Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
61	7.3	重要 Network	yeti-platform	yeti	yeti-platformのyetiにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2024-46507	2026-05-11 11:13	2026-05-8	Show	GitHub Exploit DB Packet Storm

62	7.5	重要 Network	yeti-platform	yeti	yeti-platformのyetiにおけるハードコードされた認証情報の使用に関する脆弱性 New	CWE-798 ハードコードされた認証情報の使用	CVE-2024-46508	2026-05-11 11:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

63	9.8	緊急 Network	Frappe	ERPNext	FrappeのERPNextにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-38431	2026-05-11 11:12	2026-05-5	Show	GitHub Exploit DB Packet Storm

64	6.1	警告 Network	Frappe	ERPNext	FrappeのERPNextにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-38432	2026-05-11 11:12	2026-05-5	Show	GitHub Exploit DB Packet Storm

65	9.1	緊急 Network	CHORNY	Apache::Session	CHORNYのApache::Sessionにおける有効期限後または解放後のリソースの操作に関する脆弱性 New	CWE-672 有効期限後または解放後のリソースの操作	CVE-2013-10075	2026-05-11 11:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

66	9.8	緊急 Network	PHPOffice	PhpSpreadsheet	PHPOfficeのPhpSpreadsheetにおける複数の脆弱性 New	CWE-502 CWE-918	CVE-2026-34084	2026-05-11 11:12	2026-05-5	Show	GitHub Exploit DB Packet Storm

67	5.4	警告 Network	PHPOffice	PhpSpreadsheet	PHPOfficeのPhpSpreadsheetにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-35453	2026-05-11 11:12	2026-05-5	Show	GitHub Exploit DB Packet Storm

68	9.1	緊急 Network	Zcash Foundation	Zebra-script Zebrad	Zcash FoundationのZebra-script等の複数製品における呼び出し元による仕様の不適切な準拠に関する脆弱性 New	CWE-573 呼び出し元による仕様の不適切な準拠	CVE-2026-41583	2026-05-11 11:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

69	6.5	警告 Network	Zcash Foundation	zebra-rpc Zebrad	Zcash Foundationのzebra-rpc等の複数製品における複数の脆弱性 New	CWE-248 CWE-617	CVE-2026-41585	2026-05-11 11:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

70	9.1	緊急 Network	Zcash Foundation	Zebra-script Zebrad	Zcash FoundationのZebra-script等の複数製品におけるデジタル署名の検証に関する脆弱性 New	CWE-347 デジタル署名の不適切な検証	CVE-2026-44497	2026-05-11 11:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346831	-	jbb	jbb	Multiple SQL injection vulnerabilities in Joels Bulletin board (JBB) 0.9.9rc3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) nr parameter in topiczeigen.php, (2) for…	NVD-CWE-Other	CVE-2005-3871	2011-03-8 11:27	2005-11-29	Show	GitHub Exploit DB Packet Storm

346832	-	ugroup	ugroup	Multiple SQL injection vulnerabilities in Ugroup 2.6.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) FORUM_ID parameter in forum.php, and the (2) TOPIC_ID, (3) FORU…	NVD-CWE-Other	CVE-2005-3872	2011-03-8 11:27	2005-11-29	Show	GitHub Exploit DB Packet Storm

346833	-	sourceshock	shockboard	SQL injection vulnerability in topic.php in ShockBoard 3.0 and 4.0 allows remote attackers to execute arbitrary SQL commands via the offset parameter.	NVD-CWE-Other	CVE-2005-3873	2011-03-8 11:27	2005-11-29	Show	GitHub Exploit DB Packet Storm

346834	-	weaverslave	netzbrett	SQL injection vulnerability in netzbr.php in Netzbrett 1.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the p_entry parameter in an entry command to index.php.	NVD-CWE-Other	CVE-2005-3874	2011-03-8 11:27	2005-11-29	Show	GitHub Exploit DB Packet Storm

346835	-	enterprise_heart	enterprise_connector	Multiple SQL injection vulnerabilities in Enterprise Connector 1.0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the messageid parameter in (1) send.php or (2) a delete a…	NVD-CWE-Other	CVE-2005-3875	2011-03-8 11:27	2005-11-29	Show	GitHub Exploit DB Packet Storm

346836	-	td-systems	adc2000_ng_pro adc2000_ng_pro_lite	Multiple SQL injection vulnerabilities in adcbrowres.php in AD Center ADC2000 NG Pro 1.2 and NG Pro Lite allow remote attackers to execute arbitrary SQL commands via the (1) cat and (2) lang paramete…	NVD-CWE-Other	CVE-2005-3876	2011-03-8 11:27	2005-11-29	Show	GitHub Exploit DB Packet Storm

346837	-	alex_king	php_doc_system	Directory traversal vulnerability in index.php in PHP Doc System 1.5.1 and earlier allows remote attackers to access or include arbitrary files via a .. (dot dot) in the show parameter.	NVD-CWE-Other	CVE-2005-3878	2011-03-8 11:27	2005-11-29	Show	GitHub Exploit DB Packet Storm

346838	-	omnistar_interactive	omnistar_kbase	Multiple SQL injection vulnerabilities in Omnistar KBase 4.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) article_id parameter in users/comments.php, (2) category_…	NVD-CWE-Other	CVE-2005-3880	2011-03-8 11:27	2005-11-29	Show	GitHub Exploit DB Packet Storm

346839	-	faqsystems	faqring_knowledge_base_software	SQL injection vulnerability in answer.php in FAQSystems FAQRing Knowledge Base Software 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2005-3882	2011-03-8 11:27	2005-11-29	Show	GitHub Exploit DB Packet Storm

346840	-	-	-	Unspecified vulnerability in Cisco Security Agent (CSA) 4.5.0 and 4.5.1 agents, when running on Windows systems, allows local users to bypass protections and gain system privileges by executing certa…	NVD-CWE-Other	CVE-2005-3886	2011-03-8 11:27	2005-11-30	Show	GitHub Exploit DB Packet Storm