Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4571	8.1	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-8093	2026-05-13 10:21	2026-05-7	Show	GitHub Exploit DB Packet Storm

4572	9.8	緊急 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-8094	2026-05-13 10:21	2026-05-7	Show	GitHub Exploit DB Packet Storm

4573	6.1	警告 Network	GitHub	Enterprise Server	GitHubのEnterprise Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-8106	2026-05-13 10:21	2026-05-7	Show	GitHub Exploit DB Packet Storm

4574	7.2	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC6 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8259	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

4575	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC6 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8264	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

4576	7.2	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC6 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8265	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

4577	7.2	重要 Network	D-Link Systems, Inc.	D-Link DNS-320 ファームウェア	D-Link CorporationのD-Link DNS-320 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8271	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

4578	7.2	重要 Network	D-Link Systems, Inc.	D-Link DNS-320 ファームウェア	D-Link CorporationのD-Link DNS-320 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8272	2026-05-13 10:20	2026-05-11	Show	GitHub Exploit DB Packet Storm

4579	7.2	重要 Network	D-Link Systems, Inc.	D-Link DNS-320 ファームウェア	D-Link CorporationのD-Link DNS-320 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8273	2026-05-13 10:20	2026-05-11	Show	GitHub Exploit DB Packet Storm

4580	9.8	緊急 Network	エレコム株式会社	WAB-S300IW2-PD WRC-X3000GST2-B WRC-X1800GS-B WRC-X6000QSA-G WRC-X3000GS2-W WAB-S733IW2-PD WAB-S733IW-AC WAB-S733IW-PD WRC-XE5400GS-G WRC-X3000GS2-B WRC-X1800GSA-B WRC…	エレコム無線LAN関連製品における複数の脆弱性	CWE-352 CWE-78 CWE-Other	CVE-2026-20704 CVE-2026-22550 CVE-2026-24449 CVE-2026-24465	2026-05-12 15:09	2026-02-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350331	-	apple	itunes	Buffer overflow in Apple iTunes 4.7 allows remote attackers to execute arbitrary code via a long URL in (1) .m3u or (2) .pls playlist files.	NVD-CWE-Other	CVE-2005-0043	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350332	-	vdr	vdr	vdr before 1.2.6 does not securely create files, which allows attackers to overwrite arbitrary files.	NVD-CWE-Other	CVE-2005-0071	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350333	-	ejoy_and_hu_yong	zhcon	zhcon before 0.2 does not drop privileges before reading a user configuration file, which allows local users to read arbitrary files.	NVD-CWE-Other	CVE-2005-0072	2017-07-11 10:32	2005-01-24	Show	GitHub Exploit DB Packet Storm

350334	-	debian	debian_linux	Multiple buffer overflows in the XView library 3.2 may allow local users to execute arbitrary code via setuid applications that use the library.	NVD-CWE-Other	CVE-2005-0076	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350335	-	xtrlock	xtrlock	Buffer overflow in xtrlock 2.0 allows local users to cause a denial of service (application crash) and hijack the desktop session.	NVD-CWE-Other	CVE-2005-0079	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350336	-	mysql	maxdb	MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and other platforms, allows remote attackers to cause a denial of service (application crash) via invalid parameters to the (1) DBMCli_St…	NVD-CWE-Other	CVE-2005-0083	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350337	-	newspost	newspost	Buffer overflow in the socket_getline function in Newspost 2.1.1 and earlier allows remote malicious NNTP servers to execute arbitrary code via a long string without a newline character.	NVD-CWE-Other	CVE-2005-0101	2017-07-11 10:32	2005-02-1	Show	GitHub Exploit DB Packet Storm

350338	-	apache	mod_auth_radius	Apache mod_auth_radius 1.5.4 and libpam-radius-auth allow remote malicious RADIUS servers to cause a denial of service (crash) via a RADIUS_REPLY_MESSAGE with a RADIUS attribute length of 1, which le…	NVD-CWE-Other	CVE-2005-0108	2017-07-11 10:32	2005-01-11	Show	GitHub Exploit DB Packet Storm

350339	-	3com	3crwe454g72	The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, and possibly earlier versions before 1.03.07A, allows remote attackers to bypass authentication a…	NVD-CWE-Other	CVE-2005-0112	2017-07-11 10:32	2005-04-14	Show	GitHub Exploit DB Packet Storm

350340	-	sgi	irix	inpview in SGI IRIX allows local users to execute arbitrary commands via the SUN_TTSESSION_CMD environment variable, which is executed by inpview without dropping privileges.	NVD-CWE-Other	CVE-2005-0113	2017-07-11 10:32	2005-01-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed