Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
561	7.8	重要 Local	DeepCool	DeepCreative	DeepCoolのDeepCreativeにおける安全でない継承されたパーミッションに関する脆弱性 New	CWE-277 安全でない継承されたパーミッション	CVE-2026-30266	2026-04-30 12:13	2026-04-20	Show	GitHub Exploit DB Packet Storm

562	7.5	重要 Network	Angeet	ES3 KVM Firmware	AngeetのES3 KVM Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-32297	2026-04-30 12:13	2026-03-17	Show	GitHub Exploit DB Packet Storm

563	9.1	緊急 Network	Angeet	ES3 KVM Firmware	AngeetのES3 KVM FirmwareにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-32298	2026-04-30 12:13	2026-03-17	Show	GitHub Exploit DB Packet Storm

564	7.5	重要 Network	オラクル	Oracle Financial Services Customer Screening	オラクルのOracle Financial Services Customer Screeningにおける認可に関する脆弱性 New	CWE-285 不適切な認可	CVE-2026-34320	2026-04-30 12:13	2026-04-21	Show	GitHub Exploit DB Packet Storm

565	5.8	警告 Network	Pavel Zbornik (pavelzbornik)	whisperX REST API	Pavel Zbornik (pavelzbornik)のwhisperX REST APIにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-34981	2026-04-30 12:13	2026-04-6	Show	GitHub Exploit DB Packet Storm

566	7.5	重要 Network	Distribution	Distribution	Distributionにおけるアクセス制御に関する脆弱性 New	CWE-284 CWE-noinfo	CVE-2026-35172	2026-04-30 12:13	2026-04-6	Show	GitHub Exploit DB Packet Storm

567	7.5	重要 Network	UnJS Team	defu	UnJS Teamのdefuにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 New	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-35209	2026-04-30 12:13	2026-04-6	Show	GitHub Exploit DB Packet Storm

568	7.5	重要 Network	オラクル	Oracle Financial Services Transaction Filtering	オラクルのOracle Financial Services Transaction Filteringにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35231	2026-04-30 12:13	2026-04-21	Show	GitHub Exploit DB Packet Storm

569	6.3	警告 Local	Flatpak	XDG Desktop Portal (xdg-desktop-portal)	FlatpakのXDG Desktop Portal (xdg-desktop-portal)におけるUNIX Symbolic Link のフォローに関する脆弱性 New	CWE-61 UNIX Symbolic Link のフォロー	CVE-2026-40354	2026-04-30 12:13	2026-04-11	Show	GitHub Exploit DB Packet Storm

570	5.3	警告 Local	Veeam	one	サムスンのOneにおける整数オーバーフローの脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-40448	2026-04-30 12:13	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347931	-	apple	mac_os_x mac_os_x_server	Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has unknown impact and attack vectors.	NVD-CWE-Other	CVE-2004-0090	2008-09-6 05:37	2004-12-31	Show	GitHub Exploit DB Packet Storm

347932	-	apache	mod_python	Unknown vulnerability in mod_python 2.7.9 allows remote attackers to cause a denial of service (httpd crash) via a certain query string, a variant of CAN-2003-0973.	NVD-CWE-Other	CVE-2004-0096	2008-09-6 05:37	2004-03-3	Show	GitHub Exploit DB Packet Storm

347933	-	gnu	mailman	Mailman before 2.0.13 allows remote attackers to cause a denial of service (crash) via an email message with an empty subject field.	NVD-CWE-Other	CVE-2004-0182	2008-09-6 05:37	2004-06-1	Show	GitHub Exploit DB Packet Storm

347934	-	phorum	phorum	Unspecified vulnerability in Phorum 3.4 through 3.4.2 allows remote attackers to use Phorum as a connection proxy to other sites via (1) register.php or (2) login.php.	NVD-CWE-Other	CVE-2003-1466	2008-09-6 05:37	2003-12-31	Show	GitHub Exploit DB Packet Storm

347935	-	freebsd	slashem-tty	slashem-tty in the FreeBSD Ports Collection is installed with write permissions for the games group, which allows local users with group games privileges to modify slashem-tty and execute arbitrary c…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2003-1474	2008-09-6 05:37	2003-12-31	Show	GitHub Exploit DB Packet Storm

347936	-	cerberus	ftp_server	Cerberus FTP Server 2.1 stores usernames and passwords in plaintext, which could allow local users to gain access.	NVD-CWE-Other	CVE-2003-1476	2008-09-6 05:37	2003-12-31	Show	GitHub Exploit DB Packet Storm

347937	-	microsoft	mn-500_wireless_base_station	The backup configuration file for Microsoft MN-500 wireless base station stores administrative passwords in plaintext, which allows local users to gain access.	CWE-255 Credentials Management	CVE-2003-1482	2008-09-6 05:37	2003-12-31	Show	GitHub Exploit DB Packet Storm

347938	-	clearswift	mailsweeper	Clearswift MAILsweeper 4.0 through 4.3.7 allows remote attackers to bypass filtering via a file attachment that contains "multiple extensions combined with large blocks of white space."	CWE-20 Improper Input Validation	CVE-2003-1485	2008-09-6 05:37	2003-12-31	Show	GitHub Exploit DB Packet Storm

347939	-	snert.com	mod_throttle	mod_throttle 3.0 allows local users with Apache privileges to access shared memory that points to a file that is writable by the apache user, which could allow local users to gain privileges.	NVD-CWE-Other	CVE-2003-1502	2008-09-6 05:37	2003-12-31	Show	GitHub Exploit DB Packet Storm

347940	-	mirc	mirc	Buffer overflow in mIRC 6.12, when the DCC get dialog window has been minimized and the user opens the minimized window, allows remote attackers to cause a denial of service (crash) via a long filena…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1508	2008-09-6 05:37	2003-12-31	Show	GitHub Exploit DB Packet Storm