Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3431 7.5 重要
Network 		PowerDNS PowerDNS Recursor
dnsdist
PowerDNS Authoritative Server 		PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33260 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3432 8.8 重要
Network 		litellm litellm LiteLLMにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-40217 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
3433 7.8 重要
Local 		radare radare2 radareのradare2におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-40517 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3434 6.7 警告
Local 		The GnuPG Project Libgcrypt The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-41989 2026-04-30 12:14 2026-04-23 Show GitHub Exploit DB Packet Storm
3435 9.8 緊急
Network 		OFFIS DCMTK OFFISのDCMTKにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-5663 2026-04-30 12:14 2026-04-6 Show GitHub Exploit DB Packet Storm
3436 5.5 警告
Local 		Angry IP Scanner Angry IP Scanner Angry IP Scannerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25262 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3437 7.8 重要
Local 		LizardSystems LanSpy LizardSystemsのLanSpyにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25265 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3438 5.5 警告
Local 		Angry IP Scanner Angry IP Scanner Angry IP Scannerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25266 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3439 7.8 重要
Local 		LizardSystems LanSpy LizardSystemsのLanSpyにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25268 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3440 5.5 警告
Local 		Helios Textpad HeliosのTextpadにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25271 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349191 - commercial_interactive_media scoop Multiple cross-site scripting (XSS) vulnerabilities in SCOOP! 2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) keyword and (2) invalid parameter to articleSea… NVD-CWE-Other
CVE-2005-4490 2011-03-8 11:28 2005-12-22 Show GitHub Exploit DB Packet Storm
349192 - starphire_technologies sitesage
sitesage-ee
sitesage-le
sitesage-sb
sitesage-se 		Cross-site scripting (XSS) vulnerability in Starphire SiteSage 5.0.18 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the norela… NVD-CWE-Other
CVE-2005-4492 2011-03-8 11:28 2005-12-22 Show GitHub Exploit DB Packet Storm
349193 - spip spip Cross-site scripting (XSS) vulnerability in SPIP 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) spip_login.php3 and (2) spip_pass.p… NVD-CWE-Other
CVE-2005-4494 2011-03-8 11:28 2005-12-22 Show GitHub Exploit DB Packet Storm
349194 - forum_one syntaxcms Cross-site scripting (XSS) vulnerability in search in SyntaxCMS 1.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search_query parameter. NVD-CWE-Other
CVE-2005-4496 2011-03-8 11:28 2005-12-22 Show GitHub Exploit DB Packet Storm
349195 - tangora tangora_portal_cms Cross-site scripting (XSS) vulnerability in Tangora Portal CMS 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the action parameter in a search page, as demonstrate… NVD-CWE-Other
CVE-2005-4497 2011-03-8 11:28 2005-12-22 Show GitHub Exploit DB Packet Storm
349196 - nexus_concepts dev_hound Nexus Concepts Dev Hound 2.24 and earlier stores username and password information in cleartext in the devhound.tdbd file, which allows local users to gain privileges. NVD-CWE-Other
CVE-2005-4506 2011-03-8 11:28 2005-12-23 Show GitHub Exploit DB Packet Storm
349197 - nexus_concepts dev_hound Multiple cross-site scripting (XSS) vulnerabilities in Nexus Concepts Dev Hound 2.24 and earlier allow remote attackers to inject arbitrary web script or HTML via multiple unspecified user input fiel… NVD-CWE-Other
CVE-2005-4507 2011-03-8 11:28 2005-12-23 Show GitHub Exploit DB Packet Storm
349198 - nexus_concepts dev_hound Nexus Concepts Dev Hound 2.24 and earlier allows remote attackers to obtain the installation path via a URL containing a non-existent .dll file. NVD-CWE-Other
CVE-2005-4508 2011-03-8 11:28 2005-12-23 Show GitHub Exploit DB Packet Storm
349199 - wandsoft e-search Cross-site scripting (XSS) vulnerability in WANDSOFT e-SEARCH allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the keywords parameter. NVD-CWE-Other
CVE-2005-4513 2011-03-8 11:28 2005-12-23 Show GitHub Exploit DB Packet Storm
349200 - - - Mantis before 0.19.4 allows remote attackers to bypass the file upload size restriction by modifying the max_file_size parameter to (1) bug_file_add.php, (2) bug_report.php, (3) bug_report_advanced_p… NVD-CWE-Other
CVE-2005-4518 2011-03-8 11:28 2005-12-28 Show GitHub Exploit DB Packet Storm