Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3641	7.4	重要 Network	OpenProject	OpenProject	OpenProjectにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-33667	2026-04-30 11:03	2026-04-15	Show	GitHub Exploit DB Packet Storm

3642	6.7	警告 Local	デル	data domain operating system	デルのdata domain operating systemにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-35154	2026-04-30 11:03	2026-04-20	Show	GitHub Exploit DB Packet Storm

3643	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける指定された機能の不適切な提供に関する脆弱性	CWE-684 指定された機能の不適切な提供	CVE-2026-35379	2026-04-30 11:03	2026-04-22	Show	GitHub Exploit DB Packet Storm

3644	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-35380	2026-04-30 11:03	2026-04-22	Show	GitHub Exploit DB Packet Storm

3645	10	緊急 Network	マイクロソフト	Microsoft Entra ID	Microsoft Entra ID Entitlement Management Spoofing Vulnerability	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-35431	2026-04-30 11:03	2026-04-23	Show	GitHub Exploit DB Packet Storm

3646	5.3	警告 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35484	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

3647	7.5	重要 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35485	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

3648	8.8	重要 Network	Pi-hole	FTLDNS	Pi-holeのFTLDNSにおける複数の脆弱性	CWE-78 CWE-93	CVE-2026-35517	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

3649	8.8	重要 Network	Pi-hole	FTLDNS	Pi-holeのFTLDNSにおける複数の脆弱性	CWE-78 CWE-93	CVE-2026-35518	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

3650	8.8	重要 Network	Pi-hole	FTLDNS	Pi-holeのFTLDNSにおける複数の脆弱性	CWE-78 CWE-93	CVE-2026-35519	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349431	-	peel	peel	SQL injection vulnerability in index.php in Peel 2.6 through 2.7 allows remote attackers to execute arbitrary SQL commands via the rubid parameter.	NVD-CWE-Other	CVE-2005-3572	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

349432	-	icms_content_management_systems	icms	PHP file inclusion vulnerability in index.php of iCMS allows remote attackers to include arbitrary files via the page parameter.	NVD-CWE-Other	CVE-2005-3574	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

349433	-	cynox	cyphor	SQL injection vulnerability in show.php in Cyphor 0.19 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2005-3575	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

349434	-	qdbm	qdbm	QDBM before 1.8.33-r2 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects i…	NVD-CWE-Other	CVE-2005-3580	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

349435	-	gdal	gdal	GDAL before 1.3.0-r1 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in…	NVD-CWE-Other	CVE-2005-3581	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

349436	-	imagemagick	imagemagick	ImageMagick before 6.2.4.2-r1 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing o…	NVD-CWE-Other	CVE-2005-3582	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

349437	-	ubertec	help_center_live	PHP file inclusion vulnerability in the osTicket module in Help Center Live before 2.0.3 allows remote attackers to access or include arbitrary files via the file parameter, possibly due to a directo…	NVD-CWE-Other	CVE-2005-3639	2011-03-8 11:26	2005-11-17	Show	GitHub Exploit DB Packet Storm

349438	-	citrix	ica_program_neighborhood_client	Heap-based buffer overflow in Citrix Program Neighborhood client 9.0 and earlier allows remote attackers to execute arbitrary code via a long name value in an Application Set response.	NVD-CWE-Other	CVE-2005-3652	2011-03-8 11:26	2005-12-17	Show	GitHub Exploit DB Packet Storm

349439	-	bluecoat	webproxy	Blue Coat Systems Inc. WinProxy before 6.1a allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of packets with 0xFF characters to the …	NVD-CWE-Other	CVE-2005-3654	2011-03-8 11:26	2005-12-31	Show	GitHub Exploit DB Packet Storm

349440	-	mcafee	mcinsctl.dll virusscan_security_center	The ActiveX control in MCINSCTL.DLL for McAfee VirusScan Security Center does not use the IObjectSafetySiteLock API to restrict access to required domains, which allows remote attackers to create or …	NVD-CWE-Other	CVE-2005-3657	2011-03-8 11:26	2005-12-21	Show	GitHub Exploit DB Packet Storm