Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2101 8.8 重要
Adjacent 		フォーティネット FortiOS フォーティネットのFortiOSにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2025-53847 2026-04-21 10:40 2026-04-14 Show GitHub Exploit DB Packet Storm
2102 8.2 重要
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS RecursorにおけるCapture-replay による認証回避に関する脆弱性 CWE-294
Capture-replayによる認証回避 		CVE-2025-59023 2026-04-21 10:40 2026-02-9 Show GitHub Exploit DB Packet Storm
2103 6.5 警告
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS Recursorにおけるデータの信頼性についての不十分な検証に関する脆弱性 CWE-345
データの信頼性についての不十分な検証 		CVE-2025-59024 2026-04-21 10:40 2026-02-9 Show GitHub Exploit DB Packet Storm
2104 7.2 重要
Network 		フォーティネット FortiManager Cloud
FortiAnalyzer
FortiAnalyzer Cloud
FortiManager 		フォーティネットのFortiAnalyzer等の複数製品におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-61848 2026-04-21 10:40 2026-04-14 Show GitHub Exploit DB Packet Storm
2105 9.8 緊急
Network 		scshr hr portal scshrのhr portalにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2025-48780 2026-02-6 10:41 2025-06-6 Show GitHub Exploit DB Packet Storm
2106 7.5 重要
Network 		scshr hr portal scshrのhr portalにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2025-48781 2026-02-6 10:41 2025-06-6 Show GitHub Exploit DB Packet Storm
2107 9.8 緊急
Network 		scshr hr portal scshrのhr portalにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2025-48782 2026-02-6 10:41 2025-06-6 Show GitHub Exploit DB Packet Storm
2108 7.5 重要
Network 		scshr hr portal scshrのhr portalにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2025-48783 2026-02-6 10:41 2025-06-6 Show GitHub Exploit DB Packet Storm
2109 7.5 重要
Network 		scshr hr portal scshrのhr portalにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-48784 2026-02-6 10:41 2025-06-6 Show GitHub Exploit DB Packet Storm
2110 7.5 重要
Network 		scshr hr portal scshrのhr portalにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2025-5192 2026-02-6 10:41 2025-06-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348131 - citrix metaframe_password_manager Citrix Metaframe Password Manager 2.5 and earlier stores a password in cleartext although it is obfuscated when presented to a user, which allows users to view their secondary passwords even if it is… NVD-CWE-Other
CVE-2005-0822 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
348132 - lgames ltris Buffer overflow in LTris before 1.0.10 allows local users to execute arbitrary code via a crafted highscores file. NVD-CWE-Other
CVE-2005-0825 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
348133 - xzabite dyndnsupdate Multiple buffer overflows in Xzabite DYNDNSUpdate 0.6.15 and earlier, including the ipcheck function in dyndnsupdate.c, allow remote attackers who spoof a dyndns.org server to execute arbitrary code … NVD-CWE-Other
CVE-2005-0830 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
348134 - php-post php-post_web_forum PHP-Post allows remote attackers to spoof the names of other users by registering with a username containing hex-encoded characters. NVD-CWE-Other
CVE-2005-0831 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
348135 - belkin belkin_54g_wireless_router Belkin 54G (F5D7130) wireless router allows remote attackers to access restricted resources by sniffing URIs from UPNP datagrams, then accessing those URIs, which do not require authentication. NVD-CWE-Other
CVE-2005-0833 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
348136 - - - Belkin 54G (F5D7130) wireless router enables SNMP by default in a manner that allows remote attackers to obtain sensitive information. NVD-CWE-Other
CVE-2005-0834 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
348137 - belkin 54g_wireless_router The SNMP service in the Belkin 54G (F5D7130) wireless router allows remote attackers to cause a denial of service via unknown vectors. NVD-CWE-Other
CVE-2005-0835 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
348138 - funlabs 4x4_off-road_adventure_iii
cabelas_big_game_hunter_2004_season
cabelas_big_game_hunter_2005
cabelas_dangerous_hunts
cabelas_deer_hunt_2005_season
revolution
secret_service_in_harms_… 		Multiple games developed by FUN labs, including 4X4 Off-road Adventure III, Big Game Hunter, Dangerous Hunts, Deer Hunt, Revolution, Secret Service, Shadow Force, and US Most Wanted, allow remote att… NVD-CWE-Other
CVE-2005-0849 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
348139 - - - Microsoft Windows XP SP1 allows local users to cause a denial of service (system crash) via an empty datagram to a raw IP over IP socket (IP protocol 4), as originally demonstrated using code in Pyth… NVD-CWE-Other
CVE-2005-0852 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
348140 - coolforum coolforum CoolForum 0.8.1 beta and earlier allows remote attackers to obtain sensitive path information via direct requests to (1) entete.php, (2) profile_accueil.php, (3) profile_mdp.php, (4) profile_notify.p… NVD-CWE-Other
CVE-2005-0855 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm