Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3881	6.5	警告 Network	Pterodactyl	Wings	PterodactylのWingsにおける複数の脆弱性	CWE-400 CWE-770 CWE-770	CVE-2025-69199	2026-02-4 18:37	2026-01-19	Show	GitHub Exploit DB Packet Storm

3882	9.8	緊急 Network	fabianros	Mobile Shop Management System In PHP With Source Code	Fabian RosのMobile Shop Management System In PHP With Source Codeにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2025-69564	2026-02-4 18:37	2026-01-27	Show	GitHub Exploit DB Packet Storm

3883	6.5	警告 Network	PHPGurukul	Online Course Registration	PHPGurukulのOnline Course Registrationにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2025-70899	2026-02-4 18:37	2026-01-22	Show	GitHub Exploit DB Packet Storm

3884	7.3	重要 Local	Lenovo	app store	Lenovoのapp storeにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-8485	2026-02-4 18:37	2025-11-12	Show	GitHub Exploit DB Packet Storm

3885	7.8	重要 Local	Lenovo	PCManager	LenovoのPCManagerにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2025-8486	2026-02-4 18:37	2025-10-15	Show	GitHub Exploit DB Packet Storm

3886	4.9	警告 Network	M-Files	M-Files Server	M-FilesのM-Files Serverにおける入力の構文的正当性の検証に関する脆弱性	CWE-1286 入力の構文的正当性の不適切な検証	CVE-2026-0663	2026-02-4 18:37	2026-01-21	Show	GitHub Exploit DB Packet Storm

3887	6.1	警告 Network	plantuml	plantuml	plantumlにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-0858	2026-02-4 18:37	2026-01-16	Show	GitHub Exploit DB Packet Storm

3888	9.8	緊急 Network	itsourcecode	School Management System	itsourcecodeのSchool Management Systemにおける複数の脆弱性	CWE-74 CWE-89	CVE-2026-1176	2026-02-4 18:37	2026-01-19	Show	GitHub Exploit DB Packet Storm

3889	4.6	警告 Local	Esri	ArcGIS Pro	EsriのArcGIS Proにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-1446	2026-02-4 18:37	2026-01-26	Show	GitHub Exploit DB Packet Storm

3890	6.1	警告 Network	NHN Japan	billboard.js	NHN Japanのbillboard.jsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-1513	2026-02-4 18:37	2026-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348901	-	metaproducts	offline_explorer	MetaProducts Offline Explorer 1.2 and earlier allows remote attackers to access arbitrary files via a .. (dot dot) attack.	NVD-CWE-Other	CVE-2000-0436	2008-09-11 04:04	2000-05-19	Show	GitHub Exploit DB Packet Storm

348902	-	network_associates	gauntlet_firewall webshield webshield_e-ppliance	Buffer overflow in the CyberPatrol daemon "cyberdaemon" used in gauntlet and WebShield allows remote attackers to cause a denial of service or execute arbitrary commands.	NVD-CWE-Other	CVE-2000-0437	2008-09-11 04:04	2000-05-18	Show	GitHub Exploit DB Packet Storm

348903	-	caldera slackware suse turbolinux	openlinux slackware_linux suse_linux turbolinux	Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.	NVD-CWE-Other	CVE-2000-0438	2008-09-11 04:04	2000-05-22	Show	GitHub Exploit DB Packet Storm

348904	-	freebsd netbsd	freebsd netbsd	NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option.	NVD-CWE-Other	CVE-2000-0440	2008-09-11 04:04	2000-05-1	Show	GitHub Exploit DB Packet Storm

348905	-	ibm	aix	Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.	NVD-CWE-Other	CVE-2000-0441	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm

348906	-	qualcomm sun	qpopper cobalt_raq_2 cobalt_raq_3i	Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command.	NVD-CWE-Other	CVE-2000-0442	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm

348907	-	hp	jetadmin	The web interface server in HP Web JetAdmin 5.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.	NVD-CWE-Other	CVE-2000-0443	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm

348908	-	hp	jetadmin	HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000.	NVD-CWE-Other	CVE-2000-0444	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm

348909	-	pgp	pgp	The pgpk command in PGP 5.x on Unix systems uses an insufficiently random data source for non-interactive key pair generation, which may produce predictable keys.	NVD-CWE-Other	CVE-2000-0445	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm

348910	-	marty_bochane	mdbms	Buffer overflow in MDBMS database server allows remote attackers to execute arbitrary commands via a long string.	NVD-CWE-Other	CVE-2000-0446	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm