Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1431 5.9 警告
Network 		PerlDancer Dancer::Session::Abstract PerlDancerのDancer::Session::Abstractにおける複数の脆弱性 CWE-338
CWE-340
CVE-2026-5080 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
1432 5.5 警告
Adjacent 		NASA Core Flight System (cFS) NASAのCore Flight System (cFS)におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-5475 2026-05-7 11:29 2026-04-3 Show GitHub Exploit DB Packet Storm
1433 4.6 警告
Adjacent 		NASA Core Flight System (cFS) NASAのCore Flight System (cFS)における複数の脆弱性 CWE-189
CWE-190
CVE-2026-5476 2026-05-7 11:29 2026-04-3 Show GitHub Exploit DB Packet Storm
1434 7.8 重要
Local 		IBM IBM Turbonomic Prometurbo agent IBMのIBM Turbonomic Prometurbo agentにおける権限管理に関する脆弱性 CWE-269
CWE-noinfo
CVE-2026-6389 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
1435 5.5 警告
Local 		レッドハット multicluster engine for Kubernetes レッドハットのmulticluster engine for Kubernetesにおける重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2026-7163 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
1436 7.2 重要
Network 		Amazon.com, Inc. Amazon ECS container agent Amazon.com, Inc.のAmazon ECS container agentにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-7461 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
1437 6.5 警告
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP ServerにおけるHTTPレスポンスの分割に関する脆弱性 CWE-443
CWE-Other
CVE-2026-33523 2026-05-7 11:29 2026-05-4 Show GitHub Exploit DB Packet Storm
1438 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける不適切な短絡評価に関する脆弱性 CWE-768
不適切な短絡評価 		CVE-2026-35378 2026-05-7 11:29 2026-04-22 Show GitHub Exploit DB Packet Storm
1439 7.5 重要
Network 		- 4D SASの4D ServerにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2024-39847 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
1440 9.1 緊急
Network 		rti RTI Connext Professional rtiのRTI Connext ProfessionalにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2025-14543 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350761 - woppoware postmaster message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to bypass authentication by modifying the email parameter. NVD-CWE-Other
CVE-2005-1652 2008-09-6 05:49 2005-05-18 Show GitHub Exploit DB Packet Storm
350762 - woppoware postmaster Cross-site scripting (XSS) vulnerability in message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to inject arbitrary web script or HTML via the email parameter. NVD-CWE-Other
CVE-2005-1653 2008-09-6 05:49 2005-05-18 Show GitHub Exploit DB Packet Storm
350763 - aol instant_messenger AOL Instant Messenger 5.5.x and earlier allows remote attackers to cause a denial of service (client crash) via an invalid smiley icon location in the sml parameter of a font tag. NVD-CWE-Other
CVE-2005-1655 2008-09-6 05:49 2005-05-18 Show GitHub Exploit DB Packet Storm
350764 - mercur mercur_messaging Mercur Messaging 2005 SP2 allows remote attackers to read the source code of .ctml files via a URL with a trailing hex-encoded space ("%20"). NVD-CWE-Other
CVE-2005-1656 2008-09-6 05:49 2005-05-18 Show GitHub Exploit DB Packet Storm
350765 - mercur mercur_messaging Multiple directory traversal vulnerabilities in Mercur Messaging 2005 SP2 allow remote attackers to perform unauthorized file operations via the Folder.Id parameter to (1) deletefolder.ctml, (2) dele… NVD-CWE-Other
CVE-2005-1657 2008-09-6 05:49 2005-05-18 Show GitHub Exploit DB Packet Storm
350766 - myserver myserver Directory traversal vulnerability in filemanager.cpp in MyServer 0.8 allows remote attackers to list the parent directory of the web root via a URL with a "..." (triple dot). NVD-CWE-Other
CVE-2005-1658 2008-09-6 05:49 2005-05-18 Show GitHub Exploit DB Packet Storm
350767 - - - Cross-site scripting (XSS) vulnerability in filemanager.cpp in MyServer 0.8 allows remote attackers to inject arbitrary Javascript via a URL with a "..." (triple dot) followed by an onmouseover even… NVD-CWE-Other
CVE-2005-1659 2008-09-6 05:49 2005-05-18 Show GitHub Exploit DB Packet Storm
350768 - jeuce jeuce_personal_web_server Jeuce Personal Webserver 2.13 allows remote attackers to cause a denial of service (server crash) via a long GET request, possibly triggering a buffer overflow. NVD-CWE-Other
CVE-2005-1661 2008-09-6 05:49 2005-05-18 Show GitHub Exploit DB Packet Storm
350769 - ubertec help_center_live Multiple cross-site scripting (XSS) vulnerabilities in Help Center Live allow remote attackers to inject arbitrary web script or HTML via the (1) find parameter to index.php, (2) name or (3) message … NVD-CWE-Other
CVE-2005-1672 2008-09-6 05:49 2005-05-19 Show GitHub Exploit DB Packet Storm
350770 - ubertec help_center_live Multiple SQL injection vulnerabilities in Help Center Live allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to index.php, (2) tid parameter to view.php, fid parameter… NVD-CWE-Other
CVE-2005-1673 2008-09-6 05:49 2005-05-19 Show GitHub Exploit DB Packet Storm