Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3791 9.8 緊急
Network 		Open Knowledge Foundation CKAN Open Knowledge FoundationのCKANにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-42031 2026-05-18 11:30 2026-05-13 Show GitHub Exploit DB Packet Storm
3792 9.1 緊急
Network 		Open Knowledge Foundation CKAN Open Knowledge FoundationのCKANにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-42032 2026-05-18 11:30 2026-05-13 Show GitHub Exploit DB Packet Storm
3793 4.9 警告
Network 		argoproj Argo Workflows Argo Project AuthorsのArgo Workflowsにおける認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-42295 2026-05-18 11:30 2026-05-9 Show GitHub Exploit DB Packet Storm
3794 8.1 重要
Network 		argoproj Argo Workflows Argo Project AuthorsのArgo Workflowsにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-42296 2026-05-18 11:30 2026-05-9 Show GitHub Exploit DB Packet Storm
3795 8.3 重要
Network 		argoproj Argo Workflows Argo Project AuthorsのArgo Workflowsにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42297 2026-05-18 11:30 2026-05-9 Show GitHub Exploit DB Packet Storm
3796 6.8 警告
Network 		pyLoad-ng project pyLoad-ng pyLoad-ng projectのpyLoad-ngにおける複数の脆弱性 CWE-295
CWE-306
CWE-863
CVE-2026-42312 2026-05-18 11:30 2026-05-11 Show GitHub Exploit DB Packet Storm
3797 8.3 重要
Network 		pyLoad-ng project pyLoad-ng pyLoad-ng projectのpyLoad-ngにおける複数の脆弱性 CWE-441
CWE-863
CWE-918
CVE-2026-42313 2026-05-18 11:30 2026-05-11 Show GitHub Exploit DB Packet Storm
3798 6.5 警告
Network 		pyLoad-ng project pyLoad-ng pyLoad-ng projectのpyLoad-ngにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-42314 2026-05-18 11:30 2026-05-11 Show GitHub Exploit DB Packet Storm
3799 6.5 警告
Network 		pyLoad-ng project pyLoad-ng pyLoad-ng projectのpyLoad-ngにおける複数の脆弱性 CWE-22
CWE-36
CVE-2026-42315 2026-05-18 11:30 2026-05-11 Show GitHub Exploit DB Packet Storm
3800 7.5 重要
Network 		mongoosejs mongoose mongoosejsのmongooseにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-42334 2026-05-18 11:30 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345971 - linux linux_kernel The ipt_recent kernel module (ipt_recent.c) in Linux kernel 2.6.12 and earlier does not properly perform certain time tests when the jiffies value is greater than LONG_MAX, which can cause ipt_recent… NVD-CWE-Other
CVE-2005-2873 2017-10-11 10:30 2005-09-10 Show GitHub Exploit DB Packet Storm
345972 - easy_software_products cups The is_path_absolute function in scheduler/client.c for the daemon in CUPS before 1.1.23 allows remote attackers to cause a denial of service (CPU consumption by tight loop) via a "..\.." URL in an H… NVD-CWE-Other
CVE-2005-2874 2017-10-11 10:30 2005-09-14 Show GitHub Exploit DB Packet Storm
345973 - squid squid Squid 2.5.STABLE10 and earlier, while performing NTLM authentication, does not properly handle certain request sequences, which allows attackers to cause a denial of service (daemon restart). NVD-CWE-Other
CVE-2005-2917 2017-10-11 10:30 2005-10-1 Show GitHub Exploit DB Packet Storm
345974 - realnetworks helix_player
realone_player
realplayer
rhapsody 		Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player allows remote malicious servers to cause a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-2922 2017-10-11 10:30 2005-12-31 Show GitHub Exploit DB Packet Storm
345975 - mozilla firefox
mozilla 		Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash. NVD-CWE-Other
CVE-2005-2968 2017-10-11 10:30 2005-09-21 Show GitHub Exploit DB Packet Storm
345976 - pam pam The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unix_chkpwd, which does not log failed guesses or delay its responses. NVD-CWE-Other
CVE-2005-2977 2017-10-11 10:30 2005-11-1 Show GitHub Exploit DB Packet Storm
345977 - mozilla firefox Firefox 1.0.6 allows attackers to cause a denial of service (crash) via a Proxy Auto-Config (PAC) script that uses an eval statement. NOTE: it is not clear whether an untrusted party has any role in … NVD-CWE-Other
CVE-2005-3089 2017-10-11 10:30 2005-09-29 Show GitHub Exploit DB Packet Storm
345978 - - - The FTP server in HP-UX 10.20, B.11.00, and B.11.11, allows remote attackers to list arbitrary directories as root by running the LIST command before logging in. NVD-CWE-Other
CVE-2005-3296 2017-10-11 10:30 2005-10-24 Show GitHub Exploit DB Packet Storm
345979 - apache spamassassin SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e-mail with a large number of recipients ("To" addresses), which triggers a bus error in Perl. NVD-CWE-Other
CVE-2005-3351 2017-10-11 10:30 2005-11-21 Show GitHub Exploit DB Packet Storm
345980 - ibm aix Buffer overflow in the chcons (chcon) command in IBM AIX 5.2 and 5.3, when DEBUG MALLOC is enabled, might allow attackers to execute arbitrary code via a long command line argument. NVD-CWE-Other
CVE-2005-3396 2017-10-11 10:30 2005-11-1 Show GitHub Exploit DB Packet Storm