Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4131 5.4 警告
Network 		WSO2 WSO2 Identity Server WSO2のWSO2 Identity Serverにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2025-12624 2026-04-24 11:34 2026-04-16 Show GitHub Exploit DB Packet Storm
4132 8.2 重要
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2025-31958 2026-04-24 11:34 2026-04-21 Show GitHub Exploit DB Packet Storm
4133 5.3 警告
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)における重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2025-31981 2026-04-24 11:34 2026-04-21 Show GitHub Exploit DB Packet Storm
4134 6.1 警告
Network 		WSO2 WSO2 API Manager
WSO2 Identity Server 		WSO2のWSO2 API Manager等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-6024 2026-04-24 11:34 2026-04-16 Show GitHub Exploit DB Packet Storm
4135 6.5 警告
Network 		フォーティネット FortiOS
FortiPAM
FortiProxy
FortiSwitch Manager 		フォーティネットのFortiOS等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-61624 2026-04-24 11:34 2026-04-14 Show GitHub Exploit DB Packet Storm
4136 5.4 警告
Network 		フォーティネット FortiSandbox
FortiSandbox Cloud 		フォーティネットのFortiSandbox等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-61886 2026-04-24 11:34 2026-04-14 Show GitHub Exploit DB Packet Storm
4137 5.3 警告
Network 		Apache Software Foundation Apache Doris-MCP-Server Apache Software FoundationのApache Doris-MCP-ServerにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-66335 2026-04-24 11:34 2026-04-20 Show GitHub Exploit DB Packet Storm
4138 6.5 警告
Network 		フォーティネット FortiManager Cloud
FortiAnalyzer
FortiAnalyzer Cloud
FortiManager 		フォーティネットのFortiAnalyzer等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-68649 2026-04-24 11:34 2026-04-14 Show GitHub Exploit DB Packet Storm
4139 8.4 重要
Local 		Nitro Software Inc. Nitro PDF Pro Nitro Software Inc.のNitro PDF Proにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2025-69627 2026-04-24 11:34 2026-04-13 Show GitHub Exploit DB Packet Storm
4140 4.3 警告
Network 		Fortra GoAnywhere Managed File Transfer FortraのGoAnywhere Managed File Transferにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-0971 2026-04-24 11:34 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347951 - snapgear snapgear_lite\+_firewall Snapgear Lite+ firewall 1.5.3 allows remote attackers to cause a denial of service (IPSEC crash) via a zero length packet to UDP port 500. NVD-CWE-Other
CVE-2002-0603 2016-10-18 11:20 2002-06-18 Show GitHub Exploit DB Packet Storm
347952 - snapgear snapgear_lite\+_firewall Snapgear Lite+ firewall 1.5.3 and 1.5.4 allows remote attackers to cause a denial of service (crash) via a large number of packets with malformed IP options. NVD-CWE-Other
CVE-2002-0604 2016-10-18 11:20 2002-06-18 Show GitHub Exploit DB Packet Storm
347953 - macromedia flash_player Buffer overflow in Flash OCX for Macromedia Flash 6 revision 23 (6,0,23,0) allows remote attackers to execute arbitrary code via a long movie parameter. NVD-CWE-Other
CVE-2002-0605 2016-10-18 11:20 2002-06-18 Show GitHub Exploit DB Packet Storm
347954 - mandrakesoft
hp
redhat 		mandrake_single_network_firewall
secure_os
mandrake_linux
mandrake_linux_corporate_server
linux 		setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow lo… NVD-CWE-Other
CVE-2002-0638 2016-10-18 11:20 2002-08-12 Show GitHub Exploit DB Packet Storm
347955 - gator gator Gator ActiveX component (IEGator.dll) 3.0.6.1 allows remote web sites to install arbitrary software by specifying a Trojan Gator installation file (setup.ex_) in the src parameter. NVD-CWE-Other
CVE-2002-0317 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
347956 - freeradius freeradius FreeRADIUS RADIUS server allows remote attackers to cause a denial of service (CPU consumption) via a flood of Access-Request packets. NVD-CWE-Other
CVE-2002-0318 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
347957 - powie pforum Cross-site scripting vulnerability in edituser.php for pforum 1.14 and earlier allows remote attackers to execute script and steal cookies from other users via Javascript in a username. NVD-CWE-Other
CVE-2002-0319 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
347958 - yahoo messenger Buffer overflow in Yahoo! Messenger 5.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) message or (2) IMvironment field. NVD-CWE-Other
CVE-2002-0320 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
347959 - yahoo messenger Yahoo! Messenger 5.0 allows remote attackers to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks. NVD-CWE-Other
CVE-2002-0321 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm
347960 - yahoo messenger Yahoo! Messenger 4.0 sends user passwords in cleartext, which could allow remote attackers to gain privileges of other users via sniffing. NVD-CWE-Other
CVE-2002-0322 2016-10-18 11:19 2002-06-25 Show GitHub Exploit DB Packet Storm