Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3991	8.8	重要 Network	Belkin International	F9K1015 ファームウェア	Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5614	2026-05-1 10:44	2026-04-6	Show	GitHub Exploit DB Packet Storm

3992	8.8	重要 Network	Belkin International	F9K1015 ファームウェア	Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5628	2026-05-1 10:44	2026-04-6	Show	GitHub Exploit DB Packet Storm

3993	8.8	重要 Network	Belkin International	F9K1015 ファームウェア	Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5629	2026-05-1 10:44	2026-04-6	Show	GitHub Exploit DB Packet Storm

3994	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC15 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC15 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5830	2026-05-1 10:44	2026-04-9	Show	GitHub Exploit DB Packet Storm

3995	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	Tenda i3 Firmware	Shenzhen Tenda Technology Co.,Ltd.のTenda i3 Firmwareにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-5841	2026-05-1 10:44	2026-04-9	Show	GitHub Exploit DB Packet Storm

3996	7.2	重要 Network	ディーリンクジャパン株式会社	dir-882 ファームウェア	D-Link CorporationのDIR-882 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-5844	2026-05-1 10:44	2026-04-9	Show	GitHub Exploit DB Packet Storm

3997	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	I12 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のI12 ファームウェアにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-5849	2026-05-1 10:43	2026-04-9	Show	GitHub Exploit DB Packet Storm

3998	5.5	警告 Local	Foxit	pdf editor pdf reader	Foxitのpdf editor等の複数製品におけるキャッチされない例外に関する脆弱性	CWE-248 キャッチされない例外	CVE-2026-5937	2026-05-1 10:43	2026-04-27	Show	GitHub Exploit DB Packet Storm

3999	5.5	警告 Local	Foxit	pdf editor pdf reader	Foxitのpdf editor等の複数製品における不十分な制御フロー管理に関する脆弱性	CWE-691 不十分な制御フロー管理	CVE-2026-5938	2026-05-1 10:43	2026-04-27	Show	GitHub Exploit DB Packet Storm

4000	5.5	警告 Local	Foxit	pdf editor pdf reader	Foxitのpdf editor等の複数製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-5939	2026-05-1 10:43	2026-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346031	-	webster	webster_http_server	Directory traversal vulnerability in Webster HTTP Server allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.	CWE-22 Path Traversal	CVE-2002-2269	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346032	-	bigfun	bigfun	Buffer overflow in BigFun 1.51b IRC client, when the Direct Client Connection (DCC) option is used, allows remote attackers to cause a denial of service (crash) via a long string.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2271	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346033	-	apache	http_server tomcat	Tomcat 4.0 through 4.1.12, using mod_jk 1.2.1 module on Apache 1.3 through 1.3.27, allows remote attackers to cause a denial of service (desynchronized communications) via an HTTP GET request with a …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2272	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346034	-	webster	webster_http_server	Cross-site scripting (XSS) vulnerability in Webster HTTP Server allows remote attackers to inject arbitrary web script or HTML via the URL.	CWE-79 Cross-site Scripting	CVE-2002-2273	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346035	-	akfingerd	akfingerd	akfingerd 0.5 allows local users to read arbitrary files as the akfingerd user (nobody) via a symlink attack on the .plan file.	NVD-CWE-Other	CVE-2002-2274	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346036	-	fortres_grand_corporation	fortres	Fortres 101 4.1 allows local users to bypass Fortres by pressing the Windows and "F" key together for 30 seconds, which opens multiple windows and eventually causes explorer.exe to crash, which then …	NVD-CWE-Other	CVE-2002-2275	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346037	-	ultimate_php_board	ultimate_php_board	Ultimate PHP Board (UPB) 1.0 allows remote attackers to view the physical path of the message board via a direct request to add.php, which leaks the path in an error message.	CWE-200 Information Exposure	CVE-2002-2276	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346038	-	portail_web_php	portail_web_php	SQL injection vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to execute arbitrary SQL commands via the (1) $rech, (2) $BD_Tab_docs, (3) $BD_Tab_file, (4) $BD_Tab_lie…	CWE-89 SQL Injection	CVE-2002-2277	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346039	-	portail_web_php	portail_web_php	Cross-site scripting (XSS) vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to inject arbitrary web script or HTML via the (1) $App_Theme, (2) $Rub_Search, (3) $Rub_Ne…	CWE-79 Cross-site Scripting	CVE-2002-2278	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346040	-	aldap	aldap	Unspecified vulnerability in the bind function in config.inc of aldap 0.09 allows remote attackers to authenticate with Manager permissions.	CWE-287 Improper Authentication	CVE-2002-2279	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed