Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1801 9.8 緊急
Network 		Joomla! Joomla! Joomla!における不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-48902 2026-06-3 15:34 2026-05-26 Show GitHub Exploit DB Packet Storm
1802 6.6 警告
Network 		Jenkins プロジェクト Active Directory JenkinsのActive Directoryにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-48918 2026-06-3 15:34 2026-05-27 Show GitHub Exploit DB Packet Storm
1803 6.6 警告
Network 		Jenkins プロジェクト Active Directory JenkinsのActive Directoryにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-48919 2026-06-3 15:34 2026-05-27 Show GitHub Exploit DB Packet Storm
1804 8.8 重要
Network 		Jenkins プロジェクト Email Extension Plugin JenkinsのEmail Extension Pluginにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-48920 2026-06-3 15:34 2026-05-27 Show GitHub Exploit DB Packet Storm
1805 7.5 重要
Network 		Jenkins プロジェクト Credentials Binding JenkinsのCredentials Bindingにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-48922 2026-06-3 15:34 2026-05-27 Show GitHub Exploit DB Packet Storm
1806 4.3 警告
Network 		Jenkins プロジェクト AppSpider JenkinsのAppSpiderにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-48923 2026-06-3 15:34 2026-05-27 Show GitHub Exploit DB Packet Storm
1807 4.3 警告
Network 		Jenkins プロジェクト Bitbucket OAuth JenkinsのBitbucket OAuthにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-48924 2026-06-3 15:34 2026-05-27 Show GitHub Exploit DB Packet Storm
1808 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-5272 2026-06-3 15:34 2026-04-1 Show GitHub Exploit DB Packet Storm
1809 5.5 警告
Local 		IBM IBM App Connect Enterprise IBMのIBM App Connect Enterpriseにおける重要な情報のセキュアでない格納に関する脆弱性 CWE-922
重要な情報のセキュアでない格納 		CVE-2026-5515 2026-06-3 15:34 2026-05-27 Show GitHub Exploit DB Packet Storm
1810 8.8 重要
Network 		Agilonhealth (MphRx) Minerva Agilonhealth (MphRx)のMinervaにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-5781 2026-06-3 15:34 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354931 - indexcor ezdatabase Directory traversal vulnerability in index.php in ezDatabase 2.1.2 and earlier allows remote attackers to include arbitrary local files via ".." sequences in the p parameter. NVD-CWE-Other
CVE-2005-4302 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
354932 - focalmedia.net sitenet_bbs Multiple cross-site scripting (XSS) vulnerabilities in SiteNet BBS 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) pg, (2) tid, (3) cid, and (4) fid paramete… NVD-CWE-Other
CVE-2005-4306 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
354933 - jonathan_bravata scarecrow Cross-site scripting (XSS) vulnerability in ScareCrow 2.13 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter to (1) forum.cgi and (2) post.cgi, or (3)… NVD-CWE-Other
CVE-2005-4307 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
354934 - ssh tectia_server SSH Tectia Server 5.0.0 (A, F, and T), when allowing host-based authentication only, allows users to log in with the wrong credentials. NVD-CWE-Other
CVE-2005-4310 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
354935 - dcscripts dcforum
dcforum\+ 		Cross-site scripting (XSS) vulnerability in DCForum 6.25 and earlier, and possibly DCForum+ 1.x, allows remote attackers to inject arbitrary web script or HTML via (1) the page parameter in dcboard.p… NVD-CWE-Other
CVE-2005-4311 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
354936 - - - SQL injection vulnerability in index.php in AlmondSoft Almond Classifieds 5.02 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2005-4312 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
354937 - ppcal_shopping_cart ppcal_shopping_cart Cross-site scripting (XSS) vulnerability in ppcal.cgi in PPCal Shopping Cart 3.3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) stop and (2) user parameters. NVD-CWE-Other
CVE-2005-4314 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
354938 - sourcefire snort Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet. NVD-CWE-Other
CVE-2005-3252 2011-03-8 11:26 2005-10-19 Show GitHub Exploit DB Packet Storm
354939 - avaya
proxim 		wireless_ap-3
wireless_ap-4
wireless_ap-5
wireless_ap-6
wireless_ap-7
wireless_ap-8
ap-2000
ap-4000
ap-600
ap-700 		Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions before 3.1, and (2) Proxim AP-600 and AP-2000 before 2.5.5, and Proxim AP-700 and AP-400… NVD-CWE-Other
CVE-2005-3253 2011-03-8 11:26 2005-12-16 Show GitHub Exploit DB Packet Storm
354940 - squid squid The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain "odd" responses. NVD-CWE-Other
CVE-2005-3258 2011-03-8 11:26 2005-10-20 Show GitHub Exploit DB Packet Storm