Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3901	7.1	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-31614	2026-05-1 10:48	2026-04-24	Show	GitHub Exploit DB Packet Storm

3902	7.5	重要 Network	Tinyproxy project	Tinyproxy	Tinyproxy projectのTinyproxyにおけるHTTP リクエストスマグリングに関する脆弱性	CWE-444 HTTP リクエストスマグリング	CVE-2026-31842	2026-05-1 10:48	2026-04-7	Show	GitHub Exploit DB Packet Storm

3903	8	重要 Network	マイクロソフト	Microsoft Power Apps	Microsoft Power Apps のリモートでコードが実行される脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2026-32172	2026-05-1 10:48	2026-04-23	Show	GitHub Exploit DB Packet Storm

3904	7.1	重要 Local	マイクロソフト	Microsoft Office Microsoft Excel Office Long Term Servicing Channel (LTSC) Microsoft 365 Apps Microsoft Office Online Server	Microsoft Excel の情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-32188	2026-05-1 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

3905	7.8	重要 Local	マイクロソフト	Microsoft Office Microsoft Excel Office Long Term Servicing Channel (LTSC) Microsoft 365 Apps Microsoft Office Online Server	Microsoft Excel のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-32189	2026-05-1 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

3906	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office のリモートコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-32190	2026-05-1 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

3907	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33095	2026-05-1 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

3908	9.3	緊急 Network	マイクロソフト	Microsoft 365 Copilot	Microsoft 365 Copilot の特権昇格の脆弱性	CWE-601 オープンリダイレクト	CVE-2026-33102	2026-05-1 10:48	2026-04-23	Show	GitHub Exploit DB Packet Storm

3909	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-33114	2026-05-1 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

3910	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33115	2026-05-1 10:47	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347461	-	gentoo	webmin	The ebuild of Webmin before 1.170-r3 on Gentoo Linux includes the encrypted root password in the miniserv.users file when building a tbz2 of the webmin package, which allows remote attackers to obtai…	NVD-CWE-Other	CVE-2005-0427	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

347462	-	powerdns	powerdns	The DNSPacket::expand method in dnspacket.cc in PowerDNS before 2.9.17 allows remote attackers to cause a denial of service by sending a random stream of bytes.	NVD-CWE-Other	CVE-2005-0428	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

347463	-	barracuda_networks	barracuda_spam_firewall	Barracuda Spam Firewall 3.1.10 and earlier does not restrict the domains that white-listed domains can send mail to, which allows members of white-listed domains to use Barracuda as an open mail rela…	NVD-CWE-Other	CVE-2005-0431	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

347464	-	francisco_burzi	php-nuke	Php-Nuke 7.5 allows remote attackers to determine the full path of the web server via invalid or missing arguments to (1) db.php, (2) mainfile.php, (3) Downloads/index.php, or (4) Web_Links/index.php…	NVD-CWE-Other	CVE-2005-0433	2017-07-11 10:32	2005-02-15	Show	GitHub Exploit DB Packet Storm

347465	-	francisco_burzi	php-nuke	Multiple cross-site scripting (XSS) vulnerabilities in Php-Nuke 7.5 allow remote attackers to inject arbitrary HTML or web script via (1) the newdownloadshowdays parameter in a NewDownloads operation…	NVD-CWE-Other	CVE-2005-0434	2017-07-11 10:32	2005-02-15	Show	GitHub Exploit DB Packet Storm

347466	-	awstats	awstats	awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to read server web logs by setting the loadplugin and pluginmode parameters to rawlog.	NVD-CWE-Other	CVE-2005-0435	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

347467	-	awstats	awstats	Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter.	NVD-CWE-Other	CVE-2005-0436	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

347468	-	awstats	awstats	awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to obtain sensitive information by setting the debug parameter.	NVD-CWE-Other	CVE-2005-0438	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

347469	-	stefan_ritt	elog_web_logbook	Buffer overflow in the decode_post function in ELOG before 2.5.7 allows remote attackers to execute arbitrary code via attachments with long file names.	NVD-CWE-Other	CVE-2005-0439	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

347470	-	devellion	cubecart	Directory traversal vulnerability in index.php for CubeCart 2.0.4 allows remote attackers to read arbitrary files via the language parameter.	NVD-CWE-Other	CVE-2005-0442	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm