Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4621	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	CX12L Pro Firmware	Shenzhen Tenda Technology Co.,Ltd.のCX12L Pro Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-8138	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4622	7.8	重要 Local	NAVER Corp.	NAVER MYBOX Explorer for Windows	NAVER Corp.のNAVER MYBOX Explorer for Windowsにおける不適切な権限設定に関する脆弱性	CWE-266 不適切な権限設定	CVE-2026-8148	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4623	7.3	重要 Network	Project Jupyter	Jupyter Server	Project JupyterのJupyter Serverにおけるアンカーのない正規表現に関する脆弱性	CWE-777 アンカーのない正規表現	CVE-2026-40110	2026-05-12 10:19	2026-05-5	Show	GitHub Exploit DB Packet Storm

4624	6.1	警告 Network	HCL Technologies Limited	unica HCL Unica Plan HCL Unica Segment Central HCL Unica Centralized Offer Management HCL Unica Audience Campaign HCL U…	HCL Technologies Limitedのunica等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-62320	2026-05-12 10:19	2026-03-17	Show	GitHub Exploit DB Packet Storm

4625	5.5	警告 Local	ヒューレット・パッカード	Samsung Print Service Plugin	ヒューレット・パッカードのSamsung Print Service PluginにおけるAndroid アプリケーションコンポーネントの不適切なエクスポートの脆弱性	CWE-926 CWE-noinfo	CVE-2026-3291	2026-05-12 10:19	2026-05-6	Show	GitHub Exploit DB Packet Storm

4626	8.8	重要 Network	langflow	langflow Langflow-base	langflowのLangflow-base等の複数製品における複数の脆弱性	CWE-639 CWE-862	CVE-2026-34046	2026-05-12 10:19	2026-03-27	Show	GitHub Exploit DB Packet Storm

4627	7.5	重要 Network	Gazelle project	Gazelle	KazeburoのGazelleにおけるHTTP リクエストスマグリングに関する脆弱性	CWE-444 HTTP リクエストスマグリング	CVE-2026-40562	2026-05-12 10:19	2026-05-6	Show	GitHub Exploit DB Packet Storm

4628	5.3	警告 Network	opentelemetry	OpenTelemetry.Exporter.Zipkin	opentelemetryのOpenTelemetry.Exporter.Zipkinにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-41310	2026-05-12 10:19	2026-05-6	Show	GitHub Exploit DB Packet Storm

4629	7.5	重要 Network	uuidjs	uuid	uuidjsのuuidにおける複数の脆弱性	CWE-787 CWE-823	CVE-2026-41907	2026-05-12 10:19	2026-04-24	Show	GitHub Exploit DB Packet Storm

4630	7.5	重要 Network	Amazon.com, Inc.	Bedrock Agentcore Starter Toolkit	Amazon.com, Inc.のBedrock Agentcore Starter Toolkitにおける複数の脆弱性	CWE-283 CWE-340	CVE-2026-4269	2026-05-12 10:19	2026-03-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350441	-	emotion	mediapartner_web_server	Cross-site scripting (XSS) vulnerability in EMotion MediaPartner Web Server 5.0 allows remote attackers to inject arbitrary HTML or web script, as demonstrated using a URL containing .. sequences and…	NVD-CWE-Other	CVE-2005-0336	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350442	-	savant	savant_webserver	Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request.	NVD-CWE-Other	CVE-2005-0338	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350443	-	foxmail	foxmail_email_server	Buffer overflow in Foxmail 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long MAIL FROM command.	NVD-CWE-Other	CVE-2005-0339	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350444	-	apple	afp_server	Integer signedness error in Apple File Service (AFP Server) allows remote attackers to cause a denial of service (application crash) via a negative UAM string length in a FPLoginExt packet.	NVD-CWE-Other	CVE-2005-0340	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350445	-	apple	safari	Apple Safari 1.2.4 does not obey the Content-type field in the HTTP header and renders text as HTML, which allows remote attackers to inject arbitrary web script or HTML and perform cross-site script…	NVD-CWE-Other	CVE-2005-0341	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350446	-	apple	mac_os_x mac_os_x_server	The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain privileges by creating a hard link from the .DS_Store file to an arbitrary file.	NVD-CWE-Other	CVE-2005-0342	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350447	-	logicnow	perldesk	SQL injection vulnerability in PerlDesk 1.x allows remote attackers to inject arbitrary SQL commands via the view parameter.	NVD-CWE-Other	CVE-2005-0343	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350448	-	software602	602lan_suite	Directory traversal vulnerability in 602LAN SUITE 2004.0.04.1221 allows remote authenticated users to upload and execute arbitrary files via a .. (dot dot) in the filename parameter.	NVD-CWE-Other	CVE-2005-0344	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350449	-	php_fusion	php_fusion	viewthread.php in php-fusion 4.x does not check the (1) forum_id or (2) forum_cat parameters, which allows remote attackers to view protected forums via the thread_id parameter.	NVD-CWE-Other	CVE-2005-0345	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350450	-	safenet	softremote_vpn_client	SafeNet SoftRemote VPN Client stores the VPN password (pre-shared key) in cleartext in memory of the IreIKE.exe process, which allows local users to gain sensitive information if they have access to …	NVD-CWE-Other	CVE-2005-0346	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm