Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4151 8.8 重要
Network 		HashiCorp Vault HashiCorpのVaultにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-4525 2026-04-30 12:25 2026-04-17 Show GitHub Exploit DB Packet Storm
4152 4.9 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-4917 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
4153 4.8 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4918 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
4154 4.8 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4919 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
4155 8.6 重要
Network 		HashiCorp Vault HashiCorpのVaultにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-5052 2026-04-30 12:25 2026-04-17 Show GitHub Exploit DB Packet Storm
4156 6.5 警告
Network 		Rapid7 velociraptor Rapid7のvelociraptorにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-5329 2026-04-30 12:25 2026-04-9 Show GitHub Exploit DB Packet Storm
4157 7.5 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-5477 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
4158 5.9 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-5500 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
4159 8.1 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-5501 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
4160 9.1 緊急
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-5503 2026-04-30 12:24 2026-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348571 - liferay liferay_enterprise_portal Multiple cross-site scripting (XSS) vulnerabilities in index.jsp for Liferay before 2.2.0 release 10/1/2004 allow remote attackers to inject arbitrary web script or HTML, as demonstrated using the me… CWE-79
Cross-site Scripting 		CVE-2004-2030 2017-07-11 10:31 2004-05-22 Show GitHub Exploit DB Packet Storm
348572 - e107 e107 Cross-site scripting (XSS) vulnerability in user.php in e107 allows remote attackers to inject arbitrary web script or HTML via the (1) URL, (2) MSN, or (3) AIM fields. NVD-CWE-Other
CVE-2004-2031 2017-07-11 10:31 2004-05-21 Show GitHub Exploit DB Packet Storm
348573 - netgear rp114 Netgear RP114 allows remote attackers to bypass the keyword based URL filtering by requesting a long URL, as demonstrated using a large number of %20 (hex-encoded space) sequences. NVD-CWE-Other
CVE-2004-2032 2017-07-11 10:31 2004-05-24 Show GitHub Exploit DB Packet Storm
348574 - orenosv orenosv_http_ftp_server Orenosv 0.5.9f allows remote attackers to cause a denial of service (crash) via a long HTTP GET request. NVD-CWE-Other
CVE-2004-2033 2017-07-11 10:31 2004-05-26 Show GitHub Exploit DB Packet Storm
348575 - wildtangent webdriver Buffer overflow in the (1) WTHoster and (2) WebDriver modules in WildTangent Web Driver 4.0 allows remote attackers to execute arbitrary code via a long filename. NVD-CWE-Other
CVE-2004-2034 2017-07-11 10:31 2004-01-29 Show GitHub Exploit DB Packet Storm
348576 - minishare minimal_http_server MiniShare 1.3.2 allows remote attackers to cause a denial of service (crash) via a malformed HTTP GET or HEAD request without the proper number of trailing CRLF sequences. NVD-CWE-Other
CVE-2004-2035 2017-07-11 10:31 2004-05-26 Show GitHub Exploit DB Packet Storm
348577 - jportal jportal_web_portal SQL injection vulnerability in the art_print function in print.inc.php in unknown versions of jPortal before 2.3.1 allows remote attackers to inject arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2004-2036 2017-07-11 10:31 2004-05-28 Show GitHub Exploit DB Packet Storm
348578 - mollensoft_software lightweight_ftp_server Buffer overflow in Mollensoft Lightweight FTP Server 3.6 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long CWD command, as demonstr… NVD-CWE-Other
CVE-2004-2037 2017-07-11 10:31 2004-03-24 Show GitHub Exploit DB Packet Storm
348579 - neocrome land_down_under Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) before LDU 700 allows remote attackers to inject arbitrary web script or HTML via a BBcode img tag in (1) functions.php, (2) header.p… NVD-CWE-Other
CVE-2004-2038 2017-07-11 10:31 2004-05-29 Show GitHub Exploit DB Packet Storm
348580 - e107 e107 e107 0.615 allows remote attackers to obtain sensitive information via a direct request to (1) alt_news.php, (2) backend_menu.php, (3) clock_menu.php, (4) counter_menu.php, (5) login_menu.php, and ot… NVD-CWE-Other
CVE-2004-2039 2017-07-11 10:31 2004-05-29 Show GitHub Exploit DB Packet Storm