Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
161	7.5	重要 Network	NLnet Labs	Routinator	NLnet LabsのRoutinatorにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-49233	2026-06-12 14:46	2026-06-8	Show	GitHub Exploit DB Packet Storm

162	7.5	重要 Network	NLnet Labs	Routinator	NLnet LabsのRoutinatorにおける入力確認に関する脆弱性 New	CWE-20 CWE-noinfo	CVE-2026-49234	2026-06-12 14:46	2026-06-8	Show	GitHub Exploit DB Packet Storm

163	7.5	重要 Network	NLnet Labs	Routinator	NLnet LabsのRoutinatorにおける例外的な状態の処理に関する脆弱性 New	CWE-755 例外的な状態における不適切な処理	CVE-2026-49235	2026-06-12 14:46	2026-06-8	Show	GitHub Exploit DB Packet Storm

164	5.5	警告 Local	NSA	Ghidra	NSAのGhidraにおける無限ループに関する脆弱性 New	CWE-835 無限ループ	CVE-2026-49495	2026-06-12 14:46	2026-06-10	Show	GitHub Exploit DB Packet Storm

165	6.1	警告 Local	NSA	Ghidra	NSAのGhidraにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-49496	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

166	3.3	低 Local	NSA	Ghidra	NSAのGhidraにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-49497	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

167	8.8	重要 Network	NSA	Ghidra	NSAのGhidraにおけるSQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2026-49498	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

168	6.5	警告 Network	フォーティネット	FortiPortal	フォーティネットのFortiPortalにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-49938	2026-06-12 14:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

169	7.8	重要 Local	レッドハット X.Org Foundation	Red Hat Enterprise Linux xwayland X.Org X Server	レッドハット等の複数ベンダの製品における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-50260	2026-06-12 14:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

170	5.5	警告 Local	レッドハット X.Org Foundation	Red Hat Enterprise Linux xwayland X.Org X Server	レッドハット等の複数ベンダの製品における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-50263	2026-06-12 14:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
357401	-	symantec	norton_antivirus	Symantec AntiVirus 9 Corporate Edition allows local users to gain privileges via the "Scan for viruses" option, which launches a help window with raised privileges, a re-introduction of a vulnerabili…	NVD-CWE-Other	CVE-2005-2017	2008-09-6 05:50	2005-08-30	Show	GitHub Exploit DB Packet Storm

357402	-	freebsd	freebsd	ipfw in FreeBSD 5.4, when running on Symmetric Multi-Processor (SMP) or Uni Processor (UP) systems with the PREEMPTION kernel option enabled, does not sufficiently lock certain resources while perfor…	NVD-CWE-Other	CVE-2005-2019	2008-09-6 05:50	2005-07-5	Show	GitHub Exploit DB Packet Storm

357403	-	cpanel	cpanel	Cross-site scripting (XSS) vulnerability in cPanel 9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the user parameter in the login page.	NVD-CWE-Other	CVE-2005-2021	2008-09-6 05:50	2005-06-20	Show	GitHub Exploit DB Packet Storm

357404	-	vipul	razor-agents	Vipul Razor Agents (razor-agents) before 2.70 allows remote attackers to cause a denial of service via (1) certain "unusual HTML messages" or (2) "certain malformed headers" such as Content-Type.	NVD-CWE-Other	CVE-2005-2024	2008-09-6 05:50	2005-06-17	Show	GitHub Exploit DB Packet Storm

357405	-	enterasys	vertical_horizon-2402s	Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 has a hard-coded account and password for debugging, which allows remote attackers to gain privileges.	NVD-CWE-Other	CVE-2005-2026	2008-09-6 05:50	2005-06-16	Show	GitHub Exploit DB Packet Storm

357406	-	enterasys	vertical_horizon-2402s	Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 does not properly restrict certain debugging commands to the ADMIN account, which could allow attackers to obtain sensitive information …	NVD-CWE-Other	CVE-2005-2027	2008-09-6 05:50	2005-06-16	Show	GitHub Exploit DB Packet Storm

357407	-	amarok	web_frontend	amaroK Web Frontend 1.3 stores the globals.inc file under the web root without a .php extension and insufficient access control, which allows remote attackers to obtain the database username and pass…	NVD-CWE-Other	CVE-2005-2029	2008-09-6 05:50	2005-06-17	Show	GitHub Exploit DB Packet Storm

357408	-	socialmpn	socialmpn	Multiple SQL injection vulnerabilities in socialMPN allow remote attackers to execute arbitrary SQL commands via (1) the sid parameter to article.php, (2) uname parameter to user.php, (3) siteid para…	NVD-CWE-Other	CVE-2005-2031	2008-09-6 05:50	2005-06-16	Show	GitHub Exploit DB Packet Storm

357409	-	fortibus	fortibus_cms	Fortibus CMS 4.0.0 allows remote attackers to modify information of other users, including Admin, via the "My info" page.	NVD-CWE-Other	CVE-2005-2038	2008-09-6 05:50	2005-06-20	Show	GitHub Exploit DB Packet Storm

357410	-	nanoblogger	nanoblogger	Unknown vulnerability in "various plugins" for NanoBlogger 3.2.1 and earlier allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-2005-2039	2008-09-6 05:50	2005-06-19	Show	GitHub Exploit DB Packet Storm