Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132991 6.1 警告
Network 		Claudio Klingler QuiXplorer Quixplorer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-24902 2021-09-17 14:59 2020-08-28 Show GitHub Exploit DB Packet Storm
132992 5.4 警告
Network 		Fedora Project
Python Software Foundation		 Fedora
Python Pillow 		Pillow における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2020-35655 2021-09-17 14:49 2020-12-23 Show GitHub Exploit DB Packet Storm
132993 8.8 重要
Network 		Fedora Project
Python Software Foundation		 Fedora
Python Pillow 		Pillow における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-35654 2021-09-17 14:49 2020-12-23 Show GitHub Exploit DB Packet Storm
132994 7.1 重要
Network 		Fedora Project
Python Software Foundation		 Fedora
Python Pillow 		Pillow における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2020-35653 2021-09-17 14:49 2020-12-23 Show GitHub Exploit DB Packet Storm
132995 7.8 重要
Local 		K7 Computing Ultimate Security
Total Security
Enterprise Security
K7 AntiVirus 		K7Computing K7AntiVirus Premium における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-11009 2021-09-17 14:49 2018-05-11 Show GitHub Exploit DB Packet Storm
132996 7.8 重要
Local 		K7 Computing Ultimate Security
Total Security
Enterprise Security
K7 AntiVirus 		K7Computing K7AntiVirus Premium における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-11010 2021-09-17 14:49 2018-05-11 Show GitHub Exploit DB Packet Storm
132997 5.5 警告
Local 		K7 Computing Ultimate Security
Total Security
Enterprise Security
K7 AntiVirus 		K7Computing K7AntiVirus Premium における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2018-11008 2021-09-17 14:49 2018-05-11 Show GitHub Exploit DB Packet Storm
132998 5.5 警告
Local 		K7 Computing Ultimate Security
Total Security
Enterprise Security
K7 AntiVirus 		K7Computing K7AntiVirus Premium における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-11007 2021-09-17 14:49 2018-05-11 Show GitHub Exploit DB Packet Storm
132999 5.5 警告
Local 		K7 Computing Ultimate Security
Total Security
Enterprise Security
K7 AntiVirus 		K7Computing K7AntiVirus Premium における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2018-11006 2021-09-17 14:49 2018-05-11 Show GitHub Exploit DB Packet Storm
133000 5.5 警告
Local 		K7 Computing Ultimate Security
Total Security
Enterprise Security
K7 AntiVirus 		K7Computing K7AntiVirus Premium における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2018-11005 2021-09-17 14:49 2018-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
101 5.9 MEDIUM
Network 		- - FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the IPv4 packet parser. In src/simple_packet_parser_ng.cpp, after validating that the packet contains at least sizeof(ipv4… New CWE-125
Out-of-bounds Read 		CVE-2026-48682 2026-06-5 01:28 2026-06-3 Show GitHub Exploit DB Packet Storm
102 7.5 HIGH
Network 		- - An integer underflow in the BGPUpdate.DecodeFromBytes function (/bgp/bgp.go) of gobgp v4.3.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted BGP UPDATE message. New CWE-190
 Integer Overflow or Wraparound 		CVE-2026-37462 2026-06-5 01:28 2026-06-4 Show GitHub Exploit DB Packet Storm
103 6.3 MEDIUM
Network 		- - A Cross Site Scripting vulnerability exists in the Kimi AI v1.0 web interface's 'Preview' feature. The application fails to properly sanitize or encode HTML/JavaScript payloads generated by the AI mo… New CWE-79
Cross-site Scripting 		CVE-2026-39107 2026-06-5 01:28 2026-06-4 Show GitHub Exploit DB Packet Storm
104 - - - GNCC GP5 v7.1.76 was discovered to utilize a weak hashing algorithm to protect the root password, possibly allowing attackers to obtain root credentials and privileges via a bruteforce attack. New - CVE-2026-36182 2026-06-5 01:28 2026-06-5 Show GitHub Exploit DB Packet Storm
105 - - - bacnet_stack 1.3.1 contains an Out-of-bounds Read in bacnet_tag_number_decode which allows attackers to cause a denial of service. New - CVE-2026-38570 2026-06-5 01:28 2026-06-5 Show GitHub Exploit DB Packet Storm
106 9.8 CRITICAL
Network 		- - CrowCpp Crow through v1.3.1 HTTP is vulnerable to response header injection via unvalidated response header values. New CWE-113
HTTP Response Splitting 		CVE-2026-38967 2026-06-5 01:26 2026-06-3 Show GitHub Exploit DB Packet Storm
107 9.8 CRITICAL
Network 		- - An OS command injection vulnerability in the app.py component of openlabs docker-wkhtmltopdf-aas up to commit 9f50579 allows attackers to execute arbitrary commands via a crafted POST request. New CWE-78
OS Command  		CVE-2026-36576 2026-06-5 01:26 2026-06-4 Show GitHub Exploit DB Packet Storm
108 - - - Dovestones Softwares ADPhonebook before v4.0.1.1 is vulnerable to a Cross Site Scripting vulnerability. The /Admin/Save API allows an authenticated admin user to store malicious JavaScript payloads i… New - CVE-2026-36460 2026-06-5 01:26 2026-06-4 Show GitHub Exploit DB Packet Storm
109 6.1 MEDIUM
Network 		- - Northern.tech CFEngine Enterprise 3.24.3 before 3.24.4 and 3.27.0 before 3.27.1 allows XSS. New CWE-79
Cross-site Scripting 		CVE-2026-33553 2026-06-5 01:25 2026-06-3 Show GitHub Exploit DB Packet Storm
110 5.4 MEDIUM
Network 		- - LIBPNG is a reference library for use in applications that process PNG (Portable Network Graphics) raster image files. In version 1.8.0, three inter-frame chunk discard paths in the push-mode APNG pa… New CWE-436
 Interpretation Conflict 		CVE-2026-40930 2026-06-5 01:23 2026-06-5 Show GitHub Exploit DB Packet Storm