Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4521 7.2 重要
Network 		フォーティネット FortiMail フォーティネットのFortiMailにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-53681 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
4522 8.8 重要
Network 		フォーティネット FortiOS フォーティネットのFortiOSにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2025-53844 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
4523 6.7 警告
Local 		フォーティネット FortiAP
FortiAP-W2 		フォーティネットのFortiAP-W2等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-53870 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
4524 5.3 警告
Network 		strapi strapi strapiにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2025-64526 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
4525 5.3 警告
Network 		フォーティネット FortiManager
FortiAnalyzer 		フォーティネットのFortiAnalyzer等の複数製品における潜在的に危険な関数の使用に関する脆弱性 CWE-676
潜在的に危険な関数の使用 		CVE-2025-67604 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
4526 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-1184 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
4527 8.1 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるビジネスロジックエラーに関する脆弱性 CWE-840
ビジネスロジックエラー 		CVE-2026-1322 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
4528 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-1338 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
4529 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-1659 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
4530 10 緊急
Network 		シスコシステムズ Cisco SD-WAN vSmart Controller シスコシステムズのCisco Catalyst SD-WAN Manager等の複数製品における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-20182 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345401 - basilix basilix_webmail Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the request_id[DUMMY] parameter. NVD-CWE-Other
CVE-2001-1045 2017-12-19 11:29 2001-07-6 Show GitHub Exploit DB Packet Storm
345402 - openbsd openbsd Race condition in OpenBSD VFS allows local users to cause a denial of service (kernel panic) by (1) creating a pipe in one thread and causing another thread to set one of the file descriptors to NULL… NVD-CWE-Other
CVE-2001-1047 2017-12-19 11:29 2001-06-2 Show GitHub Exploit DB Packet Storm
345403 - cccsoftware ccc CCCSoftware CCC PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1050 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
345404 - dark_hart_portal darkportal-unix Dark Hart Portal (darkportal) PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1051 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
345405 - emergenices_personnel_information_system empris Empris PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1052 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
345406 - wolfram_research mathematica The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by connecting to port 16286 and not disconnecting, which prevents u… NVD-CWE-Other
CVE-2001-1057 2017-12-19 11:29 2001-07-30 Show GitHub Exploit DB Packet Storm
345407 - wolfram_research mathematica The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to bypass access control (specified by the -restrict argument) and steal a license via a client request that includes … NVD-CWE-Other
CVE-2001-1058 2017-12-19 11:29 2002-02-13 Show GitHub Exploit DB Packet Storm
345408 - cisco cbos Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap allows remote attackers to cause a denial of service via multiple connections to the router on the (1) HTTP or (2) telnet service, which ca… NVD-CWE-Other
CVE-2001-1064 2017-12-19 11:29 2001-08-31 Show GitHub Exploit DB Packet Storm
345409 - cisco cbos Web-based configuration utility in Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap binds itself to port 80 even when web-based configuration services are disabled, which could leave the r… NVD-CWE-Other
CVE-2001-1065 2017-12-19 11:29 2001-08-31 Show GitHub Exploit DB Packet Storm
345410 - qualcomm qpopper qpopper 4.01 with PAM based authentication on Red Hat systems generates different error messages when an invalid username is provided instead of a valid name, which allows remote attackers to determi… NVD-CWE-Other
CVE-2001-1068 2017-12-19 11:29 2001-08-31 Show GitHub Exploit DB Packet Storm