Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5451	6.1	警告 Network	angular	Angular CLI	angularのAngular CLIにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-33397	2026-05-1 10:38	2026-03-26	Show	GitHub Exploit DB Packet Storm

5452	9.1	緊急 Network	Fatedier	FRP	FatedierのFRPにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-40910	2026-05-1 10:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

5453	8.8	重要 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおける隔離または分類に関する脆弱性	CWE-653 不適切な隔離または分類	CVE-2026-40968	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

5454	5.3	警告 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2026-40969	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

5455	7.5	重要 Network	Frappe	Press	FrappeのPressにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-41317	2026-05-1 10:38	2026-04-24	Show	GitHub Exploit DB Packet Storm

5456	6.1	警告 Network	Frappe	Press	FrappeのPressにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41430	2026-05-1 10:38	2026-04-24	Show	GitHub Exploit DB Packet Storm

5457	8.8	重要 Network	D-Link Systems, Inc.	DHP-1320 Firmware	D-Link CorporationのDHP-1320 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-4529	2026-05-1 10:38	2026-03-21	Show	GitHub Exploit DB Packet Storm

5458	7	重要 Local	flos-freeware (Florian Balmer)	Notepad2	flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性	CWE-426 CWE-427	CVE-2026-4545	2026-05-1 10:38	2026-03-22	Show	GitHub Exploit DB Packet Storm

5459	7	重要 Local	flos-freeware (Florian Balmer)	Notepad2	flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性	CWE-426 CWE-427	CVE-2026-4546	2026-05-1 10:38	2026-03-22	Show	GitHub Exploit DB Packet Storm

5460	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	4G03 Pro Firmware	Shenzhen Tenda Technology Co.,Ltd.の4G03 Pro Firmwareにおける複数の脆弱性	CWE-266 CWE-284	CVE-2026-5526	2026-05-1 10:38	2026-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347641	-	mollensoft_software	enceladus_server_suite	Directory traversal vulnerability in Enceladus Server Suite 3.9 allows remote attackers to list arbitrary directories and possibly cause a denial of service via "@" (at) characters in a CD (CWD) comm…	CWE-22 Path Traversal	CVE-2002-2233	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347642	-	tftp	tftp_server	tftp32 TFTP server 2.21 and earlier allows remote attackers to cause a denial of service via a GET request with a DOS device name such as com1 or aux.	CWE-20 Improper Input Validation	CVE-2002-2237	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347643	-	kunani	kunani_odbc_ftp_server	Directory traversal vulnerability in the Kunani ODBC FTP Server 1.0.10 allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) in a GET request.	CWE-22 Path Traversal	CVE-2002-2238	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347644	-	cisco	ios	The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series running Cisco IOS 12.1(8)E through 12.1(13.4)E allows remote attackers to cause a denial of service (hang) via a malformed…	CWE-20 Improper Input Validation	CVE-2002-2239	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347645	-	myserver	myserver	Directory traversal vulnerability in MyServer 0.11 and 0.2 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP GET request.	CWE-22 Path Traversal	CVE-2002-2240	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347646	-	deerfield	visnetic_website	Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers to cause a denial of service (crash) via a long HTTP OPTIONS request.	CWE-399 Resource Management Errors	CVE-2002-2241	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347647	-	kismac	kismac	The Apple Package Manager in KisMAC 0.02a and earlier modifies file permissions of sensitive files after installation, which could allow attackers to conduct unauthorized activities on those files.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2002-2242	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347648	-	akfingerd	akfingerd	Akfingerd 0.5 and possibly earlier versions only allows one connection at a time and does not time out connections, which allows remote attackers to cause a denial of service (refused connections) by…	NVD-CWE-Other	CVE-2002-2243	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347649	-	akfingerd	akfingerd	Akfingerd 0.5 and earlier versions allow local users to cause a denial of service (crash) via a .plan with a symlink to /dev/urandom or other device, then disconnecting while data is being transferre…	CWE-362 Race Condition	CVE-2002-2244	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347650	-	deerfield	visnetic_website	Cross-site scripting (XSS) vulnerability in VisNetic Website before 3.5.15 allows remote attackers to inject arbitrary web script or HTML via the HTTP referer header (HTTP_REFERER) to a non-existent …	CWE-79 Cross-site Scripting	CVE-2002-2246	2017-07-29 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm