Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1481	9.9	緊急 Network	Vowpal Wabbit	Vowpal Wabbit	Vowpal Wabbitにおける複数の脆弱性	CWE-1336 CWE-78	CVE-2026-44723	2026-06-3 15:38	2026-05-26	Show	GitHub Exploit DB Packet Storm

1482	6.1	警告 Network	Apache Software Foundation	Echarts	Apache Software FoundationのEchartsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45249	2026-06-3 15:38	2026-05-25	Show	GitHub Exploit DB Packet Storm

1483	5.5	警告 Local	Libusb	Libusb	Libusbにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-47104	2026-06-3 15:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

1484	7.8	重要 Local	レッドハット openSUSE	Red Hat Hardened Images Red Hat Satellite Red Hat Update Infrastructure Red Hat OpenShift Container Platform libsolv Red&nbs…	openSUSE等の複数ベンダの製品における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-48864	2026-06-3 15:38	2026-05-26	Show	GitHub Exploit DB Packet Storm

1485	7.5	重要 Network	Jenkins プロジェクト	Pipeline: Groovy Libraries	JenkinsのPipeline: Groovy Librariesにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-48921	2026-06-3 15:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

1486	4.3	警告 Network	Kostyasha	Github Integration	KostyashaのGithub Integrationにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-48925	2026-06-3 15:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

1487	5.5	警告 Network	Jenkins プロジェクト	buildgraph-view	Jenkinsのbuildgraph-viewにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48927	2026-06-3 15:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

1488	6.5	警告 Network	IBM	IBM i	IBMのIBM Iにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-6936	2026-06-3 15:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

1489	2.7	低 Network	Synology Inc.	Surveillance Station	Synology Inc.のSurveillance Stationにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2024-47267	2026-06-3 15:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

1490	4.9	警告 Network	Synology Inc.	Surveillance Station	Synology Inc.のSurveillance Stationにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-47268	2026-06-3 15:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354671	-	-	-	SQL injection vulnerability in index.php in AlmondSoft Almond Classifieds 5.02 allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2005-4312	2011-03-8 11:27	2005-12-17	Show	GitHub Exploit DB Packet Storm

354672	-	ppcal_shopping_cart	ppcal_shopping_cart	Cross-site scripting (XSS) vulnerability in ppcal.cgi in PPCal Shopping Cart 3.3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) stop and (2) user parameters.	NVD-CWE-Other	CVE-2005-4314	2011-03-8 11:27	2005-12-17	Show	GitHub Exploit DB Packet Storm

354673	-	sourcefire	snort	Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet.	NVD-CWE-Other	CVE-2005-3252	2011-03-8 11:26	2005-10-19	Show	GitHub Exploit DB Packet Storm

354674	-	avaya proxim	wireless_ap-3 wireless_ap-4 wireless_ap-5 wireless_ap-6 wireless_ap-7 wireless_ap-8 ap-2000 ap-4000 ap-600 ap-700	Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions before 3.1, and (2) Proxim AP-600 and AP-2000 before 2.5.5, and Proxim AP-700 and AP-400…	NVD-CWE-Other	CVE-2005-3253	2011-03-8 11:26	2005-12-16	Show	GitHub Exploit DB Packet Storm

354675	-	squid	squid	The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain "odd" responses.	NVD-CWE-Other	CVE-2005-3258	2011-03-8 11:26	2005-10-20	Show	GitHub Exploit DB Packet Storm

354676	-	phpmyadmin	phpmyadmin	Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to (1) left.php, (2) queryframe.…	NVD-CWE-Other	CVE-2005-3301	2011-03-8 11:26	2005-10-24	Show	GitHub Exploit DB Packet Storm

354677	-	clam_anti-virus	clamav	The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file.	NVD-CWE-Other	CVE-2005-3303	2011-03-8 11:26	2005-11-5	Show	GitHub Exploit DB Packet Storm

354678	-	novell	zenworks_patch_management_server	Multiple SQL injection vulnerabilities in Novell ZENworks Patch Management 6.x before 6.2.2.181 allow remote attackers to execute arbitrary SQL commands via the (1) Direction parameter to computers/d…	NVD-CWE-Other	CVE-2005-3315	2011-03-8 11:26	2005-10-31	Show	GitHub Exploit DB Packet Storm

354679	-	mantis	mantis	SQL injection vulnerability in Mantis 1.0.0RC2 and 0.19.2 allows remote attackers to execute arbitrary SQL commands via unknown vectors.	NVD-CWE-Other	CVE-2005-3336	2011-03-8 11:26	2005-10-27	Show	GitHub Exploit DB Packet Storm

354680	-	norman_ramsey	noweb	noweb 2.10c and earlier allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm.	NVD-CWE-Other	CVE-2005-3342	2011-03-8 11:26	2005-12-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed