Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132951 6.1 警告
Network 		IBM IBM Spectrum Protect Plus IBM Spectrum Protect Plus におけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性 CWE-1021
レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限 		CVE-2020-5020 2021-09-27 16:56 2021-01-7 Show GitHub Exploit DB Packet Storm
132952 4.4 警告
Local 		IBM IBM Spectrum Protect Plus IBM Spectrum Protect Plus におけるセッションの固定化の脆弱性 CWE-384
セッションの固定化 		CVE-2020-5021 2021-09-27 16:50 2021-01-7 Show GitHub Exploit DB Packet Storm
132953 5.3 警告
Network 		IBM IBM Spectrum Protect Plus IBM Spectrum Protect Plus における認証の欠如に関する脆弱性 CWE-306
CWE-862
CVE-2020-5022 2021-09-27 16:46 2021-01-7 Show GitHub Exploit DB Packet Storm
132954 5.4 警告
Network 		SimplCommerce SimplCommerce SimplCommerce におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-29587 2021-09-27 15:47 2020-12-6 Show GitHub Exploit DB Packet Storm
132955 7.5 重要
Network 		Skyworth Digital Holdings Ltd. GN542VF Boa ファームウェア Skyworth GN542VF Boa における重要なデータの暗号化の欠如に関する脆弱性 CWE-311
重要なデータの暗号化の欠如 		CVE-2020-26732 2021-09-27 15:46 2020-10-7 Show GitHub Exploit DB Packet Storm
132956 7.5 重要
Network 		Discourse Discourse Discourse における過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2021-3138 2021-09-27 15:46 2021-01-13 Show GitHub Exploit DB Packet Storm
132957 5.5 警告
Local 		Canonical remote-login-service package remote-login-service における暗号アルゴリズムの使用に関する脆弱性 CWE-327
不完全、または危険な暗号アルゴリズムの使用 		CVE-2013-1053 2021-09-27 15:46 2013-03-21 Show GitHub Exploit DB Packet Storm
132958 4.8 警告
Network 		シスコシステムズ Cisco DNA Center Cisco DNA Center ソフトウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-1130 2021-09-27 15:46 2021-01-13 Show GitHub Exploit DB Packet Storm
132959 9.8 緊急
Network 		LOXONE Miniserver ファームウェア Loxone Miniserver デバイスにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2020-27488 2021-09-27 15:46 2020-10-4 Show GitHub Exploit DB Packet Storm
132960 7.8 重要
Local 		Sound Research Corporation Sound Research DCHU モデルソフトウェアコンポーネントモジュール Sound Research DCHU モデルソフトウェアコンポーネントモジュールにおける信頼できない検索パスに関する脆弱性 CWE-426
信頼性のない検索パス 		CVE-2020-35686 2021-09-27 15:46 2020-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
101 5.9 MEDIUM
Network 		- - FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the IPv4 packet parser. In src/simple_packet_parser_ng.cpp, after validating that the packet contains at least sizeof(ipv4… New CWE-125
Out-of-bounds Read 		CVE-2026-48682 2026-06-5 01:28 2026-06-3 Show GitHub Exploit DB Packet Storm
102 7.5 HIGH
Network 		- - An integer underflow in the BGPUpdate.DecodeFromBytes function (/bgp/bgp.go) of gobgp v4.3.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted BGP UPDATE message. New CWE-190
 Integer Overflow or Wraparound 		CVE-2026-37462 2026-06-5 01:28 2026-06-4 Show GitHub Exploit DB Packet Storm
103 6.3 MEDIUM
Network 		- - A Cross Site Scripting vulnerability exists in the Kimi AI v1.0 web interface's 'Preview' feature. The application fails to properly sanitize or encode HTML/JavaScript payloads generated by the AI mo… New CWE-79
Cross-site Scripting 		CVE-2026-39107 2026-06-5 01:28 2026-06-4 Show GitHub Exploit DB Packet Storm
104 - - - GNCC GP5 v7.1.76 was discovered to utilize a weak hashing algorithm to protect the root password, possibly allowing attackers to obtain root credentials and privileges via a bruteforce attack. New - CVE-2026-36182 2026-06-5 01:28 2026-06-5 Show GitHub Exploit DB Packet Storm
105 - - - bacnet_stack 1.3.1 contains an Out-of-bounds Read in bacnet_tag_number_decode which allows attackers to cause a denial of service. New - CVE-2026-38570 2026-06-5 01:28 2026-06-5 Show GitHub Exploit DB Packet Storm
106 9.8 CRITICAL
Network 		- - CrowCpp Crow through v1.3.1 HTTP is vulnerable to response header injection via unvalidated response header values. New CWE-113
HTTP Response Splitting 		CVE-2026-38967 2026-06-5 01:26 2026-06-3 Show GitHub Exploit DB Packet Storm
107 9.8 CRITICAL
Network 		- - An OS command injection vulnerability in the app.py component of openlabs docker-wkhtmltopdf-aas up to commit 9f50579 allows attackers to execute arbitrary commands via a crafted POST request. New CWE-78
OS Command  		CVE-2026-36576 2026-06-5 01:26 2026-06-4 Show GitHub Exploit DB Packet Storm
108 - - - Dovestones Softwares ADPhonebook before v4.0.1.1 is vulnerable to a Cross Site Scripting vulnerability. The /Admin/Save API allows an authenticated admin user to store malicious JavaScript payloads i… New - CVE-2026-36460 2026-06-5 01:26 2026-06-4 Show GitHub Exploit DB Packet Storm
109 6.1 MEDIUM
Network 		- - Northern.tech CFEngine Enterprise 3.24.3 before 3.24.4 and 3.27.0 before 3.27.1 allows XSS. New CWE-79
Cross-site Scripting 		CVE-2026-33553 2026-06-5 01:25 2026-06-3 Show GitHub Exploit DB Packet Storm
110 5.4 MEDIUM
Network 		- - LIBPNG is a reference library for use in applications that process PNG (Portable Network Graphics) raster image files. In version 1.8.0, three inter-frame chunk discard paths in the push-mode APNG pa… New CWE-436
 Interpretation Conflict 		CVE-2026-40930 2026-06-5 01:23 2026-06-5 Show GitHub Exploit DB Packet Storm