Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5991	4.3	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2025-59031	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5992	5.3	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-0394	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5993	8.2	重要 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-24031	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5994	5.9	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるCapture-replay による認証回避に関する脆弱性	CWE-294 Capture-replayによる認証回避	CVE-2026-27855	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5995	5.9	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品における認証に関する脆弱性	CWE-287 CWE-Other	CVE-2026-27856	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5996	5.3	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-27860	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5997	8.4	重要 Local	Anthropic PBC	Claude Code Claude Agent SDK	Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35020	2026-05-1 10:39	2026-04-6	Show	GitHub Exploit DB Packet Storm

5998	7.8	重要 Local	Anthropic PBC	Claude Code Claude Agent SDK	Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35021	2026-05-1 10:39	2026-04-6	Show	GitHub Exploit DB Packet Storm

5999	9.8	緊急 Network	Anthropic PBC	Claude Code Claude Agent SDK	Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35022	2026-05-1 10:39	2026-04-6	Show	GitHub Exploit DB Packet Storm

6000	7.8	重要 Local	MAGIX	MAGIX MP3 deluxe	MAGIXのMAGIX MP3 deluxeにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2018-25260	2026-05-1 10:39	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354611	-	activestate	activepython	ActivePython ActiveX control for Python in the AXScript package, when used in Internet Explorer, does not prevent a script from reading files from the client's filesystem, which allows remote attacke…	NVD-CWE-Other	CVE-2002-0131	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

354612	-	avirt	avirt_gateway avirt_gateway_suite avirt_soho	Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long header fields to the HTTP proxy, or (2) a long string …	NVD-CWE-Other	CVE-2002-0133	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

354613	-	avirt	avirt_gateway_suite	Telnet proxy in Avirt Gateway Suite 4.2 does not require authentication for connecting to the proxy system itself, which allows remote attackers to list file contents of the proxy and execute arbitra…	NVD-CWE-Other	CVE-2002-0134	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

354614	-	andreas_mueller	cdrdao	CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file.	NVD-CWE-Other	CVE-2002-0137	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

354615	-	andreas_mueller	cdrdao	CDRDAO 1.1.4 and 1.1.5 allows local users to read arbitrary files via the show-data command.	NVD-CWE-Other	CVE-2002-0138	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

354616	-	pi3	pi3web	CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long an…	NVD-CWE-Other	CVE-2002-0142	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

354617	-	cisco	secure_access_control_server	Format string vulnerability in the administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to crash…	CWE-134 Use of Externally-Controlled Format String	CVE-2002-0159	2016-10-18 11:16	2002-04-22	Show	GitHub Exploit DB Packet Storm

354618	-	cisco	secure_access_control_server	The administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to read HTML, Java class, and image fil…	NVD-CWE-Other	CVE-2002-0160	2016-10-18 11:16	2002-04-22	Show	GitHub Exploit DB Packet Storm

354619	-	logwatch	logwatch	LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.	NVD-CWE-Other	CVE-2002-0162	2016-10-18 11:16	2002-03-27	Show	GitHub Exploit DB Packet Storm

354620	-	squid	squid	Heap-based buffer overflow in Squid before 2.4 STABLE4, and Squid 2.5 and 2.6 until March 12, 2002 distributions, allows remote attackers to cause a denial of service, and possibly execute arbitrary …	NVD-CWE-Other	CVE-2002-0163	2016-10-18 11:16	2002-03-26	Show	GitHub Exploit DB Packet Storm