Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3961	9.8	緊急 Network	マイクロソフト	Azure Logic Apps	Azure Logic Apps Elevation of Privilege Vulnerability	CWE-22 パス・トラバーサル	CVE-2026-21227	2026-02-5 15:44	2026-01-22	Show	GitHub Exploit DB Packet Storm

3962	6.1	警告 Network	マイクロソフト	Microsoft Account	Microsoft Account Spoofing Vulnerability	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-21264	2026-02-5 15:44	2026-01-22	Show	GitHub Exploit DB Packet Storm

3963	7.4	重要 Network	マイクロソフト	Azure Data Explorer	Azure Data Explorer Information Disclosure Vulnerability	CWE-200 情報漏えい	CVE-2026-21524	2026-02-5 15:44	2026-01-22	Show	GitHub Exploit DB Packet Storm

3964	6.1	警告 Network	Aquq Platform	Revive Adserver	Aquq PlatformのRevive Adserverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-21663	2026-02-5 15:44	2026-01-20	Show	GitHub Exploit DB Packet Storm

3965	6.1	警告 Network	Aquq Platform	Revive Adserver	Aquq PlatformのRevive Adserverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-21664	2026-02-5 15:44	2026-01-20	Show	GitHub Exploit DB Packet Storm

3966	9.8	緊急 Network	Anysphere	Cursor	AnysphereのCursorにおける複数の脆弱性	CWE-15 CWE-269 CWE-74 CWE-77 CWE-77 CWE-78 CWE-94	CVE-2026-22708	2026-02-5 15:44	2026-01-14	Show	GitHub Exploit DB Packet Storm

3967	6.1	警告 Local	openCryptoki Project	openCryptoki	openCryptoki ProjectのopenCryptokiにおけるバッファサイズの計算の誤りに関する脆弱性	CWE-131 正しくないバッファサイズ計算	CVE-2026-22791	2026-02-5 15:44	2026-01-13	Show	GitHub Exploit DB Packet Storm

3968	9.8	緊急 Network	cal	cal.com	calのcal.comにおける複数の脆弱性	CWE-602 CWE-639	CVE-2026-23478	2026-02-5 15:44	2026-01-13	Show	GitHub Exploit DB Packet Storm

3969	7.8	重要 Local		-	sumatrapdfreaderのSumatra PDFにおける信頼できない検索パスに関する脆弱性	Fix CWE-426 Untrusted Search Path for notepad.exe sumatrapdfreader/sumatrapdf@2762e02 GitHub CWE-426	CVE-2026-23512	2026-02-5 15:44	2026-01-14	Show	GitHub Exploit DB Packet Storm

3970	6.1	警告 Network	Lee Peuker	Movary	Lee PeukerのMovaryにおける複数の脆弱性	CWE-20 CWE-79	CVE-2026-23839	2026-02-5 15:44	2026-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348771	-	mozilla	bugzilla	Bugzilla 2.10 allows remote attackers to execute arbitrary commands via shell metacharacters in a username that is then processed by (1) the Bugzilla_login cookie in post_bug.cgi, or (2) the who para…	NVD-CWE-Other	CVE-2001-0329	2008-09-11 04:07	2001-06-27	Show	GitHub Exploit DB Packet Storm

348772	-	imatix	xitami	Xitami 2.5d4 and earlier allows remote attackers to crash the server via an HTTP request to the /aux directory.	NVD-CWE-Other	CVE-2001-0391	2008-09-11 04:07	2001-07-2	Show	GitHub Exploit DB Packet Storm

348773	-	qpc_software	qvt_net qvt_term_plus	Buffer overflow in QPC QVT/Net Popd 4.20 in QVT/Net 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via (1) a long username, or (2) a long password.	NVD-CWE-Other	CVE-2001-0443	2008-09-11 04:07	2001-07-2	Show	GitHub Exploit DB Packet Storm

348774	-	xavier_ducrohet	felix	Felix IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.	NVD-CWE-Other	CVE-2000-1150	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

348775	-	abisoft	baxter	Baxter IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.	NVD-CWE-Other	CVE-2000-1151	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

348776	-	kenny_carruthers	postmaster	PostMaster 1.0 in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.	NVD-CWE-Other	CVE-2000-1153	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

348777	-	joe_kloss	robinhood	RHConsole in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request.	NVD-CWE-Other	CVE-2000-1154	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

348778	-	joe_kloss	robinhood	RHDaemon in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request.	NVD-CWE-Other	CVE-2000-1155	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

348779	-	nec	socks_5	Buffer overflow in socks5 server on Linux allows attackers to execute arbitrary commands via a long connection request.	NVD-CWE-Other	CVE-2000-1183	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm

348780	-	i-soft	quikstore	Directory traversal vulnerability in Quikstore shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "page" parameter.	NVD-CWE-Other	CVE-2000-1188	2008-09-11 04:06	2001-01-9	Show	GitHub Exploit DB Packet Storm