Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5291	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-0186	2026-04-27 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5292	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-3922	2026-04-27 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5293	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-6016	2026-04-27 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5294	7.5	重要 Network	Nitro Software Inc.	Nitro PDF Pro	Nitro Software Inc.のNitro PDF ProにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-66769	2026-04-27 11:26	2026-04-13	Show	GitHub Exploit DB Packet Storm

5295	7.5	重要 Network	Nitro Software Inc.	Nitro PDF Pro	Nitro Software Inc.のNitro PDF ProにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-69624	2026-04-27 11:26	2026-04-13	Show	GitHub Exploit DB Packet Storm

5296	2.7	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2025-9957	2026-04-27 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5297	4.8	警告 Network	pega	pega platform	pegaのpega platformにおけるクロスサイトスクリプティングの脆弱性	CWE-80 クロスサイトスクリプティング (Basic XSS)	CVE-2026-1564	2026-04-27 11:26	2026-04-15	Show	GitHub Exploit DB Packet Storm

5298	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-1660	2026-04-27 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5299	4.8	警告 Network	pega	pega platform	pegaのpega platformにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-1711	2026-04-27 11:26	2026-04-15	Show	GitHub Exploit DB Packet Storm

5300	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-Other その他	CVE-2026-23314	2026-04-27 11:26	2026-03-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351761	-	lagarde	storefront	This issue was addressed in a hot fix for StoreFront 6.1 in late January 2004.	NVD-CWE-Other	CVE-2003-0557	2016-10-18 11:35	2003-08-18	Show	GitHub Exploit DB Packet Storm

351762	-	leapware	leapftp	Buffer overflow in LeapFTP 2.7.3.600 allows remote FTP servers to execute arbitrary code via a long IP address response to a PASV request.	NVD-CWE-Other	CVE-2003-0558	2016-10-18 11:35	2003-08-18	Show	GitHub Exploit DB Packet Storm

351763	-	phpforum	phpforum	mainfile.php in phpforum 2 RC-1, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by modifying the MAIN_PATH parameter to reference a URL on a remote web server th…	NVD-CWE-Other	CVE-2003-0559	2016-10-18 11:35	2003-08-18	Show	GitHub Exploit DB Packet Storm

351764	-	virtual_programming	vp-asp	SQL injection vulnerability in shopexd.asp for VP-ASP allows remote attackers to gain administrator privileges via the id parameter.	NVD-CWE-Other	CVE-2003-0560	2016-10-18 11:35	2003-08-18	Show	GitHub Exploit DB Packet Storm

351765	-	iglooftp	iglooftp_pro	Multiple buffer overflows in IglooFTP PRO 3.8 allow remote FTP servers to execute arbitrary code via (1) a long FTP banner, or long responses to the client commands (2) USER, (3) PASS, (4) ACCT, and …	NVD-CWE-Other	CVE-2003-0561	2016-10-18 11:35	2003-08-18	Show	GitHub Exploit DB Packet Storm

351766	-	novell	netware	Buffer overflow in the CGI2PERL.NLM PERL handler in Novell Netware 5.1 and 6.0 allows remote attackers to cause a denial of service (ABEND) via a long input string.	NVD-CWE-Other	CVE-2003-0562	2016-10-18 11:35	2003-08-27	Show	GitHub Exploit DB Packet Storm

351767	-	ibm	u2_universe	uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by pro…	NVD-CWE-Other	CVE-2003-0579	2016-10-18 11:35	2003-08-18	Show	GitHub Exploit DB Packet Storm

351768	-	ibm	u2_universe	Buffer overflow in uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier allows the uvadm user to execute arbitrary code via a long -uv.install command line argument.	NVD-CWE-Other	CVE-2003-0580	2016-10-18 11:35	2003-08-18	Show	GitHub Exploit DB Packet Storm

351769	-	xfstt	xfstt	X Fontserver for Truetype fonts (xfstt) 1.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a (1) FS_QueryXExtents8 or (2) FS_QueryXBitmaps8 packet, and p…	NVD-CWE-Other	CVE-2003-0581	2016-10-18 11:35	2003-08-18	Show	GitHub Exploit DB Packet Storm

351770	-	tolis_group	bru	Buffer overflow in Backup and Restore Utility for Unix (BRU) 17.0 and earlier, when running setuid, allows local users to execute arbitrary code via a long command line argument.	NVD-CWE-Other	CVE-2003-0583	2016-10-18 11:35	2003-08-18	Show	GitHub Exploit DB Packet Storm