Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3731 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-31672 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
3732 8.1 重要
Network 		xibosignage xibo xibosignageのxiboにおける複数の脆弱性 CWE-184
CWE-89
CVE-2026-31952 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
3733 5.4 警告
Network 		xibosignage xibo xibosignageのxiboにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-31953 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
3734 4.9 警告
Network 		xibosignage xibo xibosignageのxiboにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-31955 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
3735 4.3 警告
Network 		xibosignage xibo xibosignageのxiboにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-31956 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
3736 8.8 重要
Network 		マイクロソフト Azure Logic Apps Azure Logic Apps の特権昇格の脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-32171 2026-04-30 12:31 2026-04-14 Show GitHub Exploit DB Packet Storm
3737 7.5 重要
Network 		getkirby kirby getkirbyのkirbyにおけるブラインド XPath インジェクションの脆弱性 CWE-91
ブラインド XPath インジェクション 		CVE-2026-32870 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
3738 9.8 緊急
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-33076 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
3739 7.5 重要
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-33077 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
3740 9.8 緊急
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-33078 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347391 - xine
suse 		xine
xine-lib
suse_linux 		Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk labe… NVD-CWE-Other
CVE-2004-1476 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347392 - macromedia jrun Cross-site scripting (XSS) vulnerability in the Management Console in JRun 4.0 allows remote attackers to execute arbitrary web script or HTML and possibly hijack a user's session. NVD-CWE-Other
CVE-2004-1477 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347393 - hitachi
macromedia 		cosminexus_enterprise
cosminexus_server
coldfusion
jrun 		JRun 4.0 does not properly generate and handle the JSESSIONID, which allows remote attackers to perform a session fixation attack and hijack a user's HTTP session. NVD-CWE-Other
CVE-2004-1478 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347394 - hp storageworks_command_view Unknown vulnerability in the management station in HP StorageWorks Command View XP 1.8B and earlier allows remote attackers to bypass access restrictions. NVD-CWE-Other
CVE-2004-1480 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347395 - bnc bnc The sbuf_getmsg function in BNC incorrectly handles backspace characters, which could allow remote attackers to bypass authentication and gain access to arbitrary scripts. NVD-CWE-Other
CVE-2004-1482 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347396 - symantec clientless_vpn_gateway_4400 Multiple unknown vulnerabilities in the ActiveX and HTML file browsers in Symantec Clientless VPN Gateway 4400 Series 5.0 have unknown attack vectors and unknown impact. NVD-CWE-Other
CVE-2004-1483 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347397 - socat socat Format string vulnerability in the _msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to exec… NVD-CWE-Other
CVE-2004-1484 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347398 - - - Buffer overflow in the TFTP client in InetUtils 1.4.2 allows remote malicious DNS servers to execute arbitrary code via a large DNS response that is handled by the gethostbyname function. NVD-CWE-Other
CVE-2004-1485 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347399 - - - Unknown vulnerability in Serviceguard A.11.13 through A.11.16.00 and Cluster Object Manager A.01.03 and B.01.04 through B.03.00.01 on HP-UX, Serviceguard A.11.14.04 and A.11.15.04 and Cluster Object … NVD-CWE-Other
CVE-2004-1486 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347400 - quicksilver master_of_orion_iii Master of Orion III 1.2.5 and earlier allows remote attackers to cause a denial of service (game exit) via a data packet that contains a large size specifier, which causes a large memory allocation t… NVD-CWE-Other
CVE-2004-1492 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm