Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5061 7.5 重要
Network 		- NestJSにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-40879 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
5062 7.6 重要
Network 		openremote openremote openremoteにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-40882 2026-04-27 10:47 2026-04-22 Show GitHub Exploit DB Packet Storm
5063 8.3 重要
Network 		WWBN AVideo WWBNのAVideoにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-40925 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
5064 8.3 重要
Network 		RustFS RustFS RustFSにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40937 2026-04-27 10:47 2026-04-22 Show GitHub Exploit DB Packet Storm
5065 7.1 重要
Network 		WWBN AVideo WWBNのAVideoにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-41057 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
5066 8.1 重要
Network 		WWBN AVideo WWBNのAVideoにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41058 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
5067 6.5 警告
Network 		WWBN AVideo WWBNのAVideoにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41060 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
5068 5.4 警告
Network 		WWBN AVideo WWBNのAVideoにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41061 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
5069 6.5 警告
Network 		WWBN AVideo WWBNのAVideoにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41062 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
5070 5.4 警告
Network 		WWBN AVideo WWBNのAVideoにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41063 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351171 - rob_flynn gaim The URL handler in the manual browser option for Gaim before 0.59.1 allows remote attackers to execute arbitrary script via shell metacharacters in a link. NVD-CWE-Other
CVE-2002-0989 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
351172 - symantec enterprise_firewall
raptor_firewall
velociraptor
gateway_security 		The web proxy component in Symantec Enterprise Firewall (SEF) 6.5.2 through 7.0, Raptor Firewall 6.5 and 6.5.3, VelociRaptor, and Symantec Gateway Security allow remote attackers to cause a denial of… NVD-CWE-Other
CVE-2002-0990 2016-10-18 11:23 2002-10-28 Show GitHub Exploit DB Packet Storm
351173 - adobe adobe_content_server The library feature for Adobe Content Server 3.0 does not verify if a customer has already checked out an eBook, which allows remote attackers to cause a denial of service (resource exhaustion) by ch… NVD-CWE-Other
CVE-2002-1018 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
351174 - adobe adobe_content_server The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook for an arbitrary length of time via a modified loanMin parameter to download.asp. NVD-CWE-Other
CVE-2002-1019 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
351175 - adobe adobe_content_server The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook even when the maximum number of loans is exceeded by accessing the "Add to bookbag" feature when the se… NVD-CWE-Other
CVE-2002-1020 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
351176 - michael_dean double_choco_latte Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorit… NVD-CWE-Other
CVE-2002-1037 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
351177 - michael_dean double_choco_latte Double Choco Latte (DCL) before 20020706 does not properly verify if a file was uploaded, which allows remote attackers to conduct certain operations on arbitrary files via the (1) Projects: Upload F… NVD-CWE-Other
CVE-2002-1038 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
351178 - michael_dean double_choco_latte Directory traversal vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to read arbitrary files via .. (dot dot) sequences when downloading files from the Projects: Atta… NVD-CWE-Other
CVE-2002-1039 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
351179 - ehud_gavron tracesroute Format string vulnerability in TrACESroute 6.0 GOLD (aka NANOG traceroute) allows local users to execute arbitrary code via the -T (terminator) command line argument. NVD-CWE-Other
CVE-2002-1051 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
351180 - w3c jigsaw Jigsaw 2.2.1 on Windows systems allows remote attackers to use MS-DOS device names in HTTP requests to (1) cause a denial of service using the "con" device, or (2) obtain the physical path of the ser… NVD-CWE-Other
CVE-2002-1052 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm