Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1531 7.8 重要
Local 		GitHub GitHub Copilot CLI GitHubのGitHub Copilot CLIにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-29783 2026-05-20 13:22 2026-03-6 Show GitHub Exploit DB Packet Storm
1532 10 緊急
Network 		DHTMLX PDF Export Module DHTMLXのPDF Export ModuleにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-41553 2026-05-20 13:22 2026-05-15 Show GitHub Exploit DB Packet Storm
1533 8.8 重要
Network 		huggingface Diffusers huggingfaceのDiffusersにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-44513 2026-05-20 13:22 2026-05-14 Show GitHub Exploit DB Packet Storm
1534 8.8 重要
Network 		huggingface Diffusers huggingfaceのDiffusersにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-44827 2026-05-20 13:22 2026-05-14 Show GitHub Exploit DB Packet Storm
1535 7.1 重要
Network 		Peter Steinberger (steipete) Summarize Peter Steinberger (steipete)のSummarizeにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-45242 2026-05-20 13:22 2026-05-18 Show GitHub Exploit DB Packet Storm
1536 6.1 警告
Network 		Peter Steinberger (steipete) Summarize Peter Steinberger (steipete)のSummarizeにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-45243 2026-05-20 13:22 2026-05-18 Show GitHub Exploit DB Packet Storm
1537 5.4 警告
Network 		Peter Steinberger (steipete) Summarize Peter Steinberger (steipete)のSummarizeにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-45244 2026-05-20 13:22 2026-05-18 Show GitHub Exploit DB Packet Storm
1538 7.4 重要
Network 		Peter Steinberger (steipete) Summarize Peter Steinberger (steipete)のSummarizeにおける複数の脆弱性 CWE-918
CWE-940
CVE-2026-45245 2026-05-20 13:22 2026-05-18 Show GitHub Exploit DB Packet Storm
1539 5.5 警告
Local 		Peter Steinberger (steipete) Summarize Peter Steinberger (steipete)のSummarizeにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-45246 2026-05-20 13:22 2026-05-18 Show GitHub Exploit DB Packet Storm
1540 9.8 緊急
Network 		IBM IBM Total Storage Service Console (TSSC)
TS4500 IMC 		IBMのIBM Total Storage Service Console (TSSC)等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-5935 2026-05-20 13:21 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355181 - suse suse_linux resmgr in SUSE Linux 9.2 and 9.3, and possibly other distributions, does not properly enforce class-specific exclude rules in some situations, which allows local users to bypass intended access restr… NVD-CWE-Other
CVE-2005-4789 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
355182 - phpwebsite phpwebsite SQL injection vulnerability in index.php in Appalachian State University phpWebSite 0.10.1 and earlier allows remote attackers to execute arbitrary SQL commands via the module parameter. NOTE: the p… NVD-CWE-Other
CVE-2005-4792 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
355183 - hitachi cm2-network_node_manager
jp1-cm2-network_node_manager_250 		Multiple unspecified vulnerabilities in the web utility function in Hitachi Cm2/Network Node Manager and JP1/Cm2/Network Node Manager before 20050930 allow attackers to execute arbitrary commands, di… NVD-CWE-Other
CVE-2005-4793 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
355184 - sun java_system_application_server Unspecified vulnerability in Sun Java System Application Server 7 Standard and Platform Edition 6 and earlier, and 2004Q2 Standard and Platform Edition Update 2 and earlier, allows remote attackers t… NVD-CWE-Other
CVE-2005-4805 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
355185 - middlebury_college segue_cms Unrestricted file upload vulnerability in Segue CMS before 1.3.6, when the Apache HTTP Server handles .phtml files with the PHP interpreter, allows remote attackers to upload and execute arbitrary PH… NVD-CWE-Other
CVE-2005-4814 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
355186 - proftpd_project proftpd Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password. NVD-CWE-Other
CVE-2005-4816 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
355187 - copernicus europa Multiple SQL injection vulnerabilities in Copernicus Europa allow remote attackers to execute arbitrary SQL commands via unknown vectors. NOTE: the provenance of this information is unknown; the det… NVD-CWE-Other
CVE-2005-4818 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
355188 - glen_campbell siteframe PHP remote file inclusion vulnerability in web/classes.php in Siteframe before 3.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the LOCAL_PATH parameter, a different vulnerabi… NVD-CWE-Other
CVE-2005-4824 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
355189 - claymore_systems_inc puretls PureTLS before 0.9b5 does not clear optional Extensions and Algorithm.Parameters values before parsing, which might trigger an information leak of values from earlier certificates. NVD-CWE-Other
CVE-2005-4839 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm
355190 - spey spey Format string vulnerability in Logger.cc for Spey 0.3.3 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in a syslog call. CWE-20
 Improper Input Validation  		CVE-2005-4846 2008-09-6 05:57 2005-12-31 Show GitHub Exploit DB Packet Storm