Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
771	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Microsoft Word Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40366	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

772	8.4	重要 Local	マイクロソフト	Microsoft Office Office Long Term Servicing Channel (LTSC) Microsoft 365 Apps Microsoft SharePoint Server Microsoft Word	Microsoft Word のリモートでコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-40367	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

773	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40418	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

774	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40419	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

775	8.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-40420	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

776	5.8	警告 Network	traefik	traefik	traefikにおける送信データへの重要な情報の挿入に関する脆弱性	CWE-201 送信データへの重要な情報の挿入	CVE-2026-41181	2026-05-21 10:52	2026-05-15	Show	GitHub Exploit DB Packet Storm

777	7.5	重要 Network	DHTMLX	PDF Export Module	DHTMLXのPDF Export Moduleにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41552	2026-05-21 10:52	2026-05-15	Show	GitHub Exploit DB Packet Storm

778	9.1	緊急 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-41919	2026-05-21 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

779	9.1	緊急 Network	LangGenius, Inc.	Dify	LangGenius, Inc.のDifyにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-41947	2026-05-21 10:52	2026-05-18	Show	GitHub Exploit DB Packet Storm

780	9.4	緊急 Network	LangGenius, Inc.	Dify	LangGenius, Inc.のDifyにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-41948	2026-05-21 10:52	2026-05-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345511	-	compex	netpassage_wpe54g	uConfig agent in Compex NetPassage WPE54G router allows remote attackers to cause a denial of service (unresposiveness) via crafted datagrams to UDP port 7778.	NVD-CWE-Other	CVE-2006-0960	2017-07-20 10:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345512	-	battleaxe_software	bttlxeforum	Cross-site scripting (XSS) vulnerability in failure.asp in Battleaxe bttlxeForum 2.0 allows remote attackers to inject arbitrary web script or HTML via the err_txt parameter.	NVD-CWE-Other	CVE-2006-0974	2017-07-20 10:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345513	-	battleaxe_software	bttlxeforum	This vulnerability affects Battleaxe Software, bttlxeForum versions 2.0 and previous	NVD-CWE-Other	CVE-2006-0974	2017-07-20 10:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345514	-	nidelven_it	issue_dealer	Unspecified vulnerability in the local weblog publisher in Nidelven IT Issue Dealer before 0.9.96 has unknown impact and attack vectors.	NVD-CWE-Other	CVE-2006-0979	2017-07-20 10:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345515	-	nidelven_it	issue_dealer	This vulnerability affects Nidelven IT, Issue Dealer versions 0.9.95 and previous.	NVD-CWE-Other	CVE-2006-0979	2017-07-20 10:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345516	-	emc_dantz	retrospect	EMC Dantz Retrospect 7 backup client 7.0.107, and other versions before 7.0.109, and 6.5 before 6.5.138 allows remote attackers to cause a denial of service (client termination and loss of backup ser…	NVD-CWE-Other	CVE-2006-0995	2017-07-20 10:30	2006-03-4	Show	GitHub Exploit DB Packet Storm

345517	-	emc_dantz	retrospect	This vulnerability affects EMC Dantz, Retrospect versions 7.0.x (all 7.0.x versions previous to 7.0.109) as well as versions 6.5.x (all 6.5.x versions previous to 6.5.138)	NVD-CWE-Other	CVE-2006-0995	2017-07-20 10:30	2006-03-4	Show	GitHub Exploit DB Packet Storm

345518	-	netgear	wgt624	The backup configuration option in NETGEAR WGT624 Wireless Firewall Router stores sensitive information in cleartext, which allows remote attackers to obtain passwords and gain privileges.	NVD-CWE-Other	CVE-2006-1003	2017-07-20 10:30	2006-03-7	Show	GitHub Exploit DB Packet Storm

345519	-	cactusoft	parodia	Cross-site scripting (XSS) vulnerability in agencyprofile.asp in Parodia 6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the AG_ID parameter. NOTE: the provenance …	NVD-CWE-Other	CVE-2006-1004	2017-07-20 10:30	2006-03-7	Show	GitHub Exploit DB Packet Storm

345520	-	sendcard	sendcard	Multiple SQL injection vulnerabilities in sendcard.php in sendcard before 3.3.0 allow remote attackers to execute arbitrary SQL commands via unspecified parameters.	CWE-89 SQL Injection	CVE-2006-1006	2017-07-20 10:30	2006-03-7	Show	GitHub Exploit DB Packet Storm