Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4041 4.9 警告
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS RecursorにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-33600 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
4042 4.9 警告
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS RecursorにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-33601 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
4043 9.1 緊急
Network 		EspoCRM EspoCRM EspoCRMにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-33656 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
4044 7.2 重要
Network 		EspoCRM EspoCRM EspoCRMにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-33733 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
4045 7.5 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける不正な構文構造の不適切な処理に関する脆弱性 CWE-228
不正な構文構造の不適切な処理 		CVE-2026-34232 2026-04-30 12:30 2026-04-17 Show GitHub Exploit DB Packet Storm
4046 5.3 警告
Network 		オラクル Oracle GoldenGate オラクルのOracle GoldenGateにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-34273 2026-04-30 12:30 2026-04-21 Show GitHub Exploit DB Packet Storm
4047 8.1 重要
Network 		getkirby kirby getkirbyのkirbyにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性 CWE-1336
テンプレートエンジンで使用される特殊な要素の不適切な無効化 		CVE-2026-34587 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
4048 9 緊急
Network 		Ci4-cms-erp Ci4MS Ci4-cms-erpのCi4MSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-34989 2026-04-30 12:30 2026-04-6 Show GitHub Exploit DB Packet Storm
4049 7.5 重要
Network 		Linux Foundation Antrea Linux FoundationのAntreaにおける重要なデータの暗号化の欠如に関する脆弱性 CWE-311
重要なデータの暗号化の欠如 		CVE-2026-34992 2026-04-30 12:29 2026-04-6 Show GitHub Exploit DB Packet Storm
4050 7.5 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2026-35215 2026-04-30 12:29 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350361 - mandrakesoft mandrake_lam-runtime The LAM runtime environment package (lam-runtime-7.0.6-2mdk) on Mandrake Linux installs the mpi user without a password, which allows local users to gain privileges. NVD-CWE-Other
CVE-2005-1379 2016-10-18 12:19 2005-05-3 Show GitHub Exploit DB Packet Storm
350362 - apple safari Safari 1.3 allows remote attackers to cause a denial of service (application crash) via a long https URL that triggers a NULL pointer dereference. NVD-CWE-Other
CVE-2005-1385 2016-10-18 12:19 2005-05-3 Show GitHub Exploit DB Packet Storm
350363 - francisco_burzi php-nuke PHP-Nuke 7.6 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) ipban.php, (2) db.php, (3) lang-norwegian.php, (4) lang-indonesian.php, (5) lang-greek.php… NVD-CWE-Other
CVE-2005-1386 2016-10-18 12:19 2005-05-3 Show GitHub Exploit DB Packet Storm
350364 - kristofer_szymanski cocktail Cocktail 3.5.4 and possibly earlier in Mac OS X passes the administrative password on the command line to sudo in cleartext, which allows local users to gain sensitive information by running listing … NVD-CWE-Other
CVE-2005-1387 2016-10-18 12:19 2005-05-3 Show GitHub Exploit DB Packet Storm
350365 - esri arcinfo_workstation Multiple buffer overflows in ArcGIS for ESRI ArcInfo Workstation 9.0 allow local users to execute arbitrary code via long command line arguments to (1) asmaster, (2) asuser, (3) asutility, (4) se, or… NVD-CWE-Other
CVE-2005-1393 2016-10-18 12:19 2005-05-3 Show GitHub Exploit DB Packet Storm
350366 - rsa securid_web_agent Heap-based buffer overflow in RSA SecurID Web Agent 5, 5.2, and 5.3 allows remote attackers to execute arbitrary code via crafted chunked-encoding data. NVD-CWE-Other
CVE-2005-1471 2016-10-18 12:19 2005-05-6 Show GitHub Exploit DB Packet Storm
350367 - oracle database_server SQL injection vulnerability in the SYS.DBMS_CDC_IPUBLISH.CREATE_SCN_CHANGE_SET procedure in Oracle Database Server 10g allows remote attackers to execute arbitrary SQL commands via the CHANGE_SET_NAM… NVD-CWE-Other
CVE-2005-1197 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
350368 - anaconda_partners foundation_directory Directory traversal vulnerability in apexec.pl for Anaconda Foundation Directory allows remote attackers to read arbitrary files via hex-encoded null characters (%00) in the middle of ".." sequences … NVD-CWE-Other
CVE-2005-1198 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
350369 - infopop ultimate_bulletin_board SQL injection vulnerability in printthread.php in UBB.Threads allows remote attackers to execute arbitrary SQL commands via the main parameter. NVD-CWE-Other
CVE-2005-1199 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
350370 - egroupware egroupware Multiple cross-site scripting (XSS) vulnerabilities in eGroupware before 1.0.0.007 allow remote attackers to inject arbitrary web script or HTML via the (1) ab_id, (2) page, (3) type, or (4) lang par… NVD-CWE-Other
CVE-2005-1202 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm