Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4621	7.8	重要 Local	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35243	2026-04-27 10:49	2026-04-21	Show	GitHub Exploit DB Packet Storm

4622	7.5	重要 Network	libp2p	libp2p	Protocol Labsのlibp2pにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-35405	2026-04-27 10:49	2026-04-7	Show	GitHub Exploit DB Packet Storm

4623	8.2	重要 Network	libp2p	libp2p	Protocol Labsのlibp2pにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-35457	2026-04-27 10:49	2026-04-7	Show	GitHub Exploit DB Packet Storm

4624	8.8	重要 Network	pyLoad-ng project	pyLoad-ng	pyLoad-ng projectのpyLoad-ngにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35463	2026-04-27 10:49	2026-04-7	Show	GitHub Exploit DB Packet Storm

4625	5.3	警告 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35483	2026-04-27 10:49	2026-04-7	Show	GitHub Exploit DB Packet Storm

4626	8.8	重要 Local	NSA	Emissary	NSAのEmissaryにおける複数の脆弱性	CWE-116 CWE-78	CVE-2026-35582	2026-04-27 10:49	2026-04-18	Show	GitHub Exploit DB Packet Storm

4627	6.5	警告 Network	Vikunja	Vikunja	Vikunjaにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-35594	2026-04-27 10:48	2026-04-10	Show	GitHub Exploit DB Packet Storm

4628	5.3	警告 Network	レッドハット	build of keycloak	レッドハットのbuild of keycloakにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-37977	2026-04-27 10:48	2026-04-6	Show	GitHub Exploit DB Packet Storm

4629	7.5	重要 Network	Signal K	Signal K Server	Signal KのSignal K Serverにおける複数の脆弱性	CWE-1333 CWE-400	CVE-2026-39320	2026-04-27 10:48	2026-04-21	Show	GitHub Exploit DB Packet Storm

4630	5.4	警告 Network	opensourcepos	open source point of sale	opensourceposのopen source point of saleにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-39380	2026-04-27 10:48	2026-04-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348191	-	red-m	1050ap_lan_acess_point	Buffer overflow in Red-M 1050 (Bluetooth Access Point) management web interface allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long administration pass…	NVD-CWE-Other	CVE-2002-0393	2017-07-11 10:29	2002-07-26	Show	GitHub Exploit DB Packet Storm

348192	-	workforceroi	xpede	Intellisol Xpede 4.1 uses weak encryption to store authentication information in cookies, which could allow local users with access to the cookies to gain privileges.	NVD-CWE-Other	CVE-2002-0486	2017-07-11 10:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

348193	-	inn	inn	Vulnerability in (1) inews or (2) rnews for INN 2.2.3 and earlier, related to insecure open() calls.	NVD-CWE-Other	CVE-2002-0526	2017-07-11 10:29	2002-08-12	Show	GitHub Exploit DB Packet Storm

348194	-	postboard postnuke_software_foundation	postboard postnuke	Cross-site scripting vulnerabilities in PostBoard 2.0.1 and earlier allows remote attackers to execute script as other users via (1) an [IMG] tag when BBCode is enabled, or (2) in a topic title.	NVD-CWE-Other	CVE-2002-0535	2017-07-11 10:29	2002-07-3	Show	GitHub Exploit DB Packet Storm

348195	-	oracle	application_server application_server_web_cache oracle8i oracle9i	The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2…	CWE-287 Improper Authentication	CVE-2002-0563	2017-07-11 10:29	2002-07-3	Show	GitHub Exploit DB Packet Storm

348196	-	aol	instant_messenger	AOL Instant Messenger (AIM) allows remote attackers to steal files that are being transferred to other clients by connecting to port 4443 (Direct Connection) or port 5190 (file transfer) before the i…	NVD-CWE-Other	CVE-2002-0592	2017-07-11 10:29	2002-06-18	Show	GitHub Exploit DB Packet Storm

348197	-	snapgear	snapgear_lite\+_firewall	Snapgear Lite+ firewall 1.5.4 and 1.5.3 allows remote attackers to cause a denial of service (crash) via a large number of connections to (1) the HTTP web management port, or (2) the PPTP port.	NVD-CWE-Other	CVE-2002-0602	2017-07-11 10:29	2002-06-18	Show	GitHub Exploit DB Packet Storm

348198	-	entrust	entrust_authority_security_manager	Entrust Authority Security Manager (EASM) 6.0 does not properly require multiple master users to change the password of a master user, which could allow a master user to perform operations that requi…	NVD-CWE-Other	CVE-2002-0712	2017-07-11 10:29	2004-02-3	Show	GitHub Exploit DB Packet Storm

348199	-	cisco	cbos	Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to t…	NVD-CWE-Other	CVE-2002-0886	2017-07-11 10:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348200	-	irssi	irssi	IRC client irssi in irssi-text before 0.8.4 allows remote attackers to cause a denial of service (crash) via an IRC channel that has a long topic followed by a certain string, possibly triggering a b…	NVD-CWE-Other	CVE-2002-0983	2017-07-11 10:29	2002-09-24	Show	GitHub Exploit DB Packet Storm