Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2971	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Win32k の特権の昇格の脆弱性	CWE-190 CWE-416	CVE-2026-34330	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

2972	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Win32k の特権の昇格の脆弱性	CWE-362 CWE-416	CVE-2026-34331	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

2973	8	重要 Network	マイクロソフト	Microsoft Windows Server 2025	Windows カーネルモードドライバーのリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34332	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

2974	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Win32k の特権の昇格の脆弱性	CWE-190 CWE-416	CVE-2026-34333	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

2975	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP の特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-34334	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

2976	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows DWM Core ライブラリの情報漏えいの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-34336	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

2977	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性	CWE-362 CWE-416	CVE-2026-34337	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2978	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows テレフォニーサービスの特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34338	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2979	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows ライトウェイトディレクトリアクセスプロトコル (LDAP) のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-34339	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2980	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Projected File System の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34340	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
357451	-	osticket	osticket	Multiple SQL injection vulnerabilities in osTicket allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to admin.php or (2) cat parameter to view.php.	NVD-CWE-Other	CVE-2005-1437	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm

357452	-	osticket	osticket	PHP remote file inclusion vulnerability in main.php in osTicket allows remote attackers to execute arbitrary PHP code via the include_dir parameter.	NVD-CWE-Other	CVE-2005-1438	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm

357453	-	osticket	osticket	Directory traversal vulnerability in attachments.php in osTicket allows remote attackers to read arbitrary files via .. sequences in the file parameter.	NVD-CWE-Other	CVE-2005-1439	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm

357454	-	codetosell	viart_shop_enterprise	Multiple cross-site scripting (XSS) vulnerabilities in ViArt Shop Enterprise 2.1.6 allow remote attackers to inject arbitrary web script or HTML via (1) various parameters to basket.php, (2) the nick…	NVD-CWE-Other	CVE-2005-1440	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm

357455	-	-	-	Multiple cross-site scripting (XSS) vulnerabilities in index.php for Invision Power Board (IPB) 2.0.3 and 2.1 Alpha 2 allows remote attackers to inject arbitrary web script or HTML via the (1) act, (…	NVD-CWE-Other	CVE-2005-1443	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm

357456	-	sitepanel	sitepanel	Multiple cross-site scripting (XSS) vulnerabilities in SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to inject arbitrary web script or HTML via (1) the v, show, or sec_name paramet…	NVD-CWE-Other	CVE-2005-1444	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm

357457	-	sitepanel	sitepanel	Multiple directory traversal vulnerabilities in SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to (1) delete arbitrary files via the id parameter in a rmattach action to 5.php, or (…	NVD-CWE-Other	CVE-2005-1445	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm

357458	-	sitepanel	sitepanel	SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to upload and execute arbitrary files such as PHP scripts via an attachment to a trouble ticket.	NVD-CWE-Other	CVE-2005-1446	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm

357459	-	sitepanel	sitepanel	PHP remote file inclusion vulnerability in main.php in SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to execute arbitrary PHP code via the p parameter.	NVD-CWE-Other	CVE-2005-1447	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm

357460	-	s9y	serendipity	Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.	NVD-CWE-Other	CVE-2005-1448	2008-09-6 05:49	2005-05-3	Show	GitHub Exploit DB Packet Storm