Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5051	8.8	重要 Network	Kubernetes	ingress-nginx	Kubernetesのingress-nginxにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-3288	2026-05-8 12:23	2026-03-9	Show	GitHub Exploit DB Packet Storm

5052	7.5	重要 Network	マイクロソフト	Microsoft .NET Framework .NET	.NET、.NET Framework、Visual Studio のサービス拒否の脆弱性	CWE-20 CWE-400 CWE-835	CVE-2026-33116	2026-05-8 12:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

5053	8.8	重要 Network	マイクロソフト	SQL Server 2016 SQL Server 2017 SQL Server 2022 SQL Server 2019 SQL Server 2025	Microsoft SQL Server のリモートコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-33120	2026-05-8 12:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

5054	5.9	警告 Network	Apache Software Foundation	Apache Log4j	Apache Software FoundationのApache Log4jにおける複数の脆弱性	CWE-295 CWE-297	CVE-2026-34477	2026-05-8 12:23	2026-04-10	Show	GitHub Exploit DB Packet Storm

5055	7.5	重要 Network	Apache Software Foundation	Apache Log4j	Apache Software FoundationのApache Log4jにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-34479	2026-05-8 12:23	2026-04-10	Show	GitHub Exploit DB Packet Storm

5056	7.4	重要 Network	GNU Project レッドハット	Red Hat Hardened Images Red Hat Enterprise Linux Red Hat OpenShift Container Platform GnuTLS	GNU Project等の複数ベンダの製品における大文字と小文字の区別の不適切な処理に関する脆弱性	CWE-178 大文字と小文字の区別の不適切な処理	CVE-2026-3833	2026-05-8 12:23	2026-04-30	Show	GitHub Exploit DB Packet Storm

5057	9.1	緊急 Network	Apache Software Foundation	Apache Wicket	Apache Software FoundationのApache Wicketにおけるセッションの固定化の脆弱性	CWE-384 CWE-384	CVE-2026-40010	2026-05-8 12:23	2026-05-6	Show	GitHub Exploit DB Packet Storm

5058	9.1	緊急 Network	Apache Software Foundation	Apache OpenNLP	Apache Software FoundationのApache OpenNLPにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-40682	2026-05-8 12:23	2026-05-4	Show	GitHub Exploit DB Packet Storm

5059	9.8	緊急 Network	Apache Software Foundation	Apache OpenNLP	Apache Software FoundationのApache OpenNLPにおけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性	CWE-470 クラスまたはコードを選択する外部から制御された入力の使用	CVE-2026-42027	2026-05-8 12:23	2026-05-4	Show	GitHub Exploit DB Packet Storm

5060	6.5	警告 Network	nginxui	Nginx UI	Nginx UI TeamのNginx UIにおける複数の脆弱性	CWE-200 CWE-863	CVE-2026-42220	2026-05-8 12:23	2026-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
355651	-	clam_anti-virus	clamav	The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CA…	NVD-CWE-Other	CVE-2005-3500	2011-03-8 11:26	2005-11-5	Show	GitHub Exploit DB Packet Storm

355652	-	ibm	aix	Buffer overflow in swcons in IBM AIX 5.2, when debug malloc is enabled, allows remote attackers to cause a core dump and possibly execute arbitrary code.	NVD-CWE-Other	CVE-2005-3504	2011-03-8 11:26	2005-11-5	Show	GitHub Exploit DB Packet Storm

355653	-	cutephp	cutenews	Directory traversal vulnerability in CuteNews 1.4.1 allows remote attackers to include arbitrary files, execute code, and gain privileges via "../" sequences in the template parameter to (1) show_arc…	NVD-CWE-Other	CVE-2005-3507	2011-03-8 11:26	2005-11-6	Show	GitHub Exploit DB Packet Storm

355654	-	jportal	jportal_web_portal	Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner.php or the id parameter to (2) print.php, (3) comment.php, and (4) news.php.	NVD-CWE-Other	CVE-2005-3509	2011-03-8 11:26	2005-11-6	Show	GitHub Exploit DB Packet Storm

355655	-	miklos_szeredi	fuse	fusermount in FUSE before 2.4.1, if installed setuid root, allows local users to corrupt /etc/mtab and possibly modify mount options by performing a mount over a directory whose name contains certain…	NVD-CWE-Other	CVE-2005-3531	2011-03-8 11:26	2005-11-23	Show	GitHub Exploit DB Packet Storm

355656	-	osh	osh	Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename.	NVD-CWE-Other	CVE-2005-3533	2011-03-8 11:26	2005-12-11	Show	GitHub Exploit DB Packet Storm

355657	-	peel	peel	SQL injection vulnerability in index.php in Peel 2.6 through 2.7 allows remote attackers to execute arbitrary SQL commands via the rubid parameter.	NVD-CWE-Other	CVE-2005-3572	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

355658	-	icms_content_management_systems	icms	PHP file inclusion vulnerability in index.php of iCMS allows remote attackers to include arbitrary files via the page parameter.	NVD-CWE-Other	CVE-2005-3574	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

355659	-	cynox	cyphor	SQL injection vulnerability in show.php in Cyphor 0.19 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2005-3575	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

355660	-	qdbm	qdbm	QDBM before 1.8.33-r2 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects i…	NVD-CWE-Other	CVE-2005-3580	2011-03-8 11:26	2005-11-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed