Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2241 7.5 重要
Network 		マイクロソフト Microsoft Entra ID Microsoft Entra ID のスプーフィングの脆弱性 CWE-200
情報漏えい 		CVE-2026-40379 2026-05-25 10:22 2026-05-12 Show GitHub Exploit DB Packet Storm
2242 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-4055 2026-05-25 10:22 2026-05-21 Show GitHub Exploit DB Packet Storm
2243 7.8 重要
Local 		Samba Project rsync Samba Projectのrsyncにおけるレングスパラメーターの不整合による処理に関する脆弱性 CWE-130
レングスパラメーターの不整合による不適切な処理 		CVE-2026-41035 2026-05-25 10:22 2026-04-16 Show GitHub Exploit DB Packet Storm
2244 9.8 緊急
Network 		NASA F Prime NASAのF Primeにおける複数の脆弱性 CWE-190
CWE-787
CVE-2026-41144 2026-05-25 10:22 2026-04-22 Show GitHub Exploit DB Packet Storm
2245 7.8 重要
Local 		DevSpace DevSpace DevSpaceにおける複数の脆弱性 CWE-200
CWE-306
CVE-2026-42283 2026-05-25 10:22 2026-05-14 Show GitHub Exploit DB Packet Storm
2246 10 緊急
Network 		マイクロソフト
The Foreman		 Azure Resource Manager
Azure Local 		Azure Local 向けディスコネクテッド オペレーション サービスの特権昇格の脆弱性 CWE-287
CWE-noinfo
CVE-2026-42822 2026-05-25 10:22 2026-05-18 Show GitHub Exploit DB Packet Storm
2247 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不完全なクリーンアップに関する脆弱性 CWE-459
不完全なクリーンアップ 		CVE-2026-43395 2026-05-25 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
2248 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43396 2026-05-25 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
2249 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43397 2026-05-25 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
2250 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43398 2026-05-25 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
357571 - xmlstarlet command_line_xml_toolkit Format string vulnerability in xml_elem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code. NVD-CWE-Other
CVE-2004-2160 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357572 - microsoft windows_xp The Internet Connection Firewall (ICF) in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which allows local users to use sessmgr.exe to create a local listening port that byp… NVD-CWE-Other
CVE-2004-2176 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357573 - devoybb devoybb_web_forum Cross-site scripting (XSS) vulnerability in DevoyBB Web Forum 1.0.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NVD-CWE-Other
CVE-2004-2177 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357574 - devoybb devoybb_web_forum SQL injection vulnerability in DevoyBB Web Forum 1.0.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NVD-CWE-Other
CVE-2004-2178 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357575 - microsoft frontpage
ie 		asycpict.dll, as used in Microsoft products such as Front Page 97 and 98, allows remote attackers to cause a denial of service (hang) via a JPEG image with maximum height and width values. NVD-CWE-Other
CVE-2004-2179 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357576 - wowbb wowbb_web_forum Multiple cross-site scripting (XSS) vulnerabilities in WowBB Forum 1.61 allow remote attackers to inject arbitrary web script or HTML via the (1) country parameter to view_user.php, (2) show paramete… NVD-CWE-Other
CVE-2004-2180 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357577 - wehelpbus wehelpbus Unknown vulnerability in WeHelpBUS 0.1 allows remote attackers to execute arbitrary shell commands via the query string. NVD-CWE-Other
CVE-2004-2183 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357578 - mediawiki mediawiki Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.5 allow remote attackers to execute arbitrary scripts and/or SQL queries via (1) the UnicodeConverter extension, (2) raw page view… NVD-CWE-Other
CVE-2004-2185 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357579 - mediawiki mediawiki SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance. NVD-CWE-Other
CVE-2004-2186 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357580 - mediawiki mediawiki Unknown vulnerability in ImagePage for MediaWiki 1.3.5, related to "filename validation," has unknown impact and attack vectors. NVD-CWE-Other
CVE-2004-2187 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm