Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5041 5.3 警告
Network 		Exim Development Exim Exim DevelopmentのEximにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-40686 2026-05-7 12:00 2026-04-30 Show GitHub Exploit DB Packet Storm
5042 9.1 緊急
Network 		Exim Development Exim Exim DevelopmentのEximにおけるリソースの初期化の不備に関する脆弱性 CWE-909
リソースの初期化の不備 		CVE-2026-40687 2026-05-7 12:00 2026-04-30 Show GitHub Exploit DB Packet Storm
5043 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-43504 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
5044 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-43505 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
5045 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43506 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
5046 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-43507 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
5047 7.5 重要
Network 		Debian
GStreamer
レッドハット		 GStreamer
Debian GNU/Linux
Red Hat Enterprise Linux
GStreamer Good Plug-ins 		Debian等の複数ベンダの製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-1940 2026-05-7 11:31 2026-03-23 Show GitHub Exploit DB Packet Storm
5048 9.8 緊急
Network 		OPPO ColorOS Assistant OPPOのColorOS Assistantにおける複数の脆弱性 CWE-22
CWE-23
CVE-2026-22070 2026-05-7 11:31 2026-04-30 Show GitHub Exploit DB Packet Storm
5049 8.8 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42364 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
5050 7.5 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における観測された状態からの推測に関する脆弱性 CWE-341
観測された状態からの推測 		CVE-2026-42365 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
357671 - sy9 serendipity Unknown vulnerability in Serendipity 0.8, when used with multiple authors, allows unprivileged authors to upload arbitrary media files. NVD-CWE-Other
CVE-2005-1712 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
357672 - s9y serendipity Multiple cross-site scripting (XSS) vulnerabilities in Serendipity 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) templatedropdown and (2) shoutbox plugins. NVD-CWE-Other
CVE-2005-1713 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
357673 - ej3 topo Cross-site scripting (XSS) vulnerability in index.php for TOPo 2.2 (2.2.178) allows remote attackers to inject arbitrary web script or HTML via the (1) m, (2) s, (3) ID, or (4) t parameters, or the (… NVD-CWE-Other
CVE-2005-1715 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
357674 - ej3 topo TOPo 2.2 (2.2.178) stores data files in the data directory under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as client I… NVD-CWE-Other
CVE-2005-1716 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
357675 - zyxel prestige_650r-31 ZyXEL Prestige 650R-31 router running ZyNOS FW v3.40(KO.1) allows remote attackers to cause a denial of service (CPU consumption and network loss) via crafted fragmented IP packets. NVD-CWE-Other
CVE-2005-1717 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
357676 - ls_games war_times Buffer overflow in LS Games War Times 1.03 and earlier allows remote attackers to cause a denial of service (server crash) via a long nickname. NVD-CWE-Other
CVE-2005-1718 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
357677 - alwil avast_antivirus Unknown vulnerability in ALWIL avast! antivirus 4 (4.6.6230) and earlier, when running on Windows NT 4.0, does not properly detect certain viruses. NVD-CWE-Other
CVE-2005-1719 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
357678 - apple afp_server AFP Server for Mac OS X 10.4.1, when using an ACL enabled volume, does not properly remove an ACL when a file is copied to a directory that does not use ACLs, which will override the POSIX file permi… NVD-CWE-Other
CVE-2005-1720 2008-09-6 05:49 2005-06-16 Show GitHub Exploit DB Packet Storm
357679 - apple afp_server Buffer overflow in the legacy client support for AFP Server for Mac OS X 10.4.1 allows attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-1721 2008-09-6 05:49 2005-06-16 Show GitHub Exploit DB Packet Storm
357680 - apple mac_os_x
mac_os_x_server 		Unknown vulnerability in the CoreGraphics Window Server for Mac OS X 10.4.x up to 10.4.1 allows local users to inject arbitrary commands into root sessions. NVD-CWE-Other
CVE-2005-1722 2008-09-6 05:49 2005-06-16 Show GitHub Exploit DB Packet Storm