Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5941 5.3 警告
Network 		Zcash Foundation zebra-network
Zebra-chain
Zebrad 		Zcash FoundationのZebra-chain等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-44500 2026-05-11 11:04 2026-05-8 Show GitHub Exploit DB Packet Storm
5942 7.5 重要
Network 		The Tor Project Tor The Tor ProjectのTorにおける単一、固有のアクションの実施に関する脆弱性 CWE-837
単一、固有のアクションの不適切な実施 		CVE-2026-44601 2026-05-11 11:04 2026-05-7 Show GitHub Exploit DB Packet Storm
5943 7.5 重要
Network 		The Tor Project Tor The Tor ProjectのTorにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-44602 2026-05-11 11:04 2026-05-7 Show GitHub Exploit DB Packet Storm
5944 5.5 警告
Local 		Open Source Geospatial Foundation GDAL Open Source Geospatial FoundationのGDALにおける複数の脆弱性 CWE-119
CWE-125
CVE-2026-8084 2026-05-11 11:04 2026-05-7 Show GitHub Exploit DB Packet Storm
5945 7.8 重要
Local 		Open Source Geospatial Foundation GDAL Open Source Geospatial FoundationのGDALにおける複数の脆弱性 CWE-119
CWE-122
CVE-2026-8086 2026-05-11 11:04 2026-05-7 Show GitHub Exploit DB Packet Storm
5946 7.8 重要
Local 		Open Source Geospatial Foundation GDAL Open Source Geospatial FoundationのGDALにおける複数の脆弱性 CWE-119
CWE-122
CVE-2026-8087 2026-05-11 11:04 2026-05-7 Show GitHub Exploit DB Packet Storm
5947 5.5 警告
Local 		Open Source Geospatial Foundation GDAL Open Source Geospatial FoundationのGDALにおける複数の脆弱性 CWE-119
CWE-125
CVE-2026-8088 2026-05-11 11:03 2026-05-7 Show GitHub Exploit DB Packet Storm
5948 7.3 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-8090 2026-05-11 11:03 2026-05-7 Show GitHub Exploit DB Packet Storm
5949 7.8 重要
Local 		Forcepoint LLC. Next Generation Firewall (NGFW) Forcepoint LLC.のNext Generation Firewall (NGFW)における不要な特権による実行に関する脆弱性 CWE-250
CWE-noinfo
CVE-2025-12690 2026-05-11 11:03 2026-03-11 Show GitHub Exploit DB Packet Storm
5950 6.8 警告
Network 		vaadin Vaadin Vaadin Ltd.のVaadinにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-2741 2026-05-11 11:03 2026-03-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350081 - novell edirectory The dhost web service in Novell eDirectory 8.8.5 uses a predictable session cookie, which makes it easier for remote attackers to hijack sessions via a modified cookie. CWE-310
Cryptographic Issues 		CVE-2009-4655 2017-08-17 10:31 2010-02-27 Show GitHub Exploit DB Packet Storm
350082 - novell groupwise Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell GroupWise 7.0 before 7.03 HP4 and 8.0 before 8.0 SP1 allows remote attackers to inject arbitrary web script or HTML via t… CWE-79
Cross-site Scripting 		CVE-2009-4662 2017-08-17 10:31 2010-03-4 Show GitHub Exploit DB Packet Storm
350083 - fwbuilder firewall_builder Firewall Builder 3.0.4, 3.0.5, and 3.0.6, when running on Linux, allows local users to gain privileges via a symlink attack on an unspecified temporary file that is created by the iptables script. CWE-59
Link Following 		CVE-2009-4664 2017-08-17 10:31 2010-03-4 Show GitHub Exploit DB Packet Storm
350084 - winn winn_guestbook Cross-site scripting (XSS) vulnerability in index.php in Winn Guestbook 2.4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO. CWE-79
Cross-site Scripting 		CVE-2009-4678 2017-08-17 10:31 2010-03-9 Show GitHub Exploit DB Packet Storm
350085 - edgephp ezodiak Cross-site scripting (XSS) vulnerability in index.php in EZodiak allows remote attackers to inject arbitrary web script or HTML via the sign parameter. CWE-79
Cross-site Scripting 		CVE-2009-4684 2017-08-17 10:31 2010-03-11 Show GitHub Exploit DB Packet Storm
350086 - phpscriptsnow astrology Cross-site scripting (XSS) vulnerability in celebrities.php in PHP Scripts Now Astrology allows remote attackers to inject arbitrary web script or HTML via the day parameter. CWE-79
Cross-site Scripting 		CVE-2009-4685 2017-08-17 10:31 2010-03-11 Show GitHub Exploit DB Packet Storm
350087 - phplemon adquick Cross-site scripting (XSS) vulnerability in account.php in phplemon AdQuick 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the red_url parameter. CWE-79
Cross-site Scripting 		CVE-2009-4686 2017-08-17 10:31 2010-03-11 Show GitHub Exploit DB Packet Storm
350088 - yourfreeworld programs_rating_script Multiple cross-site scripting (XSS) vulnerabilities in YourFreeWorld Programs Rating Script allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) rate.php and (2) … CWE-79
Cross-site Scripting 		CVE-2009-4690 2017-08-17 10:31 2010-03-11 Show GitHub Exploit DB Packet Storm
350089 - radscripts radlance Cross-site scripting (XSS) vulnerability in index.php in RadScripts RadLance Gold 7.5 allows remote attackers to inject arbitrary web script or HTML via the fid parameter in a view_forum action. NOT… CWE-79
Cross-site Scripting 		CVE-2009-4694 2017-08-17 10:31 2010-03-11 Show GitHub Exploit DB Packet Storm
350090 - phpscriptsnow real_time_currency_exchange Cross-site scripting (XSS) vulnerability in rates.php in Real Time Currency Exchange allows remote attackers to inject arbitrary web script or HTML via the Amount parameter. CWE-79
Cross-site Scripting 		CVE-2009-4715 2017-08-17 10:31 2010-03-16 Show GitHub Exploit DB Packet Storm