Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1621	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows DWM Core ライブラリの情報漏えいの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-34336	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1622	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性	CWE-362 CWE-416	CVE-2026-34337	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1623	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows テレフォニーサービスの特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34338	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1624	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows ライトウェイトディレクトリアクセスプロトコル (LDAP) のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-34339	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1625	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Projected File System の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34340	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1626	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Link-Layer Discovery Protocol (LLDP) の特権昇格の脆弱性	CWE-415 二重解放	CVE-2026-34341	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1627	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows 印刷スプーラーの特権の昇格の脆弱性	CWE-362 競合状態	CVE-2026-34342	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1628	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows アプリケーション ID (AppID) のサブシステムの特権昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34343	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1629	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性	CWE-843 型の取り違え	CVE-2026-34344	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1630	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性	CWE-362 CWE-416	CVE-2026-34345	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
355611	-	sukria	backup_manager	Backup Manager 0.5.8a creates temporary files insecurely, which allows local users to conduct unauthorized file operations when a user is burning a CDR.	NVD-CWE-Other	CVE-2005-2211	2008-09-6 05:51	2005-07-11	Show	GitHub Exploit DB Packet Storm

355612	-	sukria	backup_manager	Backup Manager 0.5.8a creates an archive repository with world readable and writable permissions, which allows attackers to modify or read the repository.	NVD-CWE-Other	CVE-2005-2212	2008-09-6 05:51	2005-07-11	Show	GitHub Exploit DB Packet Storm

355613	-	debian	apt-setup	apt-setup in Debian GNU/Linux installs the apt.conf file with insecure permissions, which allows local users to obtain sensitive information such as passwords.	NVD-CWE-Other	CVE-2005-2214	2008-09-6 05:51	2005-07-11	Show	GitHub Exploit DB Packet Storm

355614	-	mediawiki	mediawiki	Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.x before 1.4.6 and 1.5 before 1.5beta3 allows remote attackers to inject arbitrary web script or HTML via a parameter in the page move…	NVD-CWE-Other	CVE-2005-2215	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

355615	-	photogal	photogal_photo_gallery	PHP remote file inclusion vulnerability in gals.php in PhotoGal Photo Gallery 1.5 and earlier allows remote attackers to execute arbitrary code via the news_file parameter.	NVD-CWE-Other	CVE-2005-2216	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

355616	-	craig_dansie	dansie_shopping_cart	Dansie Shopping Cart stores the vars.dat file under the web root with insufficient access control, which might allow remote attackers to obtain sensitive information such as program variables.	NVD-CWE-Other	CVE-2005-2217	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

355617	-	hosting_controller	hosting_controller	Hosting Controller 6.1 Hotfix 2.1 allows remote authenticated users to perform unauthorized actions, such as modifying the credit limit, via a direct request to AccountActions.asp and modifying the C…	NVD-CWE-Other	CVE-2005-2219	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

355618	-	mailenable	mailenable_professional	Unknown vulnerability in the HTTPMail service in MailEnable Professional before 1.6 has unknown impact and attack vectors.	NVD-CWE-noinfo	CVE-2005-2222	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

355619	-	mailenable	mailenable_professional mailenable_standard	Unknown vulnerability in the SMTP service in MailEnable Standard before 1.9 and Professional before 1.6 allows remote attackers to cause a denial of service (crash) during authentication.	NVD-CWE-Other	CVE-2005-2223	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm

355620	-	microsoft	outlook_express	Microsoft Outlook Express 6.0 leaks the default news server account when a user responds to a "watched" conversation thread, which could allow remote attackers to obtain sensitive information.	NVD-CWE-Other	CVE-2005-2226	2008-09-6 05:51	2005-07-12	Show	GitHub Exploit DB Packet Storm