Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2911	7.5	重要 Network	オラクル	Oracle HCM Common Architecture	オラクルのOracle HCM Common Architectureにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-34297	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2912	6.5	警告 Network	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-34313	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2913	6.8	警告 Network	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-34314	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2914	4.8	警告 Network	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2026-34321	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2915	6.3	警告 Network	オラクル	Oracle Life Sciences InForm	オラクルのOracle Life Sciences InFormにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-34323	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2916	6.5	警告 Network	オラクル	Oracle Life Sciences InForm	オラクルのOracle Life Sciences InFormにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-34324	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2917	6.8	警告 Local	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-34325	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2918	8.8	重要 Network	jellyfin	jellyfin	jellyfinにおける複数の脆弱性	CWE-187 CWE-20 CWE-22	CVE-2026-35031	2026-04-27 11:22	2026-04-14	Show	GitHub Exploit DB Packet Storm

2919	6.5	警告 Network	jellyfin	jellyfin	jellyfinにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-35034	2026-04-27 11:22	2026-04-14	Show	GitHub Exploit DB Packet Storm

2920	8.8	重要 Network	Glances project	Glances	Nicolas Hennion (nicolargo)のGlancesにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-35587	2026-04-27 11:21	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347901	-	invision_power_services	invision_power_board	Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.0.4 and 2.1.4 before 20060130 allows remote attackers to steal cookies and probably conduct other activities when the victim i…	NVD-CWE-Other	CVE-2006-1287	2011-03-8 11:32	2006-03-20	Show	GitHub Exploit DB Packet Storm

347902	-	oreka	oreka	Oreka before 0.5 allows remote attackers to cause a denial of service (application crash) via a "certain RTP sequence."	NVD-CWE-Other	CVE-2006-0912	2011-03-8 11:31	2006-02-28	Show	GitHub Exploit DB Packet Storm

347903	-	mozilla	bugzilla	Bugzilla 2.16.10 does not properly handle certain characters in the (1) maxpatchsize and (2) maxattachmentsize parameters in attachment.cgi, which allows remote attackers to trigger a SQL error.	NVD-CWE-Other	CVE-2006-0915	2011-03-8 11:31	2006-02-28	Show	GitHub Exploit DB Packet Storm

347904	-	argosoft	argosoft_mail_server	Directory traversal vulnerability in Webmail in ArGoSoft Mail Server Pro 1.8 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the UIDL parameter.	NVD-CWE-Other	CVE-2006-0930	2011-03-8 11:31	2006-02-28	Show	GitHub Exploit DB Packet Storm

347905	-	thomson	speedtouch	Thomson SpeedTouch modem running firmware 5.3.2.6.0 allows remote attackers to create users that cannot be deleted via scripting code in the "31" parameter in a NewUser function, which is not filtere…	NVD-CWE-Other	CVE-2006-0947	2011-03-8 11:31	2006-03-1	Show	GitHub Exploit DB Packet Storm

347906	-	eset_software	nod32_antivirus	The GUI (nod32.exe) in NOD32 2.5 runs with SYSTEM privileges when the scheduler runs a scheduled on-demand scan, which allows local users to execute arbitrary code during a scheduled scan via unspeci…	NVD-CWE-Other	CVE-2006-0951	2011-03-8 11:31	2006-04-8	Show	GitHub Exploit DB Packet Storm

347907	-	nufw	nufw_firewall	nuauth in NuFW before 1.0.21 does not properly handle blocking TLS sockets, which allows remote authenticated users to cause a denial of service (service hang) by flooding packets at the authenticati…	NVD-CWE-Other	CVE-2006-0956	2011-03-8 11:31	2006-03-3	Show	GitHub Exploit DB Packet Storm

347908	-	nufw	nufw_firewall	This vulnerability affects NuFW, NuFW Firewall versions 1.0.20 and previous.	NVD-CWE-Other	CVE-2006-0956	2011-03-8 11:31	2006-03-3	Show	GitHub Exploit DB Packet Storm

347909	-	phprpc	phprpc	Eval injection vulnerability in the decode function in rpc_decoder.php for phpRPC 0.7 and earlier, as used by runcms, exoops, and possibly other programs, allows remote attackers to execute arbitrary…	NVD-CWE-Other	CVE-2006-1032	2011-03-8 11:31	2006-03-7	Show	GitHub Exploit DB Packet Storm

347910	-	geeklog	geeklog	Unspecified vulnerability in the session handling for Geeklog 1.4.x before 1.4.0sr2, 1.3.11 before 1.3.11sr5, 1.3.9 before 1.3.9sr5, and possibly earlier versions allows attackers to gain privileges …	NVD-CWE-Other	CVE-2006-1069	2011-03-8 11:31	2006-03-8	Show	GitHub Exploit DB Packet Storm