Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1181 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-35367 2026-04-27 11:17 2026-04-22 Show GitHub Exploit DB Packet Storm
1182 7.8 重要
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける信頼できない検索パスに関する脆弱性 CWE-426
信頼性のない検索パス 		CVE-2026-35368 2026-04-27 11:17 2026-04-22 Show GitHub Exploit DB Packet Storm
1183 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-35377 2026-04-27 11:17 2026-04-22 Show GitHub Exploit DB Packet Storm
1184 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける指定された機能の不適切な提供に関する脆弱性 CWE-684
指定された機能の不適切な提供 		CVE-2026-35381 2026-04-27 11:17 2026-04-22 Show GitHub Exploit DB Packet Storm
1185 5.4 警告
Network 		Papra Papra Papraにおける複数の脆弱性 CWE-79
CWE-80
CVE-2026-35460 2026-04-27 11:17 2026-04-7 Show GitHub Exploit DB Packet Storm
1186 4.3 警告
Network 		Papra Papra Papraにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-35461 2026-04-27 11:17 2026-04-7 Show GitHub Exploit DB Packet Storm
1187 4.3 警告
Network 		Papra Papra Papraにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-35462 2026-04-27 11:17 2026-04-7 Show GitHub Exploit DB Packet Storm
1188 8.1 重要
Network 		RedwoodSDK RedwoodSDK RedwoodSDKにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-39371 2026-04-27 11:17 2026-04-7 Show GitHub Exploit DB Packet Storm
1189 8.1 重要
Network 		Sgbett BSV Ruby SDK (bsv-sdk)
bsv-wallet 		Sgbettのbsv-wallet等の複数製品におけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-40070 2026-04-27 11:17 2026-04-9 Show GitHub Exploit DB Packet Storm
1190 8.1 重要
Network 		Nimiq Nimiq Proof of Stake (core-rs-albatross) NimiqのNimiq Proof of Stake (core-rs-albatross)における入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2026-40093 2026-04-27 11:17 2026-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313731 - ethereal_group ethereal Unknown vulnerability in the JXTA dissector in Ethereal 0.10.9 allows remote attackers to cause a denial of service (application crash). NVD-CWE-Other
CVE-2005-0765 2024-02-14 10:17 2005-03-12 Show GitHub Exploit DB Packet Storm
313732 - conectiva
ethereal_group
redhat
altlinux 		linux
ethereal
enterprise_linux
enterprise_linux_desktop
linux_advanced_workstation
alt_linux 		Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (packet-3g-a11.c) for Ethereal 0.10.9 and earlier allow remote attackers to execute arbitrary code via … NVD-CWE-Other
CVE-2005-0699 2024-02-14 10:17 2005-03-8 Show GitHub Exploit DB Packet Storm
313733 - phpbb_group phpbb viewtopic.php in phpBB 2.0.12 and earlier allows remote attackers to obtain sensitive information via a highlight parameter containing invalid regular expression syntax, which reveals the path in a P… NVD-CWE-Other
CVE-2005-0603 2024-02-14 10:17 2005-02-28 Show GitHub Exploit DB Packet Storm
313734 - gallery_project
gentoo 		gallery
linux 		Cross-site scripting (XSS) vulnerability in Gallery 1.4.4-pl3 and earlier allows remote attackers to execute arbitrary web script or HTML via "specially formed URLs," possibly via the include paramet… NVD-CWE-Other
CVE-2004-1106 2024-02-14 10:17 2005-01-10 Show GitHub Exploit DB Packet Storm
313735 - ethereal_group ethereal Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (application hang) and possibly fill available disk space via an invalid RTP timestamp. NVD-CWE-Other
CVE-2004-1140 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
313736 - ethereal_group ethereal The HTTP dissector in Ethereal 0.10.1 through 0.10.7 allows remote attackers to cause a denial of service (application crash) via a certain packet that causes the dissector to access previously-freed… NVD-CWE-Other
CVE-2004-1141 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
313737 - psychostats psychostats Cross-site scripting (XSS) vulnerability in login.php in PsychoStats 2.2.4 Beta and earlier allows remote attackers to inject arbitrary web script or HTML via the login parameter. CWE-79
Cross-site Scripting 		CVE-2004-1417 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
313738 - argosoft ftp_server ArGoSoft FTP before 1.4.2.1 generates an error message if the user name does not exist instead of prompting for a password, which allows remote attackers to determine valid usernames. CWE-203
 Information Exposure Through Discrepancy 		CVE-2004-1428 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
313739 - ethereal_group ethereal Unknown vulnerability in Ethereal 0.8.13 to 0.10.2 allows attackers to cause a denial of service (segmentation fault) via a malformed color filter file. NVD-CWE-Other
CVE-2004-1761 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
313740 - alan_ward a-cart SQL injection vulnerability in category.asp in A-CART Pro and A-CART 2.0 allows remote attackers to gain privileges via the catcode parameter. NVD-CWE-Other
CVE-2004-1873 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm