Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5731 9.1 緊急
Network 		EspoCRM EspoCRM EspoCRMにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-33656 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
5732 7.2 重要
Network 		EspoCRM EspoCRM EspoCRMにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-33733 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
5733 7.5 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける不正な構文構造の不適切な処理に関する脆弱性 CWE-228
不正な構文構造の不適切な処理 		CVE-2026-34232 2026-04-30 12:30 2026-04-17 Show GitHub Exploit DB Packet Storm
5734 5.3 警告
Network 		オラクル Oracle GoldenGate オラクルのOracle GoldenGateにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-34273 2026-04-30 12:30 2026-04-21 Show GitHub Exploit DB Packet Storm
5735 8.1 重要
Network 		getkirby kirby getkirbyのkirbyにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性 CWE-1336
テンプレートエンジンで使用される特殊な要素の不適切な無効化 		CVE-2026-34587 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
5736 9 緊急
Network 		Ci4-cms-erp Ci4MS Ci4-cms-erpのCi4MSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-34989 2026-04-30 12:30 2026-04-6 Show GitHub Exploit DB Packet Storm
5737 7.5 重要
Network 		Linux Foundation Antrea Linux FoundationのAntreaにおける重要なデータの暗号化の欠如に関する脆弱性 CWE-311
重要なデータの暗号化の欠如 		CVE-2026-34992 2026-04-30 12:29 2026-04-6 Show GitHub Exploit DB Packet Storm
5738 7.5 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2026-35215 2026-04-30 12:29 2026-04-17 Show GitHub Exploit DB Packet Storm
5739 8 重要
Adjacent 		フィリップス Hue Bridge V2 ファームウェア フィリップスのHue Bridge V2 ファームウェアにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-3555 2026-04-30 12:29 2026-03-16 Show GitHub Exploit DB Packet Storm
5740 8.8 重要
Adjacent 		フィリップス Hue Bridge V2 ファームウェア フィリップスのHue Bridge V2 ファームウェアにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-3556 2026-04-30 12:29 2026-03-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
358781 - com21 doxport_1100 Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal ne… NVD-CWE-Other
CVE-2002-1968 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
358782 - the_magic_notebook the_magic_notebook Magic Notebook 1.0b and 1.1b allows remote attackers to cause a denial of service (crash) via an invalid username during login. NVD-CWE-Other
CVE-2002-1969 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
358783 - snortcenter snortcenter SnortCenter 0.9.5, when configured to push Snort rules, stores the rules in a temporary file with world-readable and world-writable permissions, which allows local users to obtain usernames and passw… NVD-CWE-Other
CVE-2002-1970 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
358784 - sourcecraft networking_utils The ping utility in networking_utils.php in Sourcecraft Networking_Utils 1.0 allows remote attackers to read arbitrary files via shell metacharacters in the Domain name or IP address argument. NVD-CWE-Other
CVE-2002-1971 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
358785 - sebastian_dehne pp_powerswitch Unknown vulnerability in Parallel port powerSwitch (aka pp_powerSwitch) 0.1 does not properly enforce access controls, which allows local users to access arbitrary ports. NVD-CWE-Other
CVE-2002-1972 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
358786 - sharp zaurus The FTP service in Zaurus PDAs SL-5000D and SL-5500 does not require authentication, which allows remote attackers to access the file system as root. NVD-CWE-Other
CVE-2002-1974 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
358787 - qualcomm eudora Qualcomm Eudora 5.1.1, 5.2, and possibly other versions stores email attachments in a predictable location, which allows remote attackers to read arbitrary files via a link that loads an attachment w… NVD-CWE-Other
CVE-2002-1210 2008-09-6 05:30 2002-11-29 Show GitHub Exploit DB Packet Storm
358788 - kde kde Buffer overflow in DSC 3.0 parser from GSview, as used in KGhostView in KDE 1.1 and KDE 3.0.3a, may allow attackers to cause a denial of service or execute arbitrary code via a modified .ps (PostScri… NVD-CWE-Other
CVE-2002-1223 2008-09-6 05:30 2002-10-28 Show GitHub Exploit DB Packet Storm
358789 - kde kde Directory traversal vulnerability in kpf for KDE 3.0.1 through KDE 3.0.3a allows remote attackers to read arbitrary files as the kpf user via a URL with a modified icon parameter. NVD-CWE-Other
CVE-2002-1224 2008-09-6 05:30 2002-10-28 Show GitHub Exploit DB Packet Storm
358790 - pam pam PAM 0.76 treats a disabled password as if it were an empty (null) password, which allows local and remote attackers to gain privileges as disabled users. NVD-CWE-Other
CVE-2002-1227 2008-09-6 05:30 2002-10-28 Show GitHub Exploit DB Packet Storm