Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
881	4.3	警告 Network	GLPI-PROJECT.ORG	GLPI	GLPI-PROJECT.ORGのGLPIにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-32312	2026-05-25 10:23	2026-05-19	Show	GitHub Exploit DB Packet Storm

882	7.8	重要 Local	mullvad	mullvad vpn	mullvadのmullvad vpnにおける複数の脆弱性	CWE-269 CWE-345 CWE-427 CWE-noinfo	CVE-2026-32323	2026-05-25 10:23	2026-05-19	Show	GitHub Exploit DB Packet Storm

883	6.5	警告 Network	Faraday Project	Faraday	Faraday ProjectのFaradayにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-33637	2026-05-25 10:22	2026-05-19	Show	GitHub Exploit DB Packet Storm

884	8.8	重要 Local	FreeBSD	FreeBSD	FreeBSDにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-39461	2026-05-25 10:22	2026-05-21	Show	GitHub Exploit DB Packet Storm

885	6.5	警告 Network	plane	plane	planeにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-40102	2026-05-25 10:22	2026-05-20	Show	GitHub Exploit DB Packet Storm

886	7.5	重要 Network	マイクロソフト	Microsoft Entra ID	Microsoft Entra ID のスプーフィングの脆弱性	CWE-200 情報漏えい	CVE-2026-40379	2026-05-25 10:22	2026-05-12	Show	GitHub Exploit DB Packet Storm

887	4.3	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-4055	2026-05-25 10:22	2026-05-21	Show	GitHub Exploit DB Packet Storm

888	7.8	重要 Local	Samba Project	rsync	Samba Projectのrsyncにおけるレングスパラメーターの不整合による処理に関する脆弱性	CWE-130 レングスパラメーターの不整合による不適切な処理	CVE-2026-41035	2026-05-25 10:22	2026-04-16	Show	GitHub Exploit DB Packet Storm

889	9.8	緊急 Network	NASA	F Prime	NASAのF Primeにおける複数の脆弱性	CWE-190 CWE-787	CVE-2026-41144	2026-05-25 10:22	2026-04-22	Show	GitHub Exploit DB Packet Storm

890	7.8	重要 Local	DevSpace	DevSpace	DevSpaceにおける複数の脆弱性	CWE-200 CWE-306	CVE-2026-42283	2026-05-25 10:22	2026-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345391	-	ipostmx	ipostmx_2005	Multiple SQL injection vulnerabilities in iPostMX 2005 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) forum parameter in messagepost.cfm and (2) topic parameter …	NVD-CWE-Other	CVE-2006-3096	2017-07-21 10:29	2006-06-20	Show	GitHub Exploit DB Packet Storm

345392	-	ssh	tectia_client tectia_connector tectia_manager tectia_server	Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when runnin…	NVD-CWE-Other	CVE-2006-4315	2017-07-20 10:33	2006-08-24	Show	GitHub Exploit DB Packet Storm

345393	-	ssh	tectia_manager	SSH Tectia Management Agent 2.1.2 allows local users to gain root privileges by running a program called sshd, which is obtained from a process listing when the "Restart" action is selected from the …	NVD-CWE-Other	CVE-2006-4316	2017-07-20 10:33	2006-08-24	Show	GitHub Exploit DB Packet Storm

345394	-	justsystem	formliner ichitaro ichitaro_government	Stack-based buffer overflow in Justsystem Ichitaro 9.x through 13.x, Ichitaro 2004, 2005, 2006, and Government 2006; Ichitaro for Linux; and FormLiner before 20060818 allows remote attackers to execu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2006-4326	2017-07-20 10:33	2006-08-24	Show	GitHub Exploit DB Packet Storm

345395	-	wireshark	wireshark	Unspecified vulnerability in the DHCP dissector in Wireshark (formerly Ethereal) 0.10.13 through 0.99.2, when run on Windows, allows remote attackers to cause a denial of service (crash) via unspecif…	NVD-CWE-Other	CVE-2006-4332	2017-07-20 10:33	2006-08-25	Show	GitHub Exploit DB Packet Storm

345396	-	jiran	cool_manager cool_messenger_office_school_server	SQL injection vulnerability in user logon authentication request handling in Cool_CoolD.exe in Cool Manager 5.0 (5,60,90,28) and Cool Messenger Office/School Server 5.5 (5,65,12,13) allows remote att…	NVD-CWE-Other	CVE-2006-4347	2017-07-20 10:33	2006-08-25	Show	GitHub Exploit DB Packet Storm

345397	-	sun	java_system_content_delivery_server	Unspecified vulnerability in Sun Java System Content Delivery Server 4.0, 4.1, and 5.0 allows local and remote attackers to read data from arbitrary files via unspecified vectors.	NVD-CWE-Other	CVE-2006-4353	2017-07-20 10:33	2006-08-25	Show	GitHub Exploit DB Packet Storm

345398	-	drupal	drupal_easylinks_module	Cross-site scripting (XSS) vulnerability in Drupal Easylinks Module (easylinks.module) 4.7 before 1.5.2.1 2006/08/19 12:02:27 allows remote attackers to inject arbitrary web script or HTML via unspec…	NVD-CWE-Other	CVE-2006-4355	2017-07-20 10:33	2006-08-27	Show	GitHub Exploit DB Packet Storm

345399	-	drupal	drupal_easylinks_module	SQL injection vulnerability in Drupal Easylinks Module (easylinks.module) 4.7 before 1.5.2.1 2006/08/19 12:02:27 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	NVD-CWE-Other	CVE-2006-4356	2017-07-20 10:33	2006-08-27	Show	GitHub Exploit DB Packet Storm

345400	-	dieselscripts	diesel_pay	Cross-site scripting (XSS) vulnerability in index.php in Diesel Pay allows remote attackers to inject arbitrary web script or HTML via the read parameter.	NVD-CWE-Other	CVE-2006-4358	2017-07-20 10:33	2006-08-27	Show	GitHub Exploit DB Packet Storm