Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
6701 7.2 重要
Network 		Apache Software Foundation Apache Neethi Apache Software FoundationのApache Neethiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-42404 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
6702 7.1 重要
Local 		Open CASCADE Technology (OCCT) Open CASCADE Technology (OCCT) Open CASCADE Technology (OCCT)における境界外読み取りに関する脆弱性 CWE-125
CWE-125
CVE-2026-42476 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
6703 7.1 重要
Local 		Open CASCADE Technology (OCCT) Open CASCADE Technology (OCCT) Open CASCADE Technology (OCCT)における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-42477 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
6704 7.5 重要
Network 		Open CASCADE Technology (OCCT) Open CASCADE Technology (OCCT) Open CASCADE Technology (OCCT)における複数の脆弱性 CWE-125
CWE-476
CVE-2026-42478 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
6705 5.5 警告
Local 		Open CASCADE Technology (OCCT) Open CASCADE Technology (OCCT) Open CASCADE Technology (OCCT)における境界外読み取りに関する脆弱性 CWE-125
CWE-125
CVE-2026-42479 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
6706 9.8 緊急
Network 		hashcat hashcat hashcatにおける複数の脆弱性 CWE-121
CWE-787
CVE-2026-42482 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
6707 9.8 緊急
Network 		hashcat hashcat hashcatにおける複数の脆弱性 CWE-122
CWE-787
CVE-2026-42483 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
6708 9.8 緊急
Network 		hashcat hashcat hashcatにおける境界外書き込みに関する脆弱性 CWE-787
CWE-787
CVE-2026-42484 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
6709 9.1 緊急
Network 		Technostrobe HI-LED-WR120-G2 Firmware TechnostrobeのHI-LED-WR120-G2 Firmwareにおける複数の脆弱性 CWE-862
CWE-863
CVE-2026-5574 2026-05-7 12:00 2026-04-5 Show GitHub Exploit DB Packet Storm
6710 7.1 重要
Local 		レッドハット
Xiph.Org		 Red Hat Enterprise Linux
Theora 		レッドハット等の複数ベンダの製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-5673 2026-05-7 12:00 2026-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355121 - x-cd-roast x-cd-roast X-CD-Roast 0.98 alpha10 through alpha14 allows local users to overwrite arbitrary files via a symlink attack on an unknown file. NVD-CWE-Other
CVE-2003-1155 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
355122 - sun jdk
jre 		Java Runtime Environment (JRE) and Software Development Kit (SDK) 1.4.2 through 1.4.2_02 allows local users to overwrite arbitrary files via a symlink attack on (1) unpack.log, as created by the unpa… NVD-CWE-Other
CVE-2003-1156 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
355123 - citrix metaframe Cross-site scripting (XSS) vulnerability in login.asp in Citrix MetaFrame XP Server 1.0 allows remote attackers to inject arbitrary web script or HTML via the NFuse_Message parameter. NVD-CWE-Other
CVE-2003-1157 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
355124 - plug_and_play_software plug_and_play_web_server Multiple buffer overflows in the FTP service in Plug and Play Web Server 1.0002c allow remote attackers to cause a denial of service (crash) via long (1) dir, (2) ls, (3) delete, (4) mkdir, (5) DELE,… NVD-CWE-Other
CVE-2003-1158 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
355125 - plug_and_play plug_and_play_web_server_proxy Plug and Play Web Server Proxy 1.0002c allows remote attackers to cause a denial of service (server crash) via an invalid URI in an HTTP GET request to TCP port 8080. NVD-CWE-Other
CVE-2003-1159 2017-07-11 10:29 2003-10-31 Show GitHub Exploit DB Packet Storm
355126 - seyeon flexwatch_network_video_server FlexWATCH Network video server 132 allows remote attackers to bypass authentication and gain administrative privileges via an HTTP request to aindex.htm that contains double leading slashes (//). NVD-CWE-Other
CVE-2003-1160 2017-07-11 10:29 2003-10-30 Show GitHub Exploit DB Packet Storm
355127 - tritanium_scripts tritanium_bulletin_board index.php in Tritanium Bulletin Board 1.2.3 allows remote attackers to read and reply to arbitrary messages by modifying the thread_id, forum_id, and sid parameters. NVD-CWE-Other
CVE-2003-1162 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
355128 - ganglia gmond hash.c in Ganglia gmond 2.5.3 allows remote attackers to cause a denial of service (segmentation fault) via a UDP packet that contains a single-byte name string, which is used as an out-of-bounds arr… NVD-CWE-Other
CVE-2003-1163 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
355129 - mldonkey mldonkey Cross-site scripting (XSS) vulnerability in Mldonkey 2.5-4 allows remote attackers to inject arbitrary web script or HTML via the URI, which is injected into the HTML error page. NVD-CWE-Other
CVE-2003-1164 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
355130 - brs webweaver Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header. NVD-CWE-Other
CVE-2003-1165 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm