Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1141 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. CX12L Pro Firmware Shenzhen Tenda Technology Co.,Ltd.のCX12L Pro Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-8138 2026-05-12 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
1142 7.8 重要
Local 		NAVER Corp. NAVER MYBOX Explorer for Windows NAVER Corp.のNAVER MYBOX Explorer for Windowsにおける不適切な権限設定に関する脆弱性 CWE-266
不適切な権限設定 		CVE-2026-8148 2026-05-12 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
1143 7.3 重要
Network 		Project Jupyter Jupyter Server Project JupyterのJupyter Serverにおけるアンカーのない正規表現に関する脆弱性 CWE-777
アンカーのない正規表現 		CVE-2026-40110 2026-05-12 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
1144 6.1 警告
Network 		HCL Technologies Limited unica
HCL Unica Plan
HCL Unica Segment Central
HCL Unica Centralized Offer Management
HCL Unica Audience Campaign
HCL U… 		HCL Technologies Limitedのunica等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-62320 2026-05-12 10:19 2026-03-17 Show GitHub Exploit DB Packet Storm
1145 5.5 警告
Local 		ヒューレット・パッカード Samsung Print Service Plugin ヒューレット・パッカードのSamsung Print Service PluginにおけるAndroid アプリケーションコンポーネントの不適切なエクスポートの脆弱性 CWE-926
CWE-noinfo
CVE-2026-3291 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
1146 8.8 重要
Network 		langflow langflow
Langflow-base 		langflowのLangflow-base等の複数製品における複数の脆弱性 CWE-639
CWE-862
CVE-2026-34046 2026-05-12 10:19 2026-03-27 Show GitHub Exploit DB Packet Storm
1147 7.5 重要
Network 		Gazelle project Gazelle KazeburoのGazelleにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-40562 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
1148 5.3 警告
Network 		opentelemetry OpenTelemetry.Exporter.Zipkin opentelemetryのOpenTelemetry.Exporter.Zipkinにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-41310 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
1149 7.5 重要
Network 		uuidjs uuid uuidjsのuuidにおける複数の脆弱性 CWE-787
CWE-823
CVE-2026-41907 2026-05-12 10:19 2026-04-24 Show GitHub Exploit DB Packet Storm
1150 7.5 重要
Network 		Amazon.com, Inc. Bedrock Agentcore Starter Toolkit Amazon.com, Inc.のBedrock Agentcore Starter Toolkitにおける複数の脆弱性 CWE-283
CWE-340
CVE-2026-4269 2026-05-12 10:19 2026-03-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351601 - axis 2100_network_camera
2110_network_camera
2120_network_camera
2130_ptz_network_camera
230_mpeg2_video_server
2400_video_server
2401_video_server
2411_video_server
2420_network_c… 		Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to obtain sensitive information via direct requests to (1) admin/getparam.cgi, (2) admin/systemlog.cgi… NVD-CWE-Other
CVE-2004-2427 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
351602 - gnu gnubiff Unknown vulnerability in gnubiff 1.2.0 and earlier allows local users to obtain passwords, related to the password table. NVD-CWE-Other
CVE-2004-2459 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
351603 - securecomputing sidewinder_g2 Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (SMTP proxy failure) via unknown attack vendors involving an "extremely busy network." NOTE: … NVD-CWE-Other
CVE-2004-2545 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
351604 - phpgroupware phpgroupware PHP remote file inclusion vulnerability in tables_update.inc.php in phpGroupWare 0.9.14.005 and earlier allows remote attackers to execute arbitrary PHP code via an external URL in the appdir paramet… NVD-CWE-Other
CVE-2004-2573 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
351605 - phpgroupware phpgroupware The acl_check function in phpGroupWare 0.9.16RC2 always returns True, even when mkdir does not behave as expected, which could allow remote attackers to obtain sensitive information via WebDAV from u… NVD-CWE-Other
CVE-2004-2577 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
351606 - - - Quake II server before R1Q2, as used in multiple products, allows remote attackers to corrupt the server's client state data structure by exiting a session without a valid disconnect command, then re… NVD-CWE-Other
CVE-2004-2598 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
351607 - vserver linux-vserver Unspecified vulnerability in procfs in the Linux-VServer stable branch for the 2.4 kernel before 1.23 and Linux-VServer development branch for the 2.4 kernel before 1.3.5 has unspecified impact and a… NVD-CWE-Other
CVE-2004-2613 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
351608 - paul_l_daniels ripmime The MIMEH_read_headers function in ripMIME 1.3.1.0 does not properly handle trailing "\r" and "\n" characters in headers, which leads to a buffer underflow. NVD-CWE-Other
CVE-2004-2620 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
351609 - first_virtual_communications click_to_meet_express
click_to_meet_premier
conference_server
v-gate 		Multiple vulnerabilities in the H.323 protocol implementation for First Virtual Communications Click to Meet Express (when used with H.323 conferencing endpoints), Click to Meet Premier, Conference S… NVD-CWE-Other
CVE-2004-2629 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
351610 - apache james Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock fr… NVD-CWE-Other
CVE-2004-2650 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm