Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4341 5.4 警告
Network 		Siemvk (siemvk) Openlearn Siemvk (siemvk)のOpenlearnにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41243 2026-04-30 12:18 2026-04-23 Show GitHub Exploit DB Packet Storm
4342 8.8 重要
Network 		Deskflow Deskflow Deskflowにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-41476 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
4343 7.8 重要
Local 		Deskflow Deskflow Deskflowにおける複数の脆弱性 CWE-306
CWE-862
CVE-2026-41477 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
4344 6.5 警告
Network 		langchain Langchain-text-splitters langchainのLangchain-text-splittersにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41481 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
4345 3.1
Network 		langchain Langchain-openai langchainのLangchain-openaiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41488 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
4346 9.8 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおける複数の脆弱性 CWE-131
CWE-787
CVE-2026-41676 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
4347 9.1 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおける複数の脆弱性 CWE-125
CWE-1284
CVE-2026-41677 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
4348 9.8 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-41678 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
4349 9.8 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-41681 2026-04-30 12:17 2026-04-24 Show GitHub Exploit DB Packet Storm
4350 9.8 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおける複数の脆弱性 CWE-126
CWE-130
CVE-2026-41898 2026-04-30 12:17 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352611 - jonathan_bravata scarecrow Cross-site scripting (XSS) vulnerability in ScareCrow 2.13 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter to (1) forum.cgi and (2) post.cgi, or (3)… NVD-CWE-Other
CVE-2005-4307 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
352612 - ssh tectia_server SSH Tectia Server 5.0.0 (A, F, and T), when allowing host-based authentication only, allows users to log in with the wrong credentials. NVD-CWE-Other
CVE-2005-4310 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
352613 - dcscripts dcforum
dcforum\+ 		Cross-site scripting (XSS) vulnerability in DCForum 6.25 and earlier, and possibly DCForum+ 1.x, allows remote attackers to inject arbitrary web script or HTML via (1) the page parameter in dcboard.p… NVD-CWE-Other
CVE-2005-4311 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
352614 - - - SQL injection vulnerability in index.php in AlmondSoft Almond Classifieds 5.02 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2005-4312 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
352615 - ppcal_shopping_cart ppcal_shopping_cart Cross-site scripting (XSS) vulnerability in ppcal.cgi in PPCal Shopping Cart 3.3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) stop and (2) user parameters. NVD-CWE-Other
CVE-2005-4314 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
352616 - sourcefire snort Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet. NVD-CWE-Other
CVE-2005-3252 2011-03-8 11:26 2005-10-19 Show GitHub Exploit DB Packet Storm
352617 - avaya
proxim 		wireless_ap-3
wireless_ap-4
wireless_ap-5
wireless_ap-6
wireless_ap-7
wireless_ap-8
ap-2000
ap-4000
ap-600
ap-700 		Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions before 3.1, and (2) Proxim AP-600 and AP-2000 before 2.5.5, and Proxim AP-700 and AP-400… NVD-CWE-Other
CVE-2005-3253 2011-03-8 11:26 2005-12-16 Show GitHub Exploit DB Packet Storm
352618 - squid squid The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain "odd" responses. NVD-CWE-Other
CVE-2005-3258 2011-03-8 11:26 2005-10-20 Show GitHub Exploit DB Packet Storm
352619 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to (1) left.php, (2) queryframe.… NVD-CWE-Other
CVE-2005-3301 2011-03-8 11:26 2005-10-24 Show GitHub Exploit DB Packet Storm
352620 - clam_anti-virus clamav The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file. NVD-CWE-Other
CVE-2005-3303 2011-03-8 11:26 2005-11-5 Show GitHub Exploit DB Packet Storm