Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2881	7.5	重要 Network	Debian GStreamer レッドハット	GStreamer Debian GNU/Linux Red Hat Enterprise Linux GStreamer Good Plug-ins	Debian等の複数ベンダの製品における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-1940	2026-05-7 11:31	2026-03-23	Show	GitHub Exploit DB Packet Storm

2882	9.8	緊急 Network	OPPO	ColorOS Assistant	OPPOのColorOS Assistantにおける複数の脆弱性	CWE-22 CWE-23	CVE-2026-22070	2026-05-7 11:31	2026-04-30	Show	GitHub Exploit DB Packet Storm

2883	8.8	重要 Network	GeoVision	GV-LPC2211 Firmware GV-LPC2011 Firmware	GeoVisionのGV-LPC2011 Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-42364	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

2884	7.5	重要 Network	GeoVision	GV-LPC2211 Firmware GV-LPC2011 Firmware	GeoVisionのGV-LPC2011 Firmware等の複数製品における観測された状態からの推測に関する脆弱性	CWE-341 観測された状態からの推測	CVE-2026-42365	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

2885	6.1	警告 Network	GeoVision	GV-LPC2211 Firmware GV-LPC2011 Firmware	GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42366	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

2886	6.5	警告 Network	GeoVision	GV-LPC2211 Firmware GV-LPC2011 Firmware	GeoVisionのGV-LPC2011 Firmware等の複数製品における認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-42367	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

2887	9.9	緊急 Network	GeoVision	GV-LPC2211 Firmware GV-LPC2011 Firmware	GeoVisionのGV-LPC2011 Firmware等の複数製品における不適切な権限設定に関する脆弱性	CWE-266 不適切な権限設定	CVE-2026-42368	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

2888	9.8	緊急 Network	GeoVision	GV-VMS Firmware	GeoVisionのGV-VMS Firmwareにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-42370	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

2889	9.8	緊急 Network	Bitwarden	Bitwarden Command-line Interface	BitwardenのBitwarden Command-line Interfaceにおける複数の脆弱性	CWE-78 CWE-94	CVE-2026-42994	2026-05-7 11:31	2026-05-1	Show	GitHub Exploit DB Packet Storm

2890	9.3	緊急 Network	GeoVision	GV-IP Device Utility	GeoVisionのGV-IP Device Utilityにおける隠蔽によるセキュリティへの依存に関する脆弱性	CWE-656 隠蔽によるセキュリティへの依存	CVE-2026-7161	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
317781	-	orbitscripts	smartppc_pro	Multiple cross-site scripting (XSS) vulnerabilities in SmartPPC Pro allow remote attackers to inject arbitrary web script or HTML via the username parameter in (1) directory.php, (2) frames.php, and …	NVD-CWE-Other	CVE-2005-3814	2024-02-14 10:17	2005-11-26	Show	GitHub Exploit DB Packet Storm

317782	-	phppost	phppost	Multiple cross-site scripting (XSS) vulnerabilities in PHP-Post (PHPp) 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the subject in a post, or the user parameter to (2) pr…	CWE-79 Cross-site Scripting	CVE-2005-3770	2024-02-14 10:17	2005-11-23	Show	GitHub Exploit DB Packet Storm

317783	-	xmb_forum	xmb	Cross-site scripting (XSS) vulnerability in members.php in XMB 1.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the "Your Current Mood" field in the registration p…	NVD-CWE-Other	CVE-2005-3688	2024-02-14 10:17	2005-11-19	Show	GitHub Exploit DB Packet Storm

317784	-	xmb_forum	xmb	post.php in XMB 1.9.2 allows remote attackers to obtain the installation path via an invalid fid parameter in a newthread action.	NVD-CWE-Other	CVE-2005-3689	2024-02-14 10:17	2005-11-19	Show	GitHub Exploit DB Packet Storm

317785	-	ekinboard	ekinboard	Cross-site scripting (XSS) vulnerabilities in Ekinboard 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter in profile.php and (2) titles of posts.	NVD-CWE-Other	CVE-2005-3638	2024-02-14 10:17	2005-11-17	Show	GitHub Exploit DB Packet Storm

317786	-	ibproarcade	ibproarcade	SQL injection vulnerability in index.php of the report module in ibProArcade 2.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter.	NVD-CWE-Other	CVE-2005-3545	2024-02-14 10:17	2005-11-16	Show	GitHub Exploit DB Packet Storm

317787	-	mambo	mambo	content.php in Mambo 4.5.2 through 4.5.2.3 allows remote attackers to obtain the installation path of the application via a URL that causes the application to return an error.	NVD-CWE-Other	CVE-2005-3586	2024-02-14 10:17	2005-11-16	Show	GitHub Exploit DB Packet Storm

317788	-	vubb	vubb	Cross-site scripting (XSS) vulnerability in index.php in VUBB alpha rc1 allows remote attackers to inject arbitrary web script or HTML via the t parameter in a newreply action.	NVD-CWE-Other	CVE-2005-3512	2024-02-14 10:17	2005-11-6	Show	GitHub Exploit DB Packet Storm

317789	-	vubb	vubb	index.php in VUBB alpha rc1 allows remote attackers to obtain the installation path of the application via a viewforum action with the f parameter set to a single quote (').	NVD-CWE-Other	CVE-2005-3513	2024-02-14 10:17	2005-11-6	Show	GitHub Exploit DB Packet Storm

317790	-	chipmunk_scripts	chipmunk_forum	Multiple cross-site scripting (XSS) vulnerabilities in Chipmunk Forum script allow remote attackers to inject arbitrary web script or HTML via the forumID parameter to (1) newtopic.php, (2) quote.php…	NVD-CWE-Other	CVE-2005-3514	2024-02-14 10:17	2005-11-6	Show	GitHub Exploit DB Packet Storm