Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4321 4.9 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-4917 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
4322 4.8 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4918 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
4323 4.8 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4919 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
4324 8.6 重要
Network 		HashiCorp Vault HashiCorpのVaultにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-5052 2026-04-30 12:25 2026-04-17 Show GitHub Exploit DB Packet Storm
4325 6.5 警告
Network 		Rapid7 velociraptor Rapid7のvelociraptorにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-5329 2026-04-30 12:25 2026-04-9 Show GitHub Exploit DB Packet Storm
4326 7.5 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-5477 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
4327 5.9 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-5500 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
4328 8.1 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-5501 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
4329 9.1 緊急
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-5503 2026-04-30 12:24 2026-04-9 Show GitHub Exploit DB Packet Storm
4330 9 緊急
Network 		craftycontrol crafty controller craftycontrolのcrafty controllerにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-5652 2026-04-30 12:24 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349611 - phpbb_group phpbb Cross-site scripting (XSS) vulnerability in ViewTopic.php in phpBB, possibly 2.0.6c and earlier, allows remote attackers to execute arbitrary script or HTML as other users via the postorder parameter. NVD-CWE-Other
CVE-2004-0339 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
349612 - phpbb_group phpbb This vulnerability is addressed in the following product release: phpBB Group, phpBB, 2.0.7 NVD-CWE-Other
CVE-2004-0339 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
349613 - texas_imperial_software wftpd Stack-based buffer overflow in WFTPD Pro Server 3.21 Release 1, Pro Server 3.20 Release 2, Server 3.21 Release 1, and Server 3.10 allows local users to execute arbitrary code via long (1) LIST, (2) N… NVD-CWE-Other
CVE-2004-0340 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
349614 - texas_imperial_software wftpd WFTPD Pro Server 3.21 Release 1 allocates memory for a command until a 0Ah byte (newline) is sent, which allows local users to cause a denial of service (CPU consumption) by continuing to send a long… NVD-CWE-Other
CVE-2004-0341 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
349615 - yabb yabb Multiple SQL injection vulnerabilities in YaBB SE 1.5.4 through 1.5.5b allow remote attackers to execute arbitrary SQL via (1) the msg parameter in ModifyMessage.php or (2) the postid parameter in Mo… NVD-CWE-Other
CVE-2004-0343 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
349616 - volition red_faction Buffer overflow in Red Faction client 1.20 and earlier allows remote servers to execute arbitrary code via a long server name. NVD-CWE-Other
CVE-2004-0345 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
349617 - spidersales spidersales SQL injection vulnerability in viewCart.asp in SpiderSales shopping cart software allows remote attackers to execute arbitrary SQL via the userId parameter. NVD-CWE-Other
CVE-2004-0348 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
349618 - gweb gweb_http_server Directory traversal vulnerability in GWeb HTTP Server 0.6 allows remote attackers to view arbitrary files via a .. (dot dot) in the URL. NVD-CWE-Other
CVE-2004-0349 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
349619 - spidersales spidersales SpiderSales shopping cart does not enforce a minimum length for the private key, which can make it easier for local users to obtain the private key by factoring. NVD-CWE-Other
CVE-2004-0350 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
349620 - spidersales spidersales Spider Sales shopping cart stores the private key in the same database and table as the public key, which allows local users with access to the database to decrypt data. NVD-CWE-Other
CVE-2004-0351 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm