Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4421	5.5	警告 Local	Foxit	pdf editor pdf reader	Foxitのpdf editor等の複数製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-5940	2026-05-1 10:43	2026-04-27	Show	GitHub Exploit DB Packet Storm

4422	7.1	重要 Local	Foxit	pdf editor pdf reader	Foxitのpdf editor等の複数製品における入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-5941	2026-05-1 10:43	2026-04-27	Show	GitHub Exploit DB Packet Storm

4423	5.5	警告 Local	Foxit	pdf editor pdf reader	Foxitのpdf editor等の複数製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-5942	2026-05-1 10:43	2026-04-27	Show	GitHub Exploit DB Packet Storm

4424	7.8	重要 Local	Foxit	pdf editor pdf reader	Foxitのpdf editor等の複数製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-5943	2026-05-1 10:43	2026-04-27	Show	GitHub Exploit DB Packet Storm

4425	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	ch22 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のch22 ファームウェアにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-5962	2026-05-1 10:43	2026-04-9	Show	GitHub Exploit DB Packet Storm

4426	9.8	緊急 Network	MetaGPT	MetaGPT	MetaGPTにおける複数の脆弱性	fix: isolate Test.exec_code() namespace and subprocess to prevent CWE-95 code injection via globals() leak by sebastiondev&n…	CVE-2026-5970	2026-05-1 10:43	2026-04-9	Show	GitHub Exploit DB Packet Storm

4427	9.8	緊急 Network	MetaGPT	MetaGPT	MetaGPTにおける複数の脆弱性	CWE-94 CWE-95	CVE-2026-5971	2026-05-1 10:43	2026-04-9	Show	GitHub Exploit DB Packet Storm

4428	9.8	緊急 Network	MetaGPT	MetaGPT	MetaGPTにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-5972	2026-05-1 10:43	2026-04-9	Show	GitHub Exploit DB Packet Storm

4429	9.8	緊急 Network	MetaGPT	MetaGPT	MetaGPTにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-5973	2026-05-1 10:43	2026-04-9	Show	GitHub Exploit DB Packet Storm

4430	9.8	緊急 Network	MetaGPT	MetaGPT	MetaGPTにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-5974	2026-05-1 10:43	2026-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349441	-	invision_power_services	invision_power_board	Cross-site scripting (XSS) vulnerability in Invision Power Board 1.3 Final allows remote attackers to execute arbitrary script as other users via the pop parameter in a chat action to index.php.	NVD-CWE-Other	CVE-2004-2279	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349442	-	open_webmail	open_webmail	The read_list_from_file function in vacation.pl for OpenWebmail before 2.32 20040629 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename argument.	NVD-CWE-Other	CVE-2004-2284	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349443	-	activestate larry_wall	activeperl perl	Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a…	NVD-CWE-Other	CVE-2004-2286	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349444	-	-	-	Microsoft Windows XP Explorer allows attackers to execute arbitrary code via a HTML and script in a self-executing folder that references an executable file within the folder, which is automatically …	NVD-CWE-Other	CVE-2004-2290	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349445	-	alt-n	mdaemon	Buffer overflow in Alt-N MDaemon 7.0.1 allows remote attackers to cause a denial of service (application crash) via a long STATUS command to the IMAP server.	NVD-CWE-Other	CVE-2004-2292	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349446	-	francisco_burzi	php-nuke	Multiple cross-site scripting (XSS) vulnerabilities in PHP-Nuke 6.0 to 7.3 allow remote attackers to inject arbitrary web script or HTML via the (1) eid parameter or (2) query parameter to the Encycl…	NVD-CWE-Other	CVE-2004-2293	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349447	-	-	-	SQL injection vulnerability in the Reviews module in PHP-Nuke 6.0 to 7.3 allows remote attackers to execute arbitrary SQL commands via the order parameter.	NVD-CWE-Other	CVE-2004-2295	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349448	-	francisco_burzi	php-nuke	The preview_review function in the Reviews module in PHP-Nuke 6.0 to 7.3, when running on Windows systems, allows remote attackers to obtain sensitive information via an invalid date parameter, which…	NVD-CWE-Other	CVE-2004-2296	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349449	-	francisco_burzi	php-nuke	The Reviews module in PHP-Nuke 6.0 to 7.3 allows remote attackers to cause a denial of service (CPU and memory consumption) via a large, out-of-range score parameter.	NVD-CWE-Other	CVE-2004-2297	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349450	-	-	-	Buffer overflow in Omnicron OmniHTTPd 3.0a and earlier allows remote attackers to execute arbitrary code via an HTTP GET request with a long Range header.	NVD-CWE-Other	CVE-2004-2299	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm