Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4771	7.5	重要 Network	projectdiscovery	nuclei	ProjectDiscovery, Inc.のNucleiにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41282	2026-04-24 11:41	2026-04-20	Show	GitHub Exploit DB Packet Storm

4772	7.1	重要 Local	オートデスク株式会社	Autodesk Fusion	オートデスク株式会社のAutodesk Fusionにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-4344	2026-04-24 11:41	2026-04-14	Show	GitHub Exploit DB Packet Storm

4773	7.1	重要 Local	オートデスク株式会社	Autodesk Fusion	オートデスク株式会社のAutodesk Fusionにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-4345	2026-04-24 11:41	2026-04-14	Show	GitHub Exploit DB Packet Storm

4774	7.1	重要 Local	オートデスク株式会社	Autodesk Fusion	オートデスク株式会社のAutodesk Fusionにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-4369	2026-04-24 11:41	2026-04-14	Show	GitHub Exploit DB Packet Storm

4775	5.5	警告 Local	GNU Project レッドハット	GNU tar Red Hat Hardened Images Red Hat Enterprise Linux	GNU Project等の複数ベンダの製品における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-5704	2026-04-24 11:40	2026-04-6	Show	GitHub Exploit DB Packet Storm

4776	6.4	警告 Network	Canonical	Juju	CanonicalのJujuにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-5774	2026-04-24 11:40	2026-04-10	Show	GitHub Exploit DB Packet Storm

4777	7.8	重要 Local	CivetWeb project	CivetWeb	CivetWeb projectのCivetWebにおける引用されない検索パスまたは要素に関する脆弱性	CWE-428 引用されない検索パスまたは要素	CVE-2026-5789	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

4778	7.4	重要 Network	Eclipse Foundation	Jetty	Eclipse FoundationのJettyにおける複数の脆弱性	CWE-226 CWE-287	CVE-2026-5795	2026-04-24 11:40	2026-04-8	Show	GitHub Exploit DB Packet Storm

4779	7.5	重要 Network	GNU Project	GNU C Library	GNU ProjectのGNU C Libraryにおけるバッファアンダーリードの脆弱性	CWE-127 バッファアンダーリード	CVE-2026-5928	2026-04-24 11:40	2026-04-20	Show	GitHub Exploit DB Packet Storm

4780	7.1	重要 Network	ConnectWise, Inc.	automate	ConnectWise, Inc.のautomateにおける重要な情報の平文での送信に関する脆弱性	CWE-319 重要な情報の平文での送信	CVE-2026-6066	2026-04-24 11:40	2026-04-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348361	-	delegate	delegate	Multiple buffer overflows in DeleGate 7.7.0 through 7.8.1 allow remote attackers to execute arbitrary code, as demonstrated using a long USER command to the POP proxy.	NVD-CWE-Other	CVE-2002-1781	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

348362	-	university_of_washington	uw-imap	The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrar…	NVD-CWE-Other	CVE-2002-1782	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

348363	-	php	php	CRLF injection vulnerability in PHP 4.2.1 through 4.2.3, when allow_url_fopen is enabled, allows remote attackers to modify HTTP headers for outgoing requests by causing CRLF sequences to be injected…	NVD-CWE-Other	CVE-2002-1783	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

348364	-	openbb	openbb	Cross-site scripting (XSS) vulnerability in codeparse.php in Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to inject arbitrary web script or HTML via (1) myhome.php, (2) an onerror a…	NVD-CWE-Other	CVE-2002-1829	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

348365	-	microsoft	data_access_components	Buffer overflow in Microsoft Active Data Objects (ADO) in Microsoft MDAC 2.5 through 2.7 allows remote attackers to have unknown impact with unknown attack vectors. NOTE: due to the lack of details …	NVD-CWE-Other	CVE-2002-1918	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

348366	-	aquonics_scripting	aquonics_file_manager	Aquonics File Manager 1.5 allows users with edit privileges to modify user accounts by editing the userlist.cgi file.	NVD-CWE-Other	CVE-2002-1927	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

348367	-	qnx	rtos	The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service (hang) and possibly execute arbitrary code by creating multiple timers with a 1-ms tick.	NVD-CWE-Other	CVE-2002-1983	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

348368	-	zonelabs	zonealarm	ZoneAlarm Pro 3.0 MailSafe allows remote attackers to bypass filtering and possibly execute arbitrary code via email attachments containing a trailing dot after the file extension.	NVD-CWE-Other	CVE-2002-1997	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

348369	-	xqus	x-stat	x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to (1) execute PHP commands such as phpinfo or (2) obtain the full path of the web server via an invalid action parameter, which lea…	NVD-CWE-Other	CVE-2002-2045	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

348370	-	squirrelmail	squirrelmail	Multiple cross-site scripting (XSS) vulnerabilities in magicHTML of SquirrelMail before 1.2.6 allow remote attackers to inject arbitrary web script or HTML via (1) "<<script" in unspecified input fie…	NVD-CWE-Other	CVE-2002-2086	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm