Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2241	6.5	警告 Network	Open5GS	Open5GS	Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-8122	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

2242	6.5	警告 Network	Open5GS	Open5GS	Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-8123	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

2243	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	CX12L Pro Firmware	Shenzhen Tenda Technology Co.,Ltd.のCX12L Pro Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-8138	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

2244	7.8	重要 Local	NAVER Corp.	NAVER MYBOX Explorer for Windows	NAVER Corp.のNAVER MYBOX Explorer for Windowsにおける不適切な権限設定に関する脆弱性	CWE-266 不適切な権限設定	CVE-2026-8148	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

2245	7.3	重要 Network	Project Jupyter	Jupyter Server	Project JupyterのJupyter Serverにおけるアンカーのない正規表現に関する脆弱性	CWE-777 アンカーのない正規表現	CVE-2026-40110	2026-05-12 10:19	2026-05-5	Show	GitHub Exploit DB Packet Storm

2246	6.1	警告 Network	HCL Technologies Limited	unica HCL Unica Plan HCL Unica Segment Central HCL Unica Centralized Offer Management HCL Unica Audience Campaign HCL U…	HCL Technologies Limitedのunica等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-62320	2026-05-12 10:19	2026-03-17	Show	GitHub Exploit DB Packet Storm

2247	5.5	警告 Local	ヒューレット・パッカード	Samsung Print Service Plugin	ヒューレット・パッカードのSamsung Print Service PluginにおけるAndroid アプリケーションコンポーネントの不適切なエクスポートの脆弱性	CWE-926 CWE-noinfo	CVE-2026-3291	2026-05-12 10:19	2026-05-6	Show	GitHub Exploit DB Packet Storm

2248	8.8	重要 Network	langflow	langflow Langflow-base	langflowのLangflow-base等の複数製品における複数の脆弱性	CWE-639 CWE-862	CVE-2026-34046	2026-05-12 10:19	2026-03-27	Show	GitHub Exploit DB Packet Storm

2249	7.5	重要 Network	Gazelle project	Gazelle	KazeburoのGazelleにおけるHTTP リクエストスマグリングに関する脆弱性	CWE-444 HTTP リクエストスマグリング	CVE-2026-40562	2026-05-12 10:19	2026-05-6	Show	GitHub Exploit DB Packet Storm

2250	5.3	警告 Network	opentelemetry	OpenTelemetry.Exporter.Zipkin	opentelemetryのOpenTelemetry.Exporter.Zipkinにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-41310	2026-05-12 10:19	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346091	-	nortel	contivity	Nortel Contivity VPN Client 2.1.7, 3.00, 3.01, 4.91, and 5.01, when opening a VPN tunnel, does not check the gateway certificate until after a dialog box has been displayed to the user, which creates…	NVD-CWE-Other	CVE-2004-2621	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346092	-	altiris	deployment_server_extension_for_ibm_director	AClient.exe in Altiris Deployment Solution 6.x and 5.x does not require authentication from the first Deployment Server that it connects to, which allows remote malicious servers to gain administrato…	NVD-CWE-Other	CVE-2004-2622	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346093	-	matthew_skala	rippy_the_aggregator	Unknown vulnerability in Rippy the Aggregator before 0.10, when register_globals is enabled, has unknown attack vectors and impact, possibly related to the "user-controlled filter."	NVD-CWE-Other	CVE-2004-2623	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346094	-	wackowiki	wackowiki	Cross-site scripting (XSS) vulnerability in "TextSearch" in WackoWiki 3.5 allows remote attackers to inject arbitrary web script or HTML via the "phrase" parameter.	NVD-CWE-Other	CVE-2004-2624	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346095	-	outblaze	outblaze_email	Cross-site scripting (XSS) vulnerability in Outblaze Email allows remote attackers to inject arbitrary web script or HTML via Javascript in an attribute of an IMG tag.	NVD-CWE-Other	CVE-2004-2625	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346096	-	siemens	s55	GUI overlay vulnerability in the Java API in Siemens S55 cellular phones allows remote attackers to send unauthorized SMS messages by overlaying a confirmation message with a malicious message.	NVD-CWE-Other	CVE-2004-2626	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346097	-	-	-	Java 2 Micro Edition (J2ME) does not properly validate bytecode, which allows remote attackers to escape the Kilobyte Virtual Machine (KVM) sandbox and execute arbitrary code.	NVD-CWE-Other	CVE-2004-2627	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346098	-	acme_labs	thttpd	Multiple directory traversal vulnerabilities in thttpd 2.07 beta 0.4, when running on Windows, allow remote attackers to read arbitrary files via a URL that contains (1) a hex-encoded backslash dot-d…	NVD-CWE-Other	CVE-2004-2628	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346099	-	phpmyadmin	phpmyadmin	The MIME transformation system (transformations/text_plain__external.inc.php) in phpMyAdmin 2.5.0 up to 2.6.0-pl1 allows remote attackers to execute arbitrary commands via shell metacharacters in uns…	NVD-CWE-Other	CVE-2004-2630	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346100	-	phpmyadmin	phpmyadmin	Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5.7, when LeftFrameLight is FALSE, allows remote attackers to execute arbitrary PHP code via a crafted table name.	NVD-CWE-Other	CVE-2004-2631	2017-07-20 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm