Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4591 7.1 重要
Network 		BMC Software BMC FootPrints ITSM BMC SoftwareのBMC FootPrints ITSMにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2025-71259 2026-04-24 11:38 2026-03-19 Show GitHub Exploit DB Packet Storm
4592 8.8 重要
Network 		BMC Software BMC FootPrints ITSM BMC SoftwareのBMC FootPrints ITSMにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2025-71260 2026-04-24 11:38 2026-03-19 Show GitHub Exploit DB Packet Storm
4593 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21331 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4594 5.4 警告
Network 		オラクル PeopleSoft Enterprise HCM Shared Components オラクルのPeoplesoft Enterprise Hcm Shared Componentsにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-22019 2026-04-24 11:38 2026-04-21 Show GitHub Exploit DB Packet Storm
4595 6.1 警告
Adjacent 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-2399 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4596 4.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial ShutdownにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-2400 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4597 5 警告
Local 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-2401 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4598 5.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-2402 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4599 4.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおける入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2026-2403 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4600 5.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-2404 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349551 - horde imp Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) before 2.2.6 and 1.2.6 allows remote attackers to execute arbitrary Javascript embedded in an email. NVD-CWE-Other
CVE-2001-1257 2011-03-8 11:07 2001-07-21 Show GitHub Exploit DB Packet Storm
349552 - horde imp Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the … NVD-CWE-Other
CVE-2001-1258 2011-03-8 11:07 2001-07-21 Show GitHub Exploit DB Packet Storm
349553 - network_associates webshield_smtp NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in e… NVD-CWE-Other
CVE-2001-1542 2011-03-8 11:07 2001-12-31 Show GitHub Exploit DB Packet Storm
349554 - compaq tru64 Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423. NVD-CWE-Other
CVE-2002-0093 2011-03-8 11:07 2002-09-5 Show GitHub Exploit DB Packet Storm
349555 - iplanet iplanet_web_server Vulnerability in iPlanet Web Server Enterprise Edition 4.x. NVD-CWE-Other
CVE-2001-0431 2011-03-8 11:05 2001-07-2 Show GitHub Exploit DB Packet Storm
349556 - sendmail sendmail Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain potentially sensitive information about the mail queue by setting debugging flags to enable debug mod… NVD-CWE-Other
CVE-2001-0715 2011-03-8 11:05 2001-10-30 Show GitHub Exploit DB Packet Storm
349557 - sco unixware Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages. NVD-CWE-Other
CVE-2000-0351 2011-03-8 11:03 2001-03-12 Show GitHub Exploit DB Packet Storm
349558 - sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd. NVD-CWE-Other
CVE-1999-1425 2011-03-8 11:02 1997-11-10 Show GitHub Exploit DB Packet Storm
349559 - freebsd
netbsd
openbsd 		freebsd
netbsd
openbsd 		The BSD make program allows local users to modify files via a symlink attack when the -j option is being used. NVD-CWE-Other
CVE-2000-0092 2011-03-8 11:02 2000-01-19 Show GitHub Exploit DB Packet Storm
349560 - freebsd freebsd Buffer overflow in the huh program in the orville-write package allows local users to gain root privileges. NVD-CWE-Other
CVE-2000-0235 2011-03-8 11:02 2000-03-27 Show GitHub Exploit DB Packet Storm