVD-CWE-Other	CVE-2000-0296	2008-09-11 04:04	2000-03-31	Show	GitHub Exploit DB Packet Storm

348842	-	allaire	forums	Allaire Forums 2.0.5 allows remote attackers to bypass access restrictions to secure conferences via the rightAccessAllForums or rightModerateAllForums variables.	NVD-CWE-Other	CVE-2000-0297	2008-09-11 04:04	2000-04-3	Show	GitHub Exploit DB Packet Storm

348843	-	apple	webobjects	Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote attackers to cause a denial of service via an HTTP request with long headers such as Accept.	NVD-CWE-Other	CVE-2000-0299	2008-09-11 04:04	2000-04-4	Show	GitHub Exploit DB Packet Storm

348844	-	id_software	quake_3_arena	Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (..) attack.	NVD-CWE-Other	CVE-2000-0303	2008-09-11 04:04	2000-05-3	Show	GitHub Exploit DB Packet Storm

348845	-	openbsd	openbsd	The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service.	NVD-CWE-Other	CVE-2000-0309	2008-09-11 04:04	2001-03-12	Show	GitHub Exploit DB Packet Storm

348846	-	openbsd	openbsd	IP fragment assembly in OpenBSD 2.4 allows a remote attacker to cause a denial of service by sending a large number of fragmented packets.	NVD-CWE-Other	CVE-2000-0310	2008-09-11 04:04	2001-03-12	Show	GitHub Exploit DB Packet Storm

348847	-	openbsd	openbsd	Vulnerability in OpenBSD 2.6 allows a local user to change interface media configurations.	NVD-CWE-Other	CVE-2000-0313	2008-09-11 04:04	2001-03-12	Show	GitHub Exploit DB Packet Storm

348848	-	atrium_software	mercur_mailserver	Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot (..) attack.	NVD-CWE-Other	CVE-2000-0318	2008-09-11 04:04	2000-04-21	Show	GitHub Exploit DB Packet Storm

348849	-	icradius	icradius	Buffer overflow in IC Radius package allows a remote attacker to cause a denial of service via a long user name.	NVD-CWE-Other	CVE-2000-0321	2008-09-11 04:04	2000-04-24	Show	GitHub Exploit DB Packet Storm

348850	-	on_technology	meeting_maker	Meeting Maker uses weak encryption (a polyalphabetic substitution cipher) for passwords, which allows remote attackers to sniff and decrypt passwords for Meeting Maker accounts.	NVD-CWE-Other	CVE-2000-0326	2008-09-11 04:04	2000-04-25	Show	GitHub Exploit DB Packet Storm