Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4951 5.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-2404 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4952 6.5 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-2405 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4953 9.8 緊急
Network 		OpenAEV OpenAEV OpenAEVにおけるパスワード管理機能に関する脆弱性 CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み 		CVE-2026-24467 2026-04-24 11:38 2026-04-20 Show GitHub Exploit DB Packet Storm
4954 7.5 重要
Network 		Vexa AI, Inc. Vexa Vexa AI, Inc.のVexaにおける複数の脆弱性 CWE-306
CWE-862
CVE-2026-25058 2026-04-24 11:37 2026-04-20 Show GitHub Exploit DB Packet Storm
4955 5.8 警告
Network 		Vexa AI, Inc. Vexa Vexa AI, Inc.のVexaにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-25883 2026-04-24 11:37 2026-04-20 Show GitHub Exploit DB Packet Storm
4956 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27243 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
4957 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27245 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
4958 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27246 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
4959 10 緊急
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-27303 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
4960 4.3 警告
Network 		Hytale Modding HytaleModding Wiki Hytale ModdingのHytaleModding Wikiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-32736 2026-04-24 11:37 2026-03-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349241 - midnight_commander
sgi
gentoo
slackware 		midnight_commander
propack
linux
slackware_linux 		Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. NVD-CWE-Other
CVE-2004-0232 2017-07-11 10:29 2004-08-18 Show GitHub Exploit DB Packet Storm
349242 - steelid thephototool SQL injection vulnerability in login.asp in thePHOTOtool allows remote attackers to gain unauthorized access via the password field. NVD-CWE-Other
CVE-2004-0236 2017-07-11 10:29 2004-11-23 Show GitHub Exploit DB Packet Storm
349243 - - - Directory traversal vulnerability in index.php in Aprox PHP Portal allows remote attackers to read arbitrary files via a full pathname in the show parameter. NVD-CWE-Other
CVE-2004-0237 2017-07-11 10:29 2004-11-23 Show GitHub Exploit DB Packet Storm
349244 - 0verkill 0verkill Multiple buffer overflows in Overkill (0verkill) 0.15pre3 might allow local users to execute arbitrary code in the client via a long HOME environment variable in the (1) load_cfg and (2) save_cfg fun… NVD-CWE-Other
CVE-2004-0238 2017-07-11 10:29 2004-11-23 Show GitHub Exploit DB Packet Storm
349245 - bmv bmv gsinterf.c in bmv 1.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files. NVD-CWE-Other
CVE-2003-0014 2017-07-11 10:29 2003-01-11 Show GitHub Exploit DB Packet Storm
349246 - bmv bmv For the stable distribution this problem has been fixed in version 1.2-14.2. For the unstable distribution this problem has been fixed in version 1.2-17. NVD-CWE-Other
CVE-2003-0014 2017-07-11 10:29 2003-01-11 Show GitHub Exploit DB Packet Storm
349247 - isc dhcpd Multiple stack-based buffer overflows in the error handling routines of the minires library, as used in the NSUPDATE capability for ISC DHCPD 3.0 through 3.0.1RC10, allow remote attackers to execute … NVD-CWE-Other
CVE-2003-0026 2017-07-11 10:29 2003-01-17 Show GitHub Exploit DB Packet Storm
349248 - noffle noffle Buffer overflows in noffle news server 1.0.1 and earlier allow remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code. NVD-CWE-Other
CVE-2003-0037 2017-07-11 10:29 2003-02-7 Show GitHub Exploit DB Packet Storm
349249 - gnu mailman Cross-site scripting (XSS) vulnerability in options.py for Mailman 2.1 allows remote attackers to inject script or HTML into web pages via the (1) email or (2) language parameters. NVD-CWE-Other
CVE-2003-0038 2017-07-11 10:29 2003-02-7 Show GitHub Exploit DB Packet Storm
349250 - apache tomcat Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, allows remote attackers to list directories even with an index.html or other file present, or obtain unprocessed source code for a J… NVD-CWE-Other
CVE-2003-0042 2017-07-11 10:29 2003-02-7 Show GitHub Exploit DB Packet Storm