Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4261 4.8 警告
Network 		GFI GFI HelpDesk GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-23752 2026-04-30 12:14 2026-04-20 Show GitHub Exploit DB Packet Storm
4262 4.8 警告
Network 		GFI GFI HelpDesk GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-23753 2026-04-30 12:14 2026-04-20 Show GitHub Exploit DB Packet Storm
4263 5.4 警告
Network 		GFI GFI HelpDesk GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-23756 2026-04-30 12:13 2026-04-20 Show GitHub Exploit DB Packet Storm
4264 5.4 警告
Network 		GFI GFI HelpDesk GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-23757 2026-04-30 12:13 2026-04-20 Show GitHub Exploit DB Packet Storm
4265 5.4 警告
Network 		GFI GFI HelpDesk GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-23758 2026-04-30 12:13 2026-04-20 Show GitHub Exploit DB Packet Storm
4266 6.5 警告
Network 		Mattermost, Inc. Focalboard Mattermost, Inc.のFocalboardにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-25773 2026-04-30 12:13 2026-04-3 Show GitHub Exploit DB Packet Storm
4267 4.3 警告
Network 		Mattermost, Inc. Focalboard Mattermost, Inc.のFocalboardにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-28736 2026-04-30 12:13 2026-04-3 Show GitHub Exploit DB Packet Storm
4268 7.8 重要
Local 		DeepCool DeepCreative DeepCoolのDeepCreativeにおける安全でない継承されたパーミッションに関する脆弱性 CWE-277
安全でない継承されたパーミッション 		CVE-2026-30266 2026-04-30 12:13 2026-04-20 Show GitHub Exploit DB Packet Storm
4269 7.5 重要
Network 		Angeet ES3 KVM Firmware AngeetのES3 KVM Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-32297 2026-04-30 12:13 2026-03-17 Show GitHub Exploit DB Packet Storm
4270 9.1 緊急
Network 		Angeet ES3 KVM Firmware AngeetのES3 KVM FirmwareにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-32298 2026-04-30 12:13 2026-03-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348751 - matthew_phillips sticker This vulnerability is addressed in the following product update: Matthew Phillips, Sticker, 3.1.0 Beta 2 NVD-CWE-Other
CVE-2004-2535 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
348752 - linux linux_kernel The exit_thread function (process.c) in Linux kernel 2.6 through 2.6.5 does not invalidate the per-TSS io_bitmap pointers if a process obtains IO access permissions from the ioperm function but does … NVD-CWE-Other
CVE-2004-2536 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
348753 - netwin surgemail Unspecified vulnerability in SurgeMail before 2.2c10 has unknown impact and attack vectors, related to a "Webmail security bug." NVD-CWE-Other
CVE-2004-2537 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
348754 - nilesh_dosooye phpcodegenie Direct static code injection vulnerability in the PCG simple application generation in phpCodeGenie before 3.0.2 allows remote authenticated users to execute arbitrary code via the (1) header or (2) … NVD-CWE-Other
CVE-2004-2538 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
348755 - network_appliance data_ontap
netcache 		Unknown vulnerability in Network Appliance NetCache 5.2 and Data ONTAP 6.0 allows remote attackers to cause a denial of service (panic and reboot) and possibly other impacts via unknown attack vector… NVD-CWE-Other
CVE-2004-2539 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
348756 - sun jdk
jre 		readObject in (1) Java Runtime Environment (JRE) and (2) Software Development Kit (SDK) 1.4.0 through 1.4.2_05 allows remote attackers to cause a denial of service (JVM unresponsive) via crafted seri… NVD-CWE-Other
CVE-2004-2540 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
348757 - dynix webpac Multiple SQL injection vulnerabilities in Dynix (formerly known as epixtech) WebPAC allow remote attackers to execute arbitrary SQL commands via unknown attack vectors, resulting in an ability to exe… NVD-CWE-Other
CVE-2004-2542 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
348758 - securecomputing sidewinder_g2 Secure Computing Corporation Sidewinder G2 6.1.0.01 might allow remote attackers to cause a denial of service (proxy failure) via invalid traffic to the (1) T.120 or (2) RTSP proxy, or (3) invalid MI… NVD-CWE-Other
CVE-2004-2543 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
348759 - securecomputing sidewinder_g2 Admin Console in Secure Computing Corporation Sidewinder G2 6.1.0.01 exports private keys when exporting firewall certificates, which might allow attackers to obtain sensitive information. NVD-CWE-Other
CVE-2004-2544 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
348760 - netwin surgemail
webmail 		NetWin (1) SurgeMail before 2.0c and (2) WebMail allow remote attackers to obtain sensitive information via HTTP requests that (a) specify the / URI, (b) specify the /scripts/ URI, or (c) specify a n… NVD-CWE-Other
CVE-2004-2547 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm