Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4321	4.9	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-4917	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

4322	4.8	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-4918	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

4323	4.8	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-4919	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

4324	8.6	重要 Network	HashiCorp	Vault	HashiCorpのVaultにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-5052	2026-04-30 12:25	2026-04-17	Show	GitHub Exploit DB Packet Storm

4325	6.5	警告 Network	Rapid7	velociraptor	Rapid7のvelociraptorにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-5329	2026-04-30 12:25	2026-04-9	Show	GitHub Exploit DB Packet Storm

4326	7.5	重要 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-5477	2026-04-30 12:24	2026-04-10	Show	GitHub Exploit DB Packet Storm

4327	5.9	警告 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-5500	2026-04-30 12:24	2026-04-10	Show	GitHub Exploit DB Packet Storm

4328	8.1	重要 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-5501	2026-04-30 12:24	2026-04-10	Show	GitHub Exploit DB Packet Storm

4329	9.1	緊急 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-5503	2026-04-30 12:24	2026-04-9	Show	GitHub Exploit DB Packet Storm

4330	9	緊急 Network	craftycontrol	crafty controller	craftycontrolのcrafty controllerにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-5652	2026-04-30 12:24	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348771	-	vizer_web_server	vizer_web_server	Vizer Web Server 1.9.1 allows remote attackers to cause a denial of service (crash) via multiple malformed requests including (1) requests without GET, (2) GET requests without HTTP, (3) or long GET …	NVD-CWE-Other	CVE-2004-2327	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

348772	-	clearswift	mailsweeper	Clearswift MAILsweeper for SMTP before 4.3_13 allows remote attackers to cause a denial of service (infinite loop) via an e-mail with a crafted RAR archive attached.	NVD-CWE-Other	CVE-2004-2328	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

348773	-	kerio	personal_firewall	Kerio Personal Firewall (KPF) 2.1.5 allows local users to execute arbitrary code with SYSTEM privileges via the Load button in the Firewall Configuration Files option, which does not drop privileges …	NVD-CWE-Other	CVE-2004-2329	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

348774	-	macromedia	coldfusion	ColdFusion MX 6.1 and 6.1 J2EE allows remote attackers to cause a denial of service via an HTTP request containing a large number of form fields.	NVD-CWE-Other	CVE-2004-2330	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

348775	-	cpan	www_form	Multiple cross-site scripting (XSS) vulnerabilities in CPAN WWW::Form before 1.13 allow remote attackers to inject arbitrary web script or HTML via unknown vectors.	NVD-CWE-Other	CVE-2004-2332	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

348776	-	bodington	bodington	Bodington 2.1.0 RC1 and earlier does not secure the file upload area, which allows remote attackers to read uploaded files.	NVD-CWE-Other	CVE-2004-2333	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

348777	-	emumail	emu_webmail	Multiple cross-site scripting (XSS) vulnerabilities in EMU Webmail 5.2.7 allow remote attackers to inject arbitrary web script or HTML via (1) a hex-encoded value to the variable parameter in emumail…	NVD-CWE-Other	CVE-2004-2334	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

348778	-	macromedia	contribute studio	The Macromedia installers and e-licensing client on Mac OS X, as used for Macromedia Contribute 2, Director, Dreamweaver, Fireworks, Flash, and Studio, install the AuthenticationService setuid and wr…	NVD-CWE-Other	CVE-2004-2335	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

348779	-	-	-	Unknown vulnerability in Novell GroupWise and GroupWise WebAccess 6.0 through 6.5, when running with Apache Web Server 1.3 for NetWare where Apache is loaded using GWAPACHE.CONF, allows remote attack…	NVD-CWE-Other	CVE-2004-2336	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

348780	-	inlook	inlook	The /.inlook/.crypt file for inlook 0.7.3 and earlier is installed with world readable permissions, which allows local users to obtain user POP3 credentials.	NVD-CWE-Other	CVE-2004-2337	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm