Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
451 7.8 重要
Local 		ImageMagick ImageMagick ImageMagickにおける境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2026-56370 2026-06-29 11:10 2026-06-24 Show GitHub Exploit DB Packet Storm
452 8.2 重要
Network 		ImageMagick ImageMagick ImageMagickにおける境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2026-56378 2026-06-29 11:09 2026-06-21 Show GitHub Exploit DB Packet Storm
453 8.8 重要
Network 		MISP project Malware Information Sharing Platform (MISP) MISP projectのMalware Information Sharing Platform (MISP)におけるセッションの固定化の脆弱性 New CWE-384
セッションの固定化 		CVE-2026-56425 2026-06-29 11:09 2026-06-22 Show GitHub Exploit DB Packet Storm
454 4.3 警告
Network 		hono hono honoにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-56761 2026-06-29 11:09 2026-06-24 Show GitHub Exploit DB Packet Storm
455 8.8 重要
Network 		Jenkins プロジェクト Script Security JenkinsのScript Securityにおける保護メカニズムの不具合に関する脆弱性 New CWE-693
保護メカニズムの不具合 		CVE-2026-57280 2026-06-29 11:09 2026-06-24 Show GitHub Exploit DB Packet Storm
456 5 警告
Network 		Jenkins プロジェクト Git Client JenkinsのGit ClientにおけるOS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2026-57282 2026-06-29 11:09 2026-06-24 Show GitHub Exploit DB Packet Storm
457 4.3 警告
Network 		Jenkins プロジェクト pipeline: groovy Jenkinsのpipeline: groovyにおけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反 		CVE-2026-57283 2026-06-29 11:09 2026-06-24 Show GitHub Exploit DB Packet Storm
458 4.3 警告
Network 		Jenkins プロジェクト pipeline: groovy Jenkinsのpipeline: groovyにおけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性 New CWE-470
クラスまたはコードを選択する外部から制御された入力の使用 		CVE-2026-57284 2026-06-29 11:09 2026-06-24 Show GitHub Exploit DB Packet Storm
459 4.3 警告
Network 		Jenkins プロジェクト GitHub Branch Source JenkinsのGitHub Branch Sourceにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-57285 2026-06-29 11:09 2026-06-24 Show GitHub Exploit DB Packet Storm
460 4.3 警告
Network 		Jenkins プロジェクト Git Parameter JenkinsのGit Parameterにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-57286 2026-06-29 11:09 2026-06-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
343431 - php php The RFC1867 file upload feature in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when register_globals is enabled, allows remote attackers to modify the GLOBALS array and bypass security protections of PH… NVD-CWE-Other
CVE-2005-3390 2018-10-31 01:25 2005-11-1 Show GitHub Exploit DB Packet Storm
343432 - php php Multiple vulnerabilities in PHP before 4.4.1 allow remote attackers to bypass safe_mode and open_basedir restrictions via unknown attack vectors in (1) ext/curl and (2) ext/gd. NVD-CWE-Other
CVE-2005-3391 2018-10-31 01:25 2005-11-1 Show GitHub Exploit DB Packet Storm
343433 - php php Unspecified vulnerability in PHP before 4.4.1, when using the virtual function on Apache 2, allows remote attackers to bypass safe_mode and open_basedir directives. NVD-CWE-Other
CVE-2005-3392 2018-10-31 01:25 2005-11-1 Show GitHub Exploit DB Packet Storm
343434 - sun solaris
sunos 		The default configuration of the web server for the Solaris Management Console (SMC) in Solaris 8, 9, and 10 enables the HTTP TRACE method, which could allow remote attackers to obtain sensitive info… CWE-200
Information Exposure 		CVE-2005-3398 2018-10-31 01:25 2005-11-1 Show GitHub Exploit DB Packet Storm
343435 - vmware esx Cross-site request forgery (CSRF) vulnerability in the management interface for VMware ESX Server 2.0.x before 2.0.2 patch 1, 2.1.x before 2.1.3 patch 1, and 2.x before 2.5.3 patch 2 allows allows re… NVD-CWE-Other
CVE-2005-3618 2018-10-31 01:25 2005-12-31 Show GitHub Exploit DB Packet Storm
343436 - vmware esx Cross-site scripting (XSS) vulnerability in the management interface for VMware ESX 2.5.x before 2.5.2 upgrade patch 2, 2.1.x before 2.1.2 upgrade patch 6, and 2.0.x before 2.0.1 upgrade patch 6 allo… NVD-CWE-Other
CVE-2005-3619 2018-10-31 01:25 2005-12-31 Show GitHub Exploit DB Packet Storm
343437 - vmware esx This vulnerability is addressed in the following product releases: VMware, ESX Server, 2.5.2 upgrade patch 2, and later VMware, ESX Server, 2.1.2 upgrade patch 6, and later VMware, ESX Server, 2.0… NVD-CWE-Other
CVE-2005-3619 2018-10-31 01:25 2005-12-31 Show GitHub Exploit DB Packet Storm
343438 - vmware esx The management interface for VMware ESX Server 2.0.x before 2.0.2 patch 1, 2.1.x before 2.1.3 patch 1, and 2.x before 2.5.3 patch 2 records passwords in cleartext in URLs that are stored in world-rea… NVD-CWE-Other
CVE-2005-3620 2018-10-31 01:25 2005-12-31 Show GitHub Exploit DB Packet Storm
343439 - sun solaris
sunos 		Unspecified vulnerability in in.named in Solaris 9 allows attackers to cause a denial of service via unknown manipulations that cause in.named to "make unnecessary queries." NVD-CWE-Other
CVE-2005-3781 2018-10-31 01:25 2005-11-23 Show GitHub Exploit DB Packet Storm
343440 - php php CRLF injection vulnerability in the mb_send_mail function in PHP before 5.1.0 might allow remote attackers to inject arbitrary e-mail headers via line feeds (LF) in the "To" address argument. NVD-CWE-Other
CVE-2005-3883 2018-10-31 01:25 2005-11-29 Show GitHub Exploit DB Packet Storm