Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4071 6.5 警告
Network 		getkirby kirby getkirbyのkirbyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40099 2026-04-30 12:29 2026-04-24 Show GitHub Exploit DB Packet Storm
4072 5.4 警告
Network 		Auth0 Inc. nextjs-auth0 Auth0 Inc.のnextjs-auth0における複数の脆弱性 CWE-362
CWE-863
CVE-2026-40155 2026-04-30 12:29 2026-04-17 Show GitHub Exploit DB Packet Storm
4073 5.5 警告
Local 		systemd project systemd systemd projectのsystemdにおける不適切な動作順序に関する脆弱性 CWE-696
不適切な動作順序 		CVE-2026-40223 2026-04-30 12:29 2026-04-10 Show GitHub Exploit DB Packet Storm
4074 7.3 重要
Local 		systemd project systemd systemd projectのsystemdにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40224 2026-04-30 12:29 2026-04-10 Show GitHub Exploit DB Packet Storm
4075 6.4 警告
Physics 		systemd project systemd systemd projectのsystemdにおける領域間での誤ったリソース移動に関する脆弱性 CWE-669
領域間での誤ったリソース移動 		CVE-2026-40225 2026-04-30 12:28 2026-04-10 Show GitHub Exploit DB Packet Storm
4076 6.1 警告
Network 		FreeRDP FreeRDP FreeRDPにおける境界条件の判定に関する脆弱性 CWE-193
境界条件の判定 		CVE-2026-40254 2026-04-30 12:28 2026-04-24 Show GitHub Exploit DB Packet Storm
4077 3.7
Network 		BACnet Stack BACnet Stack BACnet Stackにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性 CWE-758
未定義、未指定、または実装定義の動作への依存 		CVE-2026-40279 2026-04-30 12:28 2026-04-21 Show GitHub Exploit DB Packet Storm
4078 7.6 重要
Network 		WeGIA WeGIA WeGIAにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40283 2026-04-30 12:28 2026-04-17 Show GitHub Exploit DB Packet Storm
4079 6.5 警告
Network 		OpenFGA OpenFGA OpenFGAにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-40293 2026-04-30 12:28 2026-04-17 Show GitHub Exploit DB Packet Storm
4080 9.9 緊急
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける複数の脆弱性 CWE-22
CWE-427
CWE-73
CWE-94
CVE-2026-40342 2026-04-30 12:28 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347761 - novell groupwise grpWise.exe for Novell GroupWise client 5.5 through 6.5.2 stores the password in plaintext in memory, which allows attackers to obtain the password using a debugger or another mechanism to read proce… NVD-CWE-Other
CVE-2005-2620 2017-07-11 10:32 2005-08-17 Show GitHub Exploit DB Packet Storm
347762 - realnetworks realone_player
realplayer 		Heap-based buffer overflow in DUNZIP32.DLL for RealPlayer 8, 10, and 10.5 and RealOne Player 1 and 2 allows remote attackers to execute arbitrary code via a crafted RealPlayer Skin (RJS) file, a diff… NVD-CWE-Other
CVE-2005-2630 2017-07-11 10:32 2005-11-19 Show GitHub Exploit DB Packet Storm
347763 - mediabox404 mediabox404 SQL injection vulnerability in login_admin_mediabox404.php in mediabox404 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the User field. NVD-CWE-Other
CVE-2005-2632 2017-07-11 10:32 2005-08-23 Show GitHub Exploit DB Packet Storm
347764 - winftp_server winftp_server Buffer overflow in the Log-SCR function in the "Log to Screen" feature in WinFtp Server 1.6.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary c… NVD-CWE-Other
CVE-2005-2634 2017-07-11 10:32 2005-08-23 Show GitHub Exploit DB Packet Storm
347765 - phpadsnew
phppgads 		phpadsnew
phppgads 		Multiple directory traversal vulnerabilities in phpAdsNew and phpPgAds before 2.0.6 allow remote attackers to include arbitrary files via a .. (dot dot) in the (1) layerstyle parameter to adlayer.php… NVD-CWE-Other
CVE-2005-2635 2017-07-11 10:32 2005-08-23 Show GitHub Exploit DB Packet Storm
347766 - phpadsnew
phppgads 		phpadsnew
phppgads 		SQL injection vulnerability in lib-view-direct.inc.php in phpAdsNew and phpPgAds before 2.0.6 allows remote attackers to execute arbitrary SQL commands via the clientid parameter. NVD-CWE-Other
CVE-2005-2636 2017-07-11 10:32 2005-08-23 Show GitHub Exploit DB Packet Storm
347767 - w-agora w-agora Directory traversal vulnerability in index.php in W-Agora 4.2.0 and earlier allows remote attackers to read arbitrary files via the site parameter. NVD-CWE-Other
CVE-2005-2648 2017-07-11 10:32 2005-08-23 Show GitHub Exploit DB Packet Storm
347768 - adaptive_technology_resource_centre atutor Cross-site scripting (XSS) vulnerability in ATutor 1.5.1 allows remote attackers to inject arbitrary web script or HTML via (1) course parameter in login.php or (2) words parameter in search.php. NVD-CWE-Other
CVE-2005-2649 2017-07-11 10:32 2005-08-23 Show GitHub Exploit DB Packet Storm
347769 - phpoutsourcing zorum gorum/prod.php in Zorum 3.5 allows remote attackers to execute arbitrary code via shell metacharacters in the argv parameter. NVD-CWE-Other
CVE-2005-2651 2017-07-11 10:32 2005-08-23 Show GitHub Exploit DB Packet Storm
347770 - phpoutsourcing zorum Zorum 3.5 allows remote attackers to obtain the full installation path via direct requests to (1) gorum/notification.php, (2) user.php, (3) attach.php, (4) blacklist.php, (5) zorum/forum.php, (6) glo… NVD-CWE-Other
CVE-2005-2652 2017-07-11 10:32 2005-08-23 Show GitHub Exploit DB Packet Storm