Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4941 7.1 重要
Network 		BMC Software BMC FootPrints ITSM BMC SoftwareのBMC FootPrints ITSMにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2025-71259 2026-04-24 11:38 2026-03-19 Show GitHub Exploit DB Packet Storm
4942 8.8 重要
Network 		BMC Software BMC FootPrints ITSM BMC SoftwareのBMC FootPrints ITSMにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2025-71260 2026-04-24 11:38 2026-03-19 Show GitHub Exploit DB Packet Storm
4943 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21331 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4944 5.4 警告
Network 		オラクル PeopleSoft Enterprise HCM Shared Components オラクルのPeoplesoft Enterprise Hcm Shared Componentsにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-22019 2026-04-24 11:38 2026-04-21 Show GitHub Exploit DB Packet Storm
4945 6.1 警告
Adjacent 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-2399 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4946 4.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial ShutdownにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-2400 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4947 5 警告
Local 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-2401 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4948 5.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-2402 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4949 4.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおける入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2026-2403 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4950 5.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-2404 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349251 - apache tomcat Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HT… NVD-CWE-Other
CVE-2003-0044 2017-07-11 10:29 2003-02-7 Show GitHub Exploit DB Packet Storm
349252 - hypermail hypermail Multiple buffer overflows in Hypermail 2 before 2.1.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code (1) via a long attachment filename that is not properly … NVD-CWE-Other
CVE-2003-0057 2017-07-11 10:29 2003-02-19 Show GitHub Exploit DB Packet Storm
349253 - gnome gnome-lokkit The iptables ruleset in Gnome-lokkit in Red Hat Linux 8.0 does not include any rules in the FORWARD chain, which could allow attackers to bypass intended access restrictions if packet forwarding is e… NVD-CWE-Other
CVE-2003-0080 2017-07-11 10:29 2003-03-31 Show GitHub Exploit DB Packet Storm
349254 - mod_auth_any mod_auth_any mod_auth_any package in Red Hat Enterprise Linux 2.1 and other operating systems does not properly escape arguments when calling other programs, which allows attackers to execute arbitrary commands v… NVD-CWE-Other
CVE-2003-0084 2017-07-11 10:29 2003-05-12 Show GitHub Exploit DB Packet Storm
349255 - port80_software servermask ServerMask 2.2 and earlier does not obfuscate (1) ETag, (2) HTTP Status Message, or (3) Allow HTTP responses, which could tell remote attackers that the web server is an IIS server. NVD-CWE-Other
CVE-2003-0105 2017-07-11 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
349256 - lprold
bsd
freebsd
openbsd 		lprold
lpr
freebsd
openbsd 		Buffer overflow in the lprm command in the lprold lpr package on SuSE 7.1 through 7.3, OpenBSD 3.2 and earlier, and possibly other operating systems, allows local users to gain root privileges via lo… NVD-CWE-Other
CVE-2003-0144 2017-07-11 10:29 2003-03-31 Show GitHub Exploit DB Packet Storm
349257 - netpbm netpbm Multiple vulnerabilities in NetPBM 9.20 and earlier, and possibly other versions, may allow remote attackers to cause a denial of service or execute arbitrary code via "maths overflow errors" such as… NVD-CWE-Other
CVE-2003-0146 2017-07-11 10:29 2003-03-31 Show GitHub Exploit DB Packet Storm
349258 - mozilla bonsai bonsai Mozilla CVS query tool leaks the absolute pathname of the tool in certain error messages generated by (1) cvslog.cgi, (2) cvsview2.cgi, or (3) multidiff.cgi. NVD-CWE-Other
CVE-2003-0153 2017-07-11 10:29 2003-04-2 Show GitHub Exploit DB Packet Storm
349259 - ecartis ecartis Ecartis 1.0.0 (formerly listar) before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page. NVD-CWE-Other
CVE-2003-0162 2017-07-11 10:29 2003-04-2 Show GitHub Exploit DB Packet Storm
349260 - ibm aix Unknown vulnerability in ftpd in IBM AIX 5.2, when configured to use Kerberos 5 for authentication, allows remote attackers to gain privileges via unknown attack vectors. NVD-CWE-Other
CVE-2003-0170 2017-07-11 10:29 2004-03-29 Show GitHub Exploit DB Packet Storm