Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5531	9.8	緊急 Network	codefuture	CF Image Hosting Script	codefutureのCF Image Hosting Scriptにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2019-25709	2026-04-27 11:27	2026-04-12	Show	GitHub Exploit DB Packet Storm

5532	9.8	緊急 Network	ERLANG	Erlang/Inets (Inets) Erlang/OTP	ERLANGのErlang/Inets (Inets)等の複数製品における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-28808	2026-04-27 11:27	2026-04-7	Show	GitHub Exploit DB Packet Storm

5533	6.1	警告 Network	Dovestones Software Ltd	AD Phonebook	Dovestones Software LtdのAD Phonebookにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-31013	2026-04-27 11:27	2026-04-21	Show	GitHub Exploit DB Packet Storm

5534	6.3	警告 Network	Dovestones Software Ltd	AD Self Update	Dovestones Software LtdのAD Self Updateにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-31014	2026-04-27 11:27	2026-04-21	Show	GitHub Exploit DB Packet Storm

5535	9.8	緊急 Network	reconurge	Flowsint	reconurgeのFlowsintにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-32311	2026-04-27 11:27	2026-04-20	Show	GitHub Exploit DB Packet Storm

5536	7.5	重要 Network	freedom	SecureDrop-Client	freedomのSecureDrop-Clientにおける複数の脆弱性	CWE-36 CWE-73	CVE-2026-35465	2026-04-27 11:27	2026-04-18	Show	GitHub Exploit DB Packet Storm

5537	8.4	重要 Local	Gitlawb	OpenClaude	GitlawbのOpenClaudeにおける複数の脆弱性	CWE-22 CWE-284	CVE-2026-35570	2026-04-27 11:27	2026-04-21	Show	GitHub Exploit DB Packet Storm

5538	8.8	重要 Network	M1k1o	Neko	M1k1oのNekoにおける複数の脆弱性	CWE-20 CWE-269 CWE-284 CWE-639 CWE-862	CVE-2026-39386	2026-04-27 11:27	2026-04-21	Show	GitHub Exploit DB Packet Storm

5539	8.8	重要 Network	Lawnchair	Lawnchair	Lawnchairにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-39866	2026-04-27 11:27	2026-04-21	Show	GitHub Exploit DB Packet Storm

5540	6.1	警告 Network	NetFoundry	zrok	NetFoundryのzrokにおける複数の脆弱性	CWE-116 CWE-79	CVE-2026-40302	2026-04-27 11:27	2026-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
352921	-	freebsd	freebsd	FreeBSD kernel 4.6 and earlier closes the file descriptors 0, 1, and 2 after they have already been assigned to /dev/null when the descriptors reference procfs or linprocfs, which could allow local u…	NVD-CWE-Other	CVE-2002-0820	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

352922	-	freebsd	freebsd	Integer overflow in the Berkeley Fast File System (FFS) in FreeBSD 4.6.1 RELEASE-p4 and earlier allows local users to access arbitrary file contents within FFS to gain privileges by creating a file t…	NVD-CWE-Other	CVE-2002-0829	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

352923	-	freebsd	freebsd	The kqueue mechanism in FreeBSD 4.3 through 4.6 STABLE allows local users to cause a denial of service (kernel panic) via a pipe call in which one end is terminated and an EVFILT_WRITE filter is regi…	NVD-CWE-Other	CVE-2002-0831	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

352924	-	qualcomm	eudora	Buffer overflow in Eudora 5.1.1 and 5.0-J for Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a multi-part message with a long boundary string.	NVD-CWE-Other	CVE-2002-0833	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

352925	-	hp mandrakesoft redhat	secure_os mandrake_linux linux	dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involvin…	NVD-CWE-Other	CVE-2002-0836	2016-10-18 11:22	2002-10-28	Show	GitHub Exploit DB Packet Storm

352926	-	wordtrans	wordtrans-web	wordtrans 1.1pre8 and earlier in the wordtrans-web package allows remote attackers to (1) execute arbitrary code or (2) conduct cross-site scripting attacks via certain parameters (possibly "dict") t…	NVD-CWE-Other	CVE-2002-0837	2016-10-18 11:22	2002-10-4	Show	GitHub Exploit DB Packet Storm

352927	-	ggv ghostview gv	ggv ghostview gv	Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arb…	NVD-CWE-Other	CVE-2002-0838	2016-10-18 11:22	2002-10-10	Show	GitHub Exploit DB Packet Storm

352928	-	oracle	application_server	Format string vulnerability in certain third party modifications to mod_dav for logging bad gateway messages (e.g. Oracle9i Application Server 9.0.2) allows remote attackers to execute arbitrary code…	NVD-CWE-Other	CVE-2002-0842	2016-10-18 11:22	2003-03-3	Show	GitHub Exploit DB Packet Storm

352929	-	iplanet	iplanet_web_server	Buffer overflow in Sun ONE / iPlanet Web Server 4.1 and 6.0 allows remote attackers to execute arbitrary code via an HTTP request using chunked transfer encoding.	NVD-CWE-Other	CVE-2002-0845	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm

352930	-	macromedia	shockwave_flash	The decoder for Macromedia Shockwave Flash allows remote attackers to execute arbitrary code via a malformed SWF header that contains more data than the specified length.	NVD-CWE-Other	CVE-2002-0846	2016-10-18 11:22	2002-08-12	Show	GitHub Exploit DB Packet Storm