Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4901	4.3	警告 Network	openwebui	open webui	openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-34225	2026-04-23 10:12	2026-04-14	Show	GitHub Exploit DB Packet Storm

4902	7.7	重要 Network	Weblate	Weblate	Weblateにおける複数の脆弱性	CWE-200 CWE-22 CWE-59	CVE-2026-34242	2026-04-23 10:12	2026-04-15	Show	GitHub Exploit DB Packet Storm

4903	5	警告 Network	Weblate	Weblate	Weblateにおける複数の脆弱性	CWE-200 CWE-918	CVE-2026-34244	2026-04-23 10:12	2026-04-15	Show	GitHub Exploit DB Packet Storm

4904	8.8	重要 Network	Weblate	Weblate	Weblateにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-34393	2026-04-23 10:12	2026-04-15	Show	GitHub Exploit DB Packet Storm

4905	6.5	警告 Network	McGill University	LORIS (Longitudinal Online Research and Imaging System)	McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)におけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-34985	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

4906	6.5	警告 Network	McGill University	LORIS (Longitudinal Online Research and Imaging System)	McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)におけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-35165	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

4907	5.4	警告 Network	McGill University	LORIS (Longitudinal Online Research and Imaging System)	McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)における複数の脆弱性	CWE-552 CWE-79 CWE-79	CVE-2026-35169	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

4908	4.3	警告 Network	McGill University	LORIS (Longitudinal Online Research and Imaging System)	McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)におけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-35400	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

4909	5.4	警告 Network	McGill University	LORIS (Longitudinal Online Research and Imaging System)	McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-35403	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

4910	8.6	重要 Network	McGill University	LORIS (Longitudinal Online Research and Imaging System)	McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)における外部からアクセス可能なファイルまたはディレクトリに関する脆弱性	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2026-35446	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351101	-	sgi	irix	rpcbind in SGI IRIX, when using the -w command line switch, allows local users to overwrite arbitrary files via a symlink attack.	NVD-CWE-Other	CVE-2002-1516	2008-09-11 04:14	2003-04-2	Show	GitHub Exploit DB Packet Storm

351102	-	symantec	norton_antivirus	The client for Symantec Norton AntiVirus Corporate Edition 7.5.x before 7.5.1 Build 62 and 7.6.x before 7.6.1 Build 35a runs winhlp32 with raised privileges, which allows local users to gain privileg…	NVD-CWE-Other	CVE-2002-1540	2008-09-11 04:14	2003-03-31	Show	GitHub Exploit DB Packet Storm

351103	-	cisco	vpn_client	Buffer overflows in Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service via (1) an Internet Key Exchange (IKE) with a large Security Para…	NVD-CWE-Other	CVE-2002-0852	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

351104	-	cisco	vpn_client	Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a packet with a zero-length payload.	NVD-CWE-Other	CVE-2002-0853	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

351105	-	oracle	database_server oracle9i	SQL*NET listener for Oracle Net Oracle9i 9.0.x and 9.2 allows remote attackers to cause a denial of service (crash) via certain debug requests that are not properly handled by the debugging feature.	NVD-CWE-Other	CVE-2002-0856	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

351106	-	l2tpd	l2tpd	l2tpd 0.67 does not initialize the random number generator, which allows remote attackers to hijack sessions.	NVD-CWE-Other	CVE-2002-0872	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

351107	-	l2tpd	l2tpd	Vulnerability in l2tpd 0.67 allows remote attackers to overwrite the vendor field via a long value in an attribute/value pair, possibly via a buffer overflow.	NVD-CWE-Other	CVE-2002-0873	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

351108	-	redhat	interchange	Vulnerability in Interchange 4.8.6, 4.8.3, and other versions, when running in INET mode, allows remote attackers to read arbitrary files.	NVD-CWE-Other	CVE-2002-0874	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

351109	-	sgi debian	fam irix debian_linux	Vulnerability in FAM 2.6.8, 2.6.6, and other versions allows unprivileged users to obtain the names of files whose access is restricted to the root group.	NVD-CWE-Other	CVE-2002-0875	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

351110	-	cgiscript.net	cspassword	CGIScript.net csPassword.cgi stores usernames and unencrypted passwords in the password.cgi.tmp temporary file while modifying data, which could allow local users (and possibly remote attackers) to g…	NVD-CWE-Other	CVE-2002-0920	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm