Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2641 6.5 警告
Network 		Web Technologies Change Detection Web TechnologiesのChange Detectionにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-35000 2026-04-22 10:09 2026-04-1 Show GitHub Exploit DB Packet Storm
2642 9.1 緊急
Network 		rti RTI Connext Professional rtiのRTI Connext ProfessionalにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-4374 2026-04-22 10:09 2026-04-1 Show GitHub Exploit DB Packet Storm
2643 5.3 警告
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS Recursorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-0398 2026-04-21 10:51 2026-02-9 Show GitHub Exploit DB Packet Storm
2644 3.6
Local 		ARM Ltd. Arm C1-Pro ファームウェア ARM Ltd.のArm C1-Pro ファームウェアにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-0995 2026-04-21 10:51 2026-03-2 Show GitHub Exploit DB Packet Storm
2645 8.1 重要
Network 		Grafana Labs Grafana Grafana LabsのGrafanaにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-21721 2026-04-21 10:51 2026-01-27 Show GitHub Exploit DB Packet Storm
2646 5.3 警告
Network 		Grafana Labs Loki Grafana LabsのLokiにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-21726 2026-04-21 10:51 2026-04-15 Show GitHub Exploit DB Packet Storm
2647 3.3
Network 		Grafana Labs Grafana Grafana LabsのGrafanaにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-21727 2026-04-21 10:51 2026-04-15 Show GitHub Exploit DB Packet Storm
2648 4.8 警告
Network 		フォーティネット FortiNAC-F フォーティネットのFortiNAC-Fにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-21741 2026-04-21 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
2649 8.8 重要
Network 		AFFiNE AFFiNE AFFiNEにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-21853 2026-04-21 10:51 2026-03-2 Show GitHub Exploit DB Packet Storm
2650 5.7 警告
Network 		デル data domain operating system デルのdata domain operating systemにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-23775 2026-04-21 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315071 - zongg zongg SQL injection vulnerability in ad/login.asp in ZonGG 1.2 allows remote attackers to execute arbitrary SQL commands via the password parameter. NVD-CWE-Other
CVE-2005-1785 2024-02-14 10:17 2005-05-31 Show GitHub Exploit DB Packet Storm
315072 - online_solutions_for_educators online_solutions_for_educators SQL injection vulnerability in login.asp in an unknown product by Online Solutions for Educators (OS4E) allows remote attackers to execute arbitrary SQL commands via the password. NVD-CWE-Other
CVE-2005-1805 2024-02-14 10:17 2005-05-28 Show GitHub Exploit DB Packet Storm
315073 - distinct_web_creations newsletterez SQL injection vulnerability in login.asp in ezdwc NewsletterEz 3.0 allows remote attackers to execute arbitrary SQL commands via the password parameter. NVD-CWE-Other
CVE-2005-1750 2024-02-14 10:17 2005-05-25 Show GitHub Exploit DB Packet Storm
315074 - funkyasp funkyasp_ad_system SQL injection vulnerability in admin.asp in FunkyASP AD System 1.1 allows remote attackers to execute arbitrary SQL commands and gain privileges via the password parameter. NVD-CWE-Other
CVE-2005-1786 2024-02-14 10:17 2005-05-25 Show GitHub Exploit DB Packet Storm
315075 - xine gxine Format string vulnerability in gxine 0.4.1 through 0.4.4, and other versions down to 0.3, allows remote attackers to execute arbitrary code via a ram file with a URL whose hostname contains format st… NVD-CWE-Other
CVE-2005-1692 2024-02-14 10:17 2005-05-24 Show GitHub Exploit DB Packet Storm
315076 - web-app.org webapp apage.cgi in WebAPP 0.9.9.2.1, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the f parameter. CWE-20
 Improper Input Validation  		CVE-2005-1628 2024-02-14 10:17 2005-05-17 Show GitHub Exploit DB Packet Storm
315077 - atinegar sigma_isp_manager SQL injection vulnerability in Sigmaweb.DLL in Sigma ISP Manager 6.6 allows remote attackers to execute arbitrary SQL commands via the (1) username, (2) password, or (3) domain fields. NVD-CWE-Other
CVE-2005-1639 2024-02-14 10:17 2005-05-17 Show GitHub Exploit DB Packet Storm
315078 - fusion sbx index.php in Fusion SBX 1.2 and earlier does not properly use the extract function, which allows remote attackers to bypass authentication by setting the is_logged parameter or execute arbitrary code… NVD-CWE-Other
CVE-2005-1596 2024-02-14 10:17 2005-05-16 Show GitHub Exploit DB Packet Storm
315079 - darrel_oneil asp_virtual_news_manager SQL injection vulnerability in admin_login.asp for ASP Virtual News Manager allows remote attackers to execute arbitrary SQL commands via the password parameter. NVD-CWE-Other
CVE-2005-1573 2024-02-14 10:17 2005-05-11 Show GitHub Exploit DB Packet Storm
315080 - ethereal_group ethereal Multiple unknown vulnerabilities in the (1) DHCP and (2) Telnet dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (abort). NVD-CWE-Other
CVE-2005-1456 2024-02-14 10:17 2005-05-5 Show GitHub Exploit DB Packet Storm