Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4121 9.9 緊急
Network 		マイクロソフト Azure Managed Instance for Apache Cassandra Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability CWE-284
不適切なアクセス制御 		CVE-2026-33109 2026-05-11 11:11 2026-05-7 Show GitHub Exploit DB Packet Storm
4122 7.5 重要
Network 		coredns.io CoreDNS The CoreDNS AuthorsのCoreDNSにおける認証アルゴリズムの不適切な実装に関する脆弱性 CWE-303
認証アルゴリズム上の問題 		CVE-2026-33190 2026-05-11 11:11 2026-05-5 Show GitHub Exploit DB Packet Storm
4123 8.8 重要
Network 		FIT2CLOUD SQLBot FIT2CLOUDのSQLBotにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-33324 2026-05-11 11:11 2026-05-5 Show GitHub Exploit DB Packet Storm
4124 5.3 警告
Network 		Daniel Garcia Vaultwarden Daniel GarciaのVaultwardenにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-33420 2026-05-11 11:11 2026-05-5 Show GitHub Exploit DB Packet Storm
4125 7.5 重要
Network 		coredns.io CoreDNS The CoreDNS AuthorsのCoreDNSにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-33489 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
4126 6.5 警告
Network 		マイクロソフト Microsoft Teams Microsoft Team Events Portal Information Disclosure Vulnerability CWE-285
不適切な認可 		CVE-2026-33823 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
4127 9 緊急
Network 		マイクロソフト Azure Managed Instance for Apache Cassandra Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability CWE-20
不適切な入力確認 		CVE-2026-33844 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
4128 8.2 重要
Network 		マイクロソフト Microsoft Partner Center Microsoft Partner Center Spoofing Vulnerability CWE-610
別領域リソースに対する外部からの制御可能な参照 		CVE-2026-34327 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
4129 5.3 警告
Network 		sandboxie-plus Sandboxie sandboxie-plusのSandboxieにおける弱いハッシュの使用に関する脆弱性 CWE-328
脆弱なハッシュの使用 		CVE-2026-34527 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
4130 6.7 警告
Local 		デル data domain operating system
PowerProtect DP Series Appliance 		デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35072 2026-05-11 11:10 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345721 - elm_development_group elm Buffer overflow in the frm command in elm 2.5.6 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code via a long Subject line. NVD-CWE-Other
CVE-2003-0966 2017-10-10 10:30 2004-02-17 Show GitHub Exploit DB Packet Storm
345722 - mpg321 mpg321 mpg321 0.2.10 allows remote attackers to overwrite memory and possibly execute arbitrary code via an mp3 file that passes certain strings to the printf function, possibly triggering a format string v… NVD-CWE-Other
CVE-2003-0969 2017-10-10 10:30 2004-01-20 Show GitHub Exploit DB Packet Storm
345723 - kde kde Buffer overflow in the VCF file information reader for KDE Personal Information Management (kdepim) suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file. NVD-CWE-Other
CVE-2003-0988 2017-10-10 10:30 2004-02-17 Show GitHub Exploit DB Packet Storm
345724 - gnu
sgi 		mailman
propack 		Unknown vulnerability in the mail command handler in Mailman before 2.0.14 allows remote attackers to cause a denial of service (crash) via malformed e-mail commands. NVD-CWE-Other
CVE-2003-0991 2017-10-10 10:30 2004-03-3 Show GitHub Exploit DB Packet Storm
345725 - debian fsp Directory traversal vulnerability in fsp before 2.81.b18 allows remote users to access files outside the FSP root directory. NVD-CWE-Other
CVE-2003-1022 2017-10-10 10:30 2004-01-20 Show GitHub Exploit DB Packet Storm
345726 - cisco pix_firewall_manager Cisco PIX firewall manager (PFM) 4.3(2)g logs the enable password in plaintext in the pfm.log file, which could allow local users to obtain the password by reading the file. NVD-CWE-Other
CVE-2001-1098 2017-10-10 10:30 2001-10-10 Show GitHub Exploit DB Packet Storm
345727 - spencer_miles w3mail sendmessage.cgi in W3Mail 1.0.2, and possibly other CGI programs, allows remote attackers to execute arbitrary commands via shell metacharacters in any field of the 'Compose Message' page. NVD-CWE-Other
CVE-2001-1100 2017-10-10 10:30 2001-10-7 Show GitHub Exploit DB Packet Storm
345728 - rhinosoft ftp_voyager FTP Voyager ActiveX control before 8.0, when it is marked as safe for scripting (the default) or if allowed by the IObjectSafety interface, allows remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2001-1103 2017-10-10 10:30 2001-03-3 Show GitHub Exploit DB Packet Storm
345729 - sambar sambar_server The default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting passwords, which could allow local users to break all user passwo… NVD-CWE-Other
CVE-2001-1106 2017-10-10 10:30 2001-07-25 Show GitHub Exploit DB Packet Storm
345730 - snapstream pvs Directory traversal vulnerability in SnapStream PVS 1.2a allows remote attackers to read arbitrary files via a .. (dot dot) attack in the requested URL. NVD-CWE-Other
CVE-2001-1108 2017-10-10 10:30 2001-07-26 Show GitHub Exploit DB Packet Storm