Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
711	7.4	重要 Network	マイクロソフト	Microsoft Authenticator	Microsoft Authenticator の情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2026-41615	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

712	6.5	警告 Network	Distribution	Distribution	Distributionにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41888	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

713	7.5	重要 Network	Signal K	Signal K Server	Signal KのSignal K Serverにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-41893	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

714	9.8	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-42031	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

715	9.1	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42032	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

716	4.9	警告 Network	argoproj	Argo Workflows	Argo Project AuthorsのArgo Workflowsにおける認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-42295	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

717	8.1	重要 Network	argoproj	Argo Workflows	Argo Project AuthorsのArgo Workflowsにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42296	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

718	8.3	重要 Network	argoproj	Argo Workflows	Argo Project AuthorsのArgo Workflowsにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42297	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

719	6.8	警告 Network	pyLoad-ng project	pyLoad-ng	pyLoad-ng projectのpyLoad-ngにおける複数の脆弱性	CWE-295 CWE-306 CWE-863	CVE-2026-42312	2026-05-18 11:30	2026-05-11	Show	GitHub Exploit DB Packet Storm

720	8.3	重要 Network	pyLoad-ng project	pyLoad-ng	pyLoad-ng projectのpyLoad-ngにおける複数の脆弱性	CWE-441 CWE-863 CWE-918	CVE-2026-42313	2026-05-18 11:30	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
352301	-	cerulean_studios	trillian trillian_pro	Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a l…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2390	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

352302	-	webchat.org xoops	webchat xoops	SQL injection vulnerability in index.php of WebChat 1.5 included in XOOPS 1.0 allows remote attackers to execute arbitrary SQL commands via the roomid parameter.	CWE-89 SQL Injection	CVE-2002-2391	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

352303	-	nullsoft	winamp	Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedde…	NVD-CWE-Other	CVE-2002-2392	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

352304	-	trend_micro	interscan_viruswall	InterScan VirusWall 3.6 for Linux and 3.52 for Windows allows remote attackers to bypass virus protection and possibly execute arbitrary code via HTTP 1.1 chunked transfer encoding.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2002-2394	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

352305	-	trend_micro	interscan_viruswall	InterScan VirusWall 3.52 for Windows allows remote attackers to bypass virus protection and possibly execute arbitrary code via HTTP 1.1 gzip content encoding.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2002-2395	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

352306	-	remi_lefebvre	advanced_tftp	Buffer overflow in Advanced TFTP (atftp) 0.5 and 0.6, if installed setuid or setgid, may allow local users to execute arbitrary code via a long argument to the -g option.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2396	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

352307	-	symantec	sygate_personal_firewall	Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed (1) source IP address of 127.0.0.1 or (2) network address of 127.0.0.0.	CWE-287 Improper Authentication	CVE-2002-2397	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

352308	-	app	apboard	The new thread posting page in APBoard 2.02 and 2.03 allows remote attackers to post messages to protected forums by modifying the insertinto parameter.	NVD-CWE-Other	CVE-2002-2398	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

352309	-	cascadesoft	w3mail	Directory traversal vulnerability in viewAttachment.cgi in W3Mail 1.0.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.	CWE-22 Path Traversal	CVE-2002-2399	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

352310	-	key_focus	kf_web_server	Directory traversal vulnerability in KeyFocus web server 1.0.8 allows remote attackers to read arbitrary files for recognized MIME type files via "...", "....", ".....", and other multiple dot sequen…	CWE-22 Path Traversal	CVE-2002-2403	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed