Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4661	9.1	緊急 Network	WSO2	Identity Server as Key Manager WSO2 API Manager WSO2 Identity Server WSO2 Open Banking AM WSO2 Open Banking IAM	WSO2のWSO2 API Manager等の複数製品におけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2024-2374	2026-04-24 11:35	2026-04-16	Show	GitHub Exploit DB Packet Storm

4662	5.4	警告 Network	WSO2	WSO2 API Manager	WSO2のWSO2 API Managerにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4867	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

4663	7.5	重要 Network	WSO2	WSO2 API Manager	WSO2のWSO2 API ManagerにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2024-8010	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

4664	5.4	警告 Network	WSO2	WSO2 Identity Server	WSO2のWSO2 Identity Serverにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2025-12624	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

4665	8.2	重要 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるHTTP リクエストスマグリングに関する脆弱性	CWE-444 HTTP リクエストスマグリング	CVE-2025-31958	2026-04-24 11:34	2026-04-21	Show	GitHub Exploit DB Packet Storm

4666	5.3	警告 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)における重要な情報の平文での送信に関する脆弱性	CWE-319 重要な情報の平文での送信	CVE-2025-31981	2026-04-24 11:34	2026-04-21	Show	GitHub Exploit DB Packet Storm

4667	6.1	警告 Network	WSO2	WSO2 API Manager WSO2 Identity Server	WSO2のWSO2 API Manager等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-6024	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

4668	6.5	警告 Network	フォーティネット	FortiOS FortiPAM FortiProxy FortiSwitch Manager	フォーティネットのFortiOS等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-61624	2026-04-24 11:34	2026-04-14	Show	GitHub Exploit DB Packet Storm

4669	5.4	警告 Network	フォーティネット	FortiSandbox FortiSandbox Cloud	フォーティネットのFortiSandbox等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-61886	2026-04-24 11:34	2026-04-14	Show	GitHub Exploit DB Packet Storm

4670	5.3	警告 Network	Apache Software Foundation	Apache Doris-MCP-Server	Apache Software FoundationのApache Doris-MCP-ServerにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-66335	2026-04-24 11:34	2026-04-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349551	-	horde	imp	Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) before 2.2.6 and 1.2.6 allows remote attackers to execute arbitrary Javascript embedded in an email.	NVD-CWE-Other	CVE-2001-1257	2011-03-8 11:07	2001-07-21	Show	GitHub Exploit DB Packet Storm

349552	-	horde	imp	Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the …	NVD-CWE-Other	CVE-2001-1258	2011-03-8 11:07	2001-07-21	Show	GitHub Exploit DB Packet Storm

349553	-	network_associates	webshield_smtp	NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in e…	NVD-CWE-Other	CVE-2001-1542	2011-03-8 11:07	2001-12-31	Show	GitHub Exploit DB Packet Storm

349554	-	compaq	tru64	Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423.	NVD-CWE-Other	CVE-2002-0093	2011-03-8 11:07	2002-09-5	Show	GitHub Exploit DB Packet Storm

349555	-	iplanet	iplanet_web_server	Vulnerability in iPlanet Web Server Enterprise Edition 4.x.	NVD-CWE-Other	CVE-2001-0431	2011-03-8 11:05	2001-07-2	Show	GitHub Exploit DB Packet Storm

349556	-	sendmail	sendmail	Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain potentially sensitive information about the mail queue by setting debugging flags to enable debug mod…	NVD-CWE-Other	CVE-2001-0715	2011-03-8 11:05	2001-10-30	Show	GitHub Exploit DB Packet Storm

349557	-	sco	unixware	Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages.	NVD-CWE-Other	CVE-2000-0351	2011-03-8 11:03	2001-03-12	Show	GitHub Exploit DB Packet Storm

349558	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd.	NVD-CWE-Other	CVE-1999-1425	2011-03-8 11:02	1997-11-10	Show	GitHub Exploit DB Packet Storm

349559	-	freebsd netbsd openbsd	freebsd netbsd openbsd	The BSD make program allows local users to modify files via a symlink attack when the -j option is being used.	NVD-CWE-Other	CVE-2000-0092	2011-03-8 11:02	2000-01-19	Show	GitHub Exploit DB Packet Storm

349560	-	freebsd	freebsd	Buffer overflow in the huh program in the orville-write package allows local users to gain root privileges.	NVD-CWE-Other	CVE-2000-0235	2011-03-8 11:02	2000-03-27	Show	GitHub Exploit DB Packet Storm