Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5711 6.1 警告
Network 		WorkflowFirst Software LLC Staff.Wiki WorkflowFirst Software LLCのStaff.Wikiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-29969 2026-05-11 11:02 2026-03-26 Show GitHub Exploit DB Packet Storm
5712 5.4 警告
Network 		spomky-labs webauthn-lib
webauthn-symfony-bundle
webauthn framwork 		spomky-labsのwebauthn-lib等の複数製品における同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-30964 2026-05-11 11:02 2026-03-10 Show GitHub Exploit DB Packet Storm
5713 6.5 警告
Network 		appium Appium/support appiumのAppium/supportにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-30973 2026-05-11 11:02 2026-03-10 Show GitHub Exploit DB Packet Storm
5714 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2025
Microsoft Windows Server 2022
Microsoft Windows 11 24h2
Microsoft Windows 11 25h2
Microsoft … 		リモート デスクトップ クライアントのリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-32157 2026-05-11 11:02 2026-04-14 Show GitHub Exploit DB Packet Storm
5715 10 緊急
Network 		Luis Novo (lfnovo) Open Notebook Luis Novo (lfnovo)のOpen Notebookにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-33587 2026-05-11 11:02 2026-05-7 Show GitHub Exploit DB Packet Storm
5716 8.1 重要
Network 		Luis Novo (lfnovo) Open Notebook Luis Novo (lfnovo)のOpen Notebookにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-33588 2026-05-11 11:02 2026-05-7 Show GitHub Exploit DB Packet Storm
5717 6.5 警告
Network 		Luis Novo (lfnovo) Open Notebook Luis Novo (lfnovo)のOpen Notebookにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-33589 2026-05-11 11:02 2026-05-7 Show GitHub Exploit DB Packet Storm
5718 9.8 緊急
Network 		bukts.ru LLC (Nefteprodukttekhnika) BUK TS-G Gas Station Automation System bukts.ru LLC (Nefteprodukttekhnika)のBUK TS-G Gas Station Automation SystemにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-3843 2026-05-11 11:02 2026-03-10 Show GitHub Exploit DB Packet Storm
5719 6.1 警告
Network 		spin.js spin.js spin.jsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-3884 2026-05-11 11:02 2026-03-11 Show GitHub Exploit DB Packet Storm
5720 8.3 重要
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2024-30151 2026-05-11 11:02 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
358491 - yabb yabb_se SQL injection vulnerability in SSI.php in YaBB SE 1.5.4, 1.5.3, and possibly other versions before 1.5.5 allows remote attackers to execute arbitrary SQL commands via the ID_MEMBER parameter to the (… CWE-89
SQL Injection 		CVE-2004-2754 2008-09-6 05:45 2004-12-31 Show GitHub Exploit DB Packet Storm
358492 - xoops xoops Cross-site scripting (XSS) vulnerability in viewtopic.php in Xoops 2.x, possibly 2 through 2.0.5, allows remote attackers to inject arbitrary web script or HTML via the (1) forum and (2) topic_id par… CWE-79
Cross-site Scripting 		CVE-2004-2756 2008-09-6 05:45 2004-12-31 Show GitHub Exploit DB Packet Storm
358493 - securecomputing sidewinder_g2 Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (CPU consumption) via delayed responses to DNS queries. NVD-CWE-Other
CVE-2004-2399 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
358494 - phpgroupware phpgroupware Unknown "overflow" in the phpgw_config table for phpGroupWare before 0.9.14.002 has unknown attack vectors and impact. NVD-CWE-Other
CVE-2004-2406 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
358495 - phpgroupware phpgroupware Unknown vulnerability in phpGroupWare before 0.9.14.002 has unknown attack vectors and impact, related to a "security hole" in the Setup/Config functionality. NVD-CWE-Other
CVE-2004-2407 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
358496 - samhain_labs samhain Unknown vulnerability in sh_hash_compdata for Samhain 1.8.9 through 2.0.1 might allow attackers to cause a denial of service (null pointer dereference). NVD-CWE-Other
CVE-2004-2410 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
358497 - axis 2100_network_camera
2110_network_camera
2120_network_camera
2130_ptz_network_camera
230_mpeg2_video_server
2400_video_server
2401_video_server
2411_video_server
2420_network_c… 		Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to obtain sensitive information via direct requests to (1) admin/getparam.cgi, (2) admin/systemlog.cgi… NVD-CWE-Other
CVE-2004-2427 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
358498 - gnu gnubiff Unknown vulnerability in gnubiff 1.2.0 and earlier allows local users to obtain passwords, related to the password table. NVD-CWE-Other
CVE-2004-2459 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
358499 - securecomputing sidewinder_g2 Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (SMTP proxy failure) via unknown attack vendors involving an "extremely busy network." NOTE: … NVD-CWE-Other
CVE-2004-2545 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
358500 - phpgroupware phpgroupware PHP remote file inclusion vulnerability in tables_update.inc.php in phpGroupWare 0.9.14.005 and earlier allows remote attackers to execute arbitrary PHP code via an external URL in the appdir paramet… NVD-CWE-Other
CVE-2004-2573 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm