Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3911 9.1 緊急
Network 		OPNsense project OPNsense OPNsenseにおける引数の挿入または変更に関する脆弱性 CWE-88
引数の挿入または変更 		CVE-2026-45158 2026-05-18 11:24 2026-05-13 Show GitHub Exploit DB Packet Storm
3912 5.3 警告
Network 		Apache Software Foundation Apache Commons Configuration Apache Software FoundationのApache Commons Configurationにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-45205 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
3913 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-4524 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
3914 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-4527 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
3915 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-6063 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
3916 5.4 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-6073 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
3917 5.4 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-6335 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
3918 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-6883 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
3919 9.8 緊急
Network 		libexpat project libexpat libexpat projectのlibexpatにおけるエントロピー不足に関する脆弱性 CWE-331
エントロピー不足 		CVE-2026-7210 2026-05-18 11:24 2026-05-11 Show GitHub Exploit DB Packet Storm
3920 8.8 重要
Adjacent 		ZyXEL WRE6505 ファームウェア ZyXELのWRE6505 ファームウェアにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-7256 2026-05-18 11:24 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345281 - eeye_digital_security securells eEye SecureIIS versions 1.0.3 and earlier does not perform length checking on individual HTTP headers, which allows a remote attacker to send arbitrary length strings to IIS, contrary to an advertise… NVD-CWE-Other
CVE-2001-0524 2017-12-19 11:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345282 - t._hauck jana_web_server T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e). NVD-CWE-Other
CVE-2001-0557 2017-12-19 11:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345283 - drummond_miles a1stats Directory traversal vulnerability in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in (1) a1disp2.cgi, (2) a1disp3.cgi, or (3) a1dis… NVD-CWE-Other
CVE-2001-0561 2017-12-19 11:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345284 - drummond_miles a1stats a1disp.cgi program in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to execute commands via a specially crafted URL which includes shell metacharacters. NVD-CWE-Other
CVE-2001-0562 2017-12-19 11:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345285 - cisco catalyst_2900 Cisco Catalyst 2900XL switch allows a remote attacker to create a denial of service via an empty UDP packet sent to port 161 (SNMP) when SNMP is disabled. CWE-20
 Improper Input Validation  		CVE-2001-0566 2017-12-19 11:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345286 - minicom minicom minicom 1.83.1 and earlier allows a local attacker to gain additional privileges via numerous format string attacks. NVD-CWE-Other
CVE-2001-0570 2017-12-19 11:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345287 - sco openserver Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut. NVD-CWE-Other
CVE-2001-0575 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm
345288 - sco openserver lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additional privileges via a buffer overflow attack in the '-u' command line parameter. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2001-0576 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm
345289 - sco openserver recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first command line argument. NVD-CWE-Other
CVE-2001-0577 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm
345290 - sco openserver Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command. NVD-CWE-Other
CVE-2001-0578 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm