Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2041	7.6	重要 Network	オラクル	Oracle Applications DBA	オラクルのOracle Applications DBAにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-22011	2026-04-24 11:33	2026-04-21	Show	GitHub Exploit DB Packet Storm

2042	3.8	低 Network	オラクル	Oracle User Management	オラクルのOracle User Managementにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-22014	2026-04-24 11:33	2026-04-21	Show	GitHub Exploit DB Packet Storm

2043	4.3	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-22015	2026-04-24 11:33	2026-04-21	Show	GitHub Exploit DB Packet Storm

2044	6.5	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-22017	2026-04-24 11:33	2026-04-21	Show	GitHub Exploit DB Packet Storm

2045	7.2	重要 Network	Eaton	Intelligent Power Protector	EatonのIntelligent Power Protectorにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-22615	2026-04-24 11:33	2026-04-16	Show	GitHub Exploit DB Packet Storm

2046	7.5	重要 Network	Eaton	Intelligent Power Protector	EatonのIntelligent Power Protectorにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-22616	2026-04-24 11:33	2026-04-16	Show	GitHub Exploit DB Packet Storm

2047	7.4	重要 Network	Eaton	Intelligent Power Protector	EatonのIntelligent Power ProtectorにおけるHTTPS セッション内の Secure 属性がない重要な Cookie に関する脆弱性	CWE-614 HTTPS セッション内の Secure 属性がない重要な Cookie	CVE-2026-22617	2026-04-24 11:33	2026-04-16	Show	GitHub Exploit DB Packet Storm

2048	7.1	重要 Network	Eaton	Intelligent Power Protector	EatonのIntelligent Power Protectorにおけるセキュリティチェックに関する脆弱性	CWE-358 不適切に実装されたセキュリティチェック	CVE-2026-22618	2026-04-24 11:33	2026-04-16	Show	GitHub Exploit DB Packet Storm

2049	9.9	緊急 Network	Eaton	Intelligent Power Protector	EatonのIntelligent Power Protectorにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2026-22619	2026-04-24 11:33	2026-04-16	Show	GitHub Exploit DB Packet Storm

2050	8.1	重要 Network	VMware	Spring Boot	VMwareのSpring Bootにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2026-22733	2026-04-24 11:33	2026-03-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314531	-		guillaumegardey	biborb	SQL injection vulnerability in BibORB 1.3.2, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the (1) Username or (2) Password.	CWE-89 SQL Injection	CVE-2005-0252	2024-02-3 01:54	2005-05-2	Show	GitHub Exploit DB Packet Storm

314532	6.5	MEDIUM Network	mit fedoraproject opensuse suse canonical	kerberos_5 fedora opensuse linux_enterprise ubuntu_linux	Use-after-free vulnerability in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote authenticated users to cause a denial of service (daemon crash) vi…	CWE-416 Use After Free	CVE-2010-0629	2024-02-3 01:52	2010-04-8	Show	GitHub Exploit DB Packet Storm

314533	-		guillaumegardey	biborb	Directory traversal vulnerability in index.php for BibORB 1.3.2, and possibly earlier versions, allows remote attackers to delete arbitrary files via a Delete action and .. (dot dot) sequences in the…	CWE-22 Path Traversal	CVE-2005-0253	2024-02-3 01:50	2005-05-2	Show	GitHub Exploit DB Packet Storm

314534	-		guillaumegardey	biborb	BibORB 1.3.2, and possibly earlier versions, does not properly enforce a restriction for uploading only PDF and PS files, which allows remote attackers to upload arbitrary files that are presented to…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2005-0254	2024-02-3 01:44	2005-05-2	Show	GitHub Exploit DB Packet Storm

314535	-		guillaumegardey	biborb	Cross-site scripting (XSS) vulnerability in bibindex.php for BibORB 1.3.2, and possibly earlier versions, allows remote attackers to inject arbitrary HTML and web script via the search parameter.	CWE-79 Cross-site Scripting	CVE-2005-0251	2024-02-3 01:42	2005-05-2	Show	GitHub Exploit DB Packet Storm

314536	7.0	HIGH Local	linux opensuse suse debian	linux_kernel opensuse linux_enterprise_server linux_enterprise_desktop linux_enterprise_high_availability_extension debian_linux	Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service (memory corruption and system…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2010-1437	2024-02-3 01:38	2010-05-8	Show	GitHub Exploit DB Packet Storm

314537	-		postgresql trustix mandrakesoft redhat	postgresql secure_linux mandrake_linux_corporate_server enterprise_linux_desktop enterprise_linux mandrake_linux	The make_oidjoins_check script in PostgreSQL 7.4.5 and earlier allows local users to overwrite files via a symlink attack on temporary files.	NVD-CWE-Other	CVE-2004-0977	2024-02-3 01:33	2005-02-9	Show	GitHub Exploit DB Packet Storm

314538	9.8	CRITICAL Network	mit openpkg debian	kerberos_5 openpkg debian_linux	Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 (krb5) 1.2.8 and earlier may allow remote attackers to execute arbitrary code.	CWE-415 Double Free	CVE-2004-0772	2024-02-3 00:27	2004-10-20	Show	GitHub Exploit DB Packet Storm

314539	-		mit debian redhat	kerberos_5 debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server	Double free vulnerabilities in the error handling code for ASN.1 decoders in the (1) Key Distribution Center (KDC) library and (2) client library for MIT Kerberos 5 (krb5) 1.3.4 and earlier may allow…	CWE-415 Double Free	CVE-2004-0642	2024-02-3 00:27	2004-09-28	Show	GitHub Exploit DB Packet Storm

314540	9.8	CRITICAL Network	mit apple debian	kerberos_5 mac_os_x_server mac_os_x debian_linux	Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.	CWE-415 Double Free	CVE-2005-1689	2024-02-3 00:24	2005-07-18	Show	GitHub Exploit DB Packet Storm