Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4191 7.2 重要
Network 		アルバネットワークス株式会社 SD-WAN
ArubaOS 		アルバネットワークス株式会社のArubaOS等の複数製品におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-44872 2026-05-15 10:54 2026-05-12 Show GitHub Exploit DB Packet Storm
4192 5.5 警告
Local 		ubuntu libefiboot ubuntuのlibefibootにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-6862 2026-05-15 10:54 2026-04-22 Show GitHub Exploit DB Packet Storm
4193 9.6 緊急
Network 		Ivanti Xtraction IvantiのXtractionにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-8043 2026-05-15 10:54 2026-05-12 Show GitHub Exploit DB Packet Storm
4194 7.5 重要
Network 		pillarjs multiparty pillarjsのmultipartyにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-8159 2026-05-15 10:54 2026-05-12 Show GitHub Exploit DB Packet Storm
4195 7.5 重要
Network 		pillarjs multiparty pillarjsのmultipartyにおける複数の脆弱性 CWE-1321
CWE-248
CVE-2026-8161 2026-05-15 10:53 2026-05-12 Show GitHub Exploit DB Packet Storm
4196 7.5 重要
Network 		pillarjs multiparty pillarjsのmultipartyにおける例外的な状態の処理に関する脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2026-8162 2026-05-15 10:53 2026-05-12 Show GitHub Exploit DB Packet Storm
4197 5.3 警告
Network 		Leon Timmermans Crypt::Argon2 Leon TimmermansのCrypt::Argon2における複数の脆弱性 CWE-126
CWE-191
CVE-2026-8463 2026-05-15 10:53 2026-05-13 Show GitHub Exploit DB Packet Storm
4198 7.2 重要
Network 		IBM IBM Security Verify Directory IBMのIBM Security Verify Directoryにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2025-36074 2026-05-15 10:53 2026-04-23 Show GitHub Exploit DB Packet Storm
4199 8.8 重要
Local 		- アップルのmacOSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-43524 2026-05-15 10:53 2026-05-12 Show GitHub Exploit DB Packet Storm
4200 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2025-71287 2026-05-15 10:53 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345161 - nathan_purciful phpphotoalbum getalbum.php in PhotoAlbum before 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack. NVD-CWE-Other
CVE-2000-0902 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345162 - moreover.com cached_feed.cgi_script Directory traversal vulnerability in Moreover.com cached_feed.cgi script version 4.July.00 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the category or format paramete… NVD-CWE-Other
CVE-2000-0906 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345163 - samba samba Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows remote attackers to cause a denial of service by repeatedly submitting a nonstandard URL in the GET HTTP request and forcing it to restart. NVD-CWE-Other
CVE-2000-0939 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345164 - metertek pagelog.cgi Directory traversal vulnerability in Metertek pagelog.cgi allows remote attackers to read arbitrary files via a .. (dot dot) attack on the "name" or "display" parameter. NVD-CWE-Other
CVE-2000-0940 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345165 - tis internet_firewall_toolkit Format string vulnerability in x-gw in TIS Firewall Toolkit (FWTK) allows local users to execute arbitrary commands via a malformed display name. NVD-CWE-Other
CVE-2000-0950 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345166 - evolvable_corporation shambala_server Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server. NVD-CWE-Other
CVE-2000-0954 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345167 - cisco virtual_central_office_4000 Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain … NVD-CWE-Other
CVE-2000-0955 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345168 - avirt avirt_mail_server Avirt Mail 4.0 and 4.2 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long "RCPT TO" or "MAIL FROM" command. NVD-CWE-Other
CVE-2000-0971 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345169 - oracle oracle8i Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME env… NVD-CWE-Other
CVE-2000-0986 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345170 - oracle internet_directory
oracle8i 		Buffer overflow in oidldapd in Oracle 8.1.6 allow local users to gain privileges via a long "connect" command line parameter. NVD-CWE-Other
CVE-2000-0987 2017-12-19 11:29 2000-12-19 Show GitHub Exploit DB Packet Storm