Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2701 6.1 警告
Network 		Apache Software Foundation Apache Wicket Apache Software FoundationのApache Wicketにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42509 2026-05-8 12:22 2026-05-6 Show GitHub Exploit DB Packet Storm
2702 4.3 警告
Network 		Jenkins プロジェクト Script Security JenkinsのScript Securityにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42519 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
2703 7.5 重要
Network 		Jenkins プロジェクト Credentials Binding JenkinsのCredentials Bindingにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-42520 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
2704 6.5 警告
Network 		Jenkins プロジェクト Matrix Authorization Strategy JenkinsのMatrix Authorization Strategyにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-42521 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
2705 4.3 警告
Network 		Jenkins プロジェクト GitHub Branch Source JenkinsのGitHub Branch Sourceにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42522 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
2706 7.5 重要
Network 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43057 2026-05-8 12:22 2026-05-1 Show GitHub Exploit DB Packet Storm
2707 9.3 緊急
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-43526 2026-05-8 12:22 2026-05-5 Show GitHub Exploit DB Packet Storm
2708 7.7 重要
Network 		OpenClaw OpenClaw OpenClawにおける複数の脆弱性 CWE-1188
CWE-918
CVE-2026-43527 2026-05-8 12:21 2026-05-5 Show GitHub Exploit DB Packet Storm
2709 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける保存または転送前の重要な情報の削除に関する脆弱性 CWE-212
保存または転送前の重要な情報の不適切な削除 		CVE-2026-43528 2026-05-8 12:21 2026-05-5 Show GitHub Exploit DB Packet Storm
2710 2.5
Local 		OpenClaw OpenClaw OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-43529 2026-05-8 12:21 2026-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346341 - yongguang_zhang hztty Unknown vulnerability in hztty 2.0 and earlier allows local users to execute arbitrary commands. NVD-CWE-Other
CVE-2005-0019 2017-07-11 10:32 2005-04-27 Show GitHub Exploit DB Packet Storm
346342 - playmidi
mandrakesoft 		playmidi
mandrake_linux
mandrake_linux_corporate_server 		Buffer overflow in playmidi before 2.4 allows local users to execute arbitrary code. NVD-CWE-Other
CVE-2005-0020 2017-07-11 10:32 2005-04-14 Show GitHub Exploit DB Packet Storm
346343 - gnome libvte4
libzvt2 		gnome-pty-helper in GNOME libzvt2 and libvte4 allows local users to spoof the logon hostname via a modified DISPLAY environment variable. NOTE: the severity of this issue has been disputed. NVD-CWE-Other
CVE-2005-0023 2017-07-11 10:32 2005-10-6 Show GitHub Exploit DB Packet Storm
346344 - isc bind Buffer overflow in the code for recursion and glue fetching in BIND 8.4.4 and 8.4.5 allows remote attackers to cause a denial of service (crash) via queries that trigger the overflow in the q_usedns … NVD-CWE-Other
CVE-2005-0033 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346345 - isc bind An "incorrect assumption" in the authvalidated validator function in BIND 9.3.0, when DNSSEC is enabled, allows remote attackers to cause a denial of service (named server exit) via crafted DNS packe… NVD-CWE-Other
CVE-2005-0034 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346346 - apple itunes Buffer overflow in Apple iTunes 4.7 allows remote attackers to execute arbitrary code via a long URL in (1) .m3u or (2) .pls playlist files. NVD-CWE-Other
CVE-2005-0043 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346347 - vdr vdr vdr before 1.2.6 does not securely create files, which allows attackers to overwrite arbitrary files. NVD-CWE-Other
CVE-2005-0071 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346348 - ejoy_and_hu_yong zhcon zhcon before 0.2 does not drop privileges before reading a user configuration file, which allows local users to read arbitrary files. NVD-CWE-Other
CVE-2005-0072 2017-07-11 10:32 2005-01-24 Show GitHub Exploit DB Packet Storm
346349 - debian debian_linux Multiple buffer overflows in the XView library 3.2 may allow local users to execute arbitrary code via setuid applications that use the library. NVD-CWE-Other
CVE-2005-0076 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346350 - xtrlock xtrlock Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service (application crash) and hijack the desktop session. NVD-CWE-Other
CVE-2005-0079 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm