Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4321	4.9	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-4917	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

4322	4.8	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-4918	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

4323	4.8	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-4919	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

4324	8.6	重要 Network	HashiCorp	Vault	HashiCorpのVaultにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-5052	2026-04-30 12:25	2026-04-17	Show	GitHub Exploit DB Packet Storm

4325	6.5	警告 Network	Rapid7	velociraptor	Rapid7のvelociraptorにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-5329	2026-04-30 12:25	2026-04-9	Show	GitHub Exploit DB Packet Storm

4326	7.5	重要 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-5477	2026-04-30 12:24	2026-04-10	Show	GitHub Exploit DB Packet Storm

4327	5.9	警告 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-5500	2026-04-30 12:24	2026-04-10	Show	GitHub Exploit DB Packet Storm

4328	8.1	重要 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-5501	2026-04-30 12:24	2026-04-10	Show	GitHub Exploit DB Packet Storm

4329	9.1	緊急 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-5503	2026-04-30 12:24	2026-04-9	Show	GitHub Exploit DB Packet Storm

4330	9	緊急 Network	craftycontrol	crafty controller	craftycontrolのcrafty controllerにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-5652	2026-04-30 12:24	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348061	-	emotion	mediapartner_web_server	eMotion MediaPartner Web Server 5.0 and 5.1 allows remote attackers to obtain sensitive information via an HTTP request for a .bhtml file that contains a (1) . (dot) or (2) + (plus sign) at the end, …	NVD-CWE-Other	CVE-2005-0286	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

348062	-	bottomline	webseries_payment_application	Bottomline Webseries Payment Application allows remote attackers to read arbitrary files on the network via a report template with modified ReportPath or ReportName values.	NVD-CWE-Other	CVE-2005-0287	2017-07-11 10:32	2005-01-10	Show	GitHub Exploit DB Packet Storm

348063	-	bottomline	webseries_payment_application	The change password functionality in Bottomline Webseries Payment Application does not require the old password when users enter a new password, which could allow remote authenticated users to change…	NVD-CWE-Other	CVE-2005-0288	2017-07-11 10:32	2005-01-11	Show	GitHub Exploit DB Packet Storm

348064	-	apple	airport_express airport_extreme	Apple AirPort Express prior to 6.1.1 and Extreme prior to 5.5.1, configured as a Wireless Data Service (WDS), allows remote attackers to cause a denial of service (device freeze) by connecting to UDP…	NVD-CWE-Other	CVE-2005-0289	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

348065	-	netgear	fvs318	NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to bypass the filters using hex encoded URLs, as demonstrated using a hex encoded file extension.	NVD-CWE-Other	CVE-2005-0290	2017-07-11 10:32	2005-01-17	Show	GitHub Exploit DB Packet Storm

348066	-	netgear	fvs318	Cross-site scripting (XSS) vulnerability in the log viewer in NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via a bl…	NVD-CWE-Other	CVE-2005-0291	2017-07-11 10:32	2005-01-17	Show	GitHub Exploit DB Packet Storm

348067	-	php_gift_registry	phpgiftreg	Multiple SQL injection vulnerabilities in index.php in PHP Gift Registry (phpGiftReg) 1.4.0, and possibly other versions before 1.5.0b1, allow remote attackers to execute arbitrary SQL commands via t…	NVD-CWE-Other	CVE-2005-0292	2017-07-11 10:32	2005-01-17	Show	GitHub Exploit DB Packet Storm

348068	-	minis	minis	Directory traversal vulnerability in minis.php in Minis 0.2.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the month parameter.	NVD-CWE-Other	CVE-2005-0293	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

348069	-	minis	minis	minis.php in Minis 0.2.1 allows remote attackers to cause a denial of service (infinite loop) via an HTTP request for a file that the web server does not have permission to read, as demonstrated usin…	NVD-CWE-Other	CVE-2005-0294	2017-07-11 10:32	2005-01-16	Show	GitHub Exploit DB Packet Storm

348070	-	inca	nprotect_gameguard	npptnt2.sys in nProtect Gameguard provides unrestricted I/O to any process that calls it, which allows local users to gain privileges.	NVD-CWE-Other	CVE-2005-0295	2017-07-11 10:32	2005-01-17	Show	GitHub Exploit DB Packet Storm