Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4301	7.2	重要 Network	LibreNMS	LibreNMS	LibreNMSにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-6204	2026-04-24 11:35	2026-04-13	Show	GitHub Exploit DB Packet Storm

4302	10	緊急 Network	ATRODO (Jon Gentle)	Net::Dropbear	ATRODO (Jon Gentle)のNet::Dropbearにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2016-6129 CVE-2018-12437 CVE-2025-15638	2026-04-24 11:35	2026-04-21	Show	GitHub Exploit DB Packet Storm

4303	9.8	緊急 Network	The Perl Foundation	Perl	The Perl FoundationのPerlにおける不特定の脆弱性	CWE-Other その他	CVE-2026-3381 CVE-2026-4176	2026-04-24 11:35	2026-03-29	Show	GitHub Exploit DB Packet Storm

4304	5.3	警告 Network	Tokuhiro Matsuno (tokuhirom)	Amon2::Plugin::Web::CSRFDefender	Tokuhiro Matsuno (tokuhirom)のAmon2::Plugin::Web::CSRFDefenderにおける複数の脆弱性	CWE-338 CWE-340	CVE-2025-15604 CVE-2026-5082	2026-04-24 11:35	2026-04-8	Show	GitHub Exploit DB Packet Storm

4305	7.5	重要 Network	pyLoad	pyLoad	pyLoadにおける複数の脆弱性	CWE-502 CWE-863	CVE-2026-33509 CVE-2026-35464	2026-04-24 11:35	2026-04-7	Show	GitHub Exploit DB Packet Storm

4306	9.8	緊急 Network	Tomas Varaneckas	JAD Java Decompiler	Tomas VaraneckasのJAD Java Decompilerにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2016-20049	2026-04-24 11:35	2026-03-28	Show	GitHub Exploit DB Packet Storm

4307	6.1	警告 Network	WSO2	WSO2 API Manager	WSO2のWSO2 API Managerにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-10242	2026-04-24 11:35	2026-04-16	Show	GitHub Exploit DB Packet Storm

4308	9.1	緊急 Network	WSO2	Identity Server as Key Manager WSO2 API Manager WSO2 Identity Server WSO2 Open Banking AM WSO2 Open Banking IAM	WSO2のWSO2 API Manager等の複数製品におけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2024-2374	2026-04-24 11:35	2026-04-16	Show	GitHub Exploit DB Packet Storm

4309	5.4	警告 Network	WSO2	WSO2 API Manager	WSO2のWSO2 API Managerにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4867	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

4310	7.5	重要 Network	WSO2	WSO2 API Manager	WSO2のWSO2 API ManagerにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2024-8010	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348281	-	cacheflow	cacheos	Web administration interface in CacheFlow CacheOS 4.0.13 and earlier allows remote attackers to obtain sensitive information via a series of GET requests that do not end in with HTTP/1.0 or another v…	NVD-CWE-Other	CVE-2002-0107	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348282	-	linksys	befn2ps4 befsr41 befsr81	Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, and possibly other products, allow remote attackers to gain sensitive information and cause a denial of service via an SNMP query for the def…	NVD-CWE-Other	CVE-2002-0109	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348283	-	nevrona_designs	miramail	Nevrona Designs MiraMail 1.04 and earlier stores authentication information such as POP usernames and passwords in plaintext in a .ini file, which allows an attacker to gain privileges by reading the…	NVD-CWE-Other	CVE-2002-0110	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348284	-	funsoft	dinos_webserver	Directory traversal vulnerability in Funsoft Dino's Webserver 1.2 and earlier allows remote attackers to read files or execute arbitrary commands via a .. (dot dot) in the URL.	NVD-CWE-Other	CVE-2002-0111	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348285	-	etype	eserv	Etype Eserv 2.97 allows remote attackers to view password protected files via /./ in the URL.	NVD-CWE-Other	CVE-2002-0112	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348286	-	palm	palm_os	Palm OS 3.5h and possibly other versions, as used in Handspring Visor and Xircom products, allows remote attackers to cause a denial of service via a TCP connect scan, e.g. from nmap.	NVD-CWE-Other	CVE-2002-0116	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348287	-	efax	efax	efax 0.9 and earlier, when installed setuid root, allows local users to read arbitrary files via the -d option, which prints the contents of the file in a warning message.	NVD-CWE-Other	CVE-2002-0129	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348288	-	efax	efax	Buffer overflow in efax 0.9 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -x argument.	NVD-CWE-Other	CVE-2002-0130	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348289	-	activestate	activepython	ActivePython ActiveX control for Python in the AXScript package, when used in Internet Explorer, does not prevent a script from reading files from the client's filesystem, which allows remote attacke…	NVD-CWE-Other	CVE-2002-0131	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348290	-	avirt	avirt_gateway avirt_gateway_suite avirt_soho	Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long header fields to the HTTP proxy, or (2) a long string …	NVD-CWE-Other	CVE-2002-0133	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed