Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4391 6.5 警告
Network 		Glances project Glances Nicolas Hennion (nicolargo)のGlancesにおける複数の脆弱性 CWE-200
CWE-306
CWE-306
CWE-942
CVE-2026-34839 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
4392 5.7 警告
Network 		オラクル PeopleSoft Enterprise CS Student Records オラクルのPeopleSoft Enterprise CS Student Recordsにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35241 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
4393 7.8 重要
Local 		オラクル Oracle Application Development Framework (Oracle ADF) オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35243 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
4394 7.5 重要
Network 		libp2p libp2p Protocol Labsのlibp2pにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-35405 2026-04-27 10:49 2026-04-7 Show GitHub Exploit DB Packet Storm
4395 8.2 重要
Network 		libp2p libp2p Protocol Labsのlibp2pにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-35457 2026-04-27 10:49 2026-04-7 Show GitHub Exploit DB Packet Storm
4396 8.8 重要
Network 		pyLoad-ng project pyLoad-ng pyLoad-ng projectのpyLoad-ngにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35463 2026-04-27 10:49 2026-04-7 Show GitHub Exploit DB Packet Storm
4397 5.3 警告
Network 		oobabooga TextGen oobaboogaのTextGenにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-35483 2026-04-27 10:49 2026-04-7 Show GitHub Exploit DB Packet Storm
4398 8.8 重要
Local 		NSA Emissary NSAのEmissaryにおける複数の脆弱性 CWE-116
CWE-78
CVE-2026-35582 2026-04-27 10:49 2026-04-18 Show GitHub Exploit DB Packet Storm
4399 6.5 警告
Network 		Vikunja Vikunja Vikunjaにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-35594 2026-04-27 10:48 2026-04-10 Show GitHub Exploit DB Packet Storm
4400 5.3 警告
Network 		レッドハット build of keycloak レッドハットのbuild of keycloakにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-37977 2026-04-27 10:48 2026-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347561 - working_resources_inc. badblue Cross-site scripting vulnerability (XSS) in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into e… NVD-CWE-Other
CVE-2002-1685 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
347562 - alcatel-lucent omnipcx Alcatel OmniPCX 4400 installs known user accounts and passwords in the /etc/password file by default, which allows remote attackers to gain unauthorized access. NVD-CWE-Other
CVE-2002-1691 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
347563 - microsoft windows_95 Buffer overflow in backup utility of Microsoft Windows 95 allows attackers to execute arbitrary code by causing a filename with a long extension to be placed in a folder to be backed up. NVD-CWE-Other
CVE-2002-1692 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
347564 - microsoft msn_messenger Buffer overflow in Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service (crash) via a long FN (font) argument in the message header. NVD-CWE-Other
CVE-2002-1698 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
347565 - pascal_michaud asp_client_check SQL injection vulnerability in ASP Client Check (ASPCC) 1.3 and 1.5 allows remote attackers to bypass authentication and gain unauthorized access via the password field. NVD-CWE-Other
CVE-2002-1699 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
347566 - deltascripts php_classifieds Cross-site scripting vulnerability (XSS) in DeltaScripts PHP Classifieds 6.0.5 allows remote attackers to execute arbitrary script as other users via the URL parameter. NVD-CWE-Other
CVE-2002-1702 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
347567 - mewsoft netauction Cross-site scripting vulnerability (XSS) in auction.cgi for Mewsoft NetAuction 3.0 allows remote attackers to execute arbitrary script as other users via the Term parameter. NVD-CWE-Other
CVE-2002-1703 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
347568 - zeroboard zeroboard Zeroboard 4.1, when the "allow_url_fopen" and "register_globals" variables are enabled, allows remote attackers to execute arbitrary PHP code by modifying the _zb_path parameter to reference a URL on… NVD-CWE-Other
CVE-2002-1704 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
347569 - phpbb_group phpbb install.php in phpBB 2.0 through 2.0.1, when "allow_url_fopen" and "register_globals" variables are set to "on", allows remote attackers to execute arbitrary PHP code by modifying the phpbb_root_dir … NVD-CWE-Other
CVE-2002-1707 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
347570 - basilix basilix_webmail Cross-site scripting vulnerability (XSS) in BasiliX Webmail 1.10 allows remote attackers to execute arbitrary script as other users by injecting script into the (1) subject or (2) message fields. NVD-CWE-Other
CVE-2002-1708 2017-07-11 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm