Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1041	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Win32k の特権の昇格の脆弱性	CWE-190 CWE-416	CVE-2026-34333	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1042	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP の特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-34334	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1043	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows DWM Core ライブラリの情報漏えいの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-34336	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1044	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性	CWE-362 CWE-416	CVE-2026-34337	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1045	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows テレフォニーサービスの特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34338	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1046	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows ライトウェイトディレクトリアクセスプロトコル (LDAP) のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-34339	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1047	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Projected File System の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34340	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1048	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Link-Layer Discovery Protocol (LLDP) の特権昇格の脆弱性	CWE-415 二重解放	CVE-2026-34341	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1049	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows 印刷スプーラーの特権の昇格の脆弱性	CWE-362 競合状態	CVE-2026-34342	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1050	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows アプリケーション ID (AppID) のサブシステムの特権昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34343	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345581	-	-	-	Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) Preview Release 2 allow remote attackers to execute arbitrary SQL commands via the (1) fid parameter to misc.php or (2) Content-Dispos…	NVD-CWE-Other	CVE-2005-2888	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm

345582	-	secureol	ve2	SecureOL VE2 1.05.1008 does not properly restrict public access to physical memory, which allows local users to bypass intended restrictions and gain access to the secured environment via direct acce…	NVD-CWE-Other	CVE-2005-2890	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm

345583	-	csystems	webarchivex	WebArchiveX.dll 5.5.0.76 installed before September 6th, 2005 is marked safe for scripting by default, which allows remote attackers to read or write to arbitrary files via the (1) MakeArchive or (2)…	NVD-CWE-Other	CVE-2005-2891	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm

345584	-	pblang	pblang	Directory traversal vulnerability in setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote attackers to read arbitrary files via ".." sequences and "%00" (trailing null byte) in …	NVD-CWE-Other	CVE-2005-2892	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm

345585	-	pblang	pblang	Direct static code injection vulnerability in setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via the username (u parameter), which …	NVD-CWE-Other	CVE-2005-2893	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm

345586	-	pblang	pblang	Cross-site scripting (XSS) vulnerability in the user registration in PBLang 4.65, and possibly earlier versions, allows remote attackers to inject arbitrary web script or PHP via the location field.	NVD-CWE-Other	CVE-2005-2894	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm

345587	-	pblang	pblang	setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote attackers to obtain sensitive information via a %00 (a null byte) in the u parameter, which reveals the path in an error mes…	NVD-CWE-Other	CVE-2005-2895	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm

345588	-	stylemotion	web_news	SQL injection vulnerability in WEB//NEWS 1.4 allows remote attackers to execute arbitrary SQL commands via the (1) wn_userpw parameter to startup.php, (2) cat, (3) id, or (4) stof parameter to news.p…	NVD-CWE-Other	CVE-2005-2896	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm

345589	-	-	-	SQL injection vulnerability in class-1 Forum Software 0.24.4 allows remote attackers to execute arbitrary SQL commands and bypass the file extension check via SQL code in the file extension of an upl…	NVD-CWE-Other	CVE-2005-2902	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm

345590	-	eset_software	nod32_antivirus	Heap-based buffer overflow in NOD32 2.5 with nod32.002 1.033 build 1127, with active scanning enabled, allows remote attackers to execute arbitrary code via an ARJ archive containing a file with a lo…	NVD-CWE-Other	CVE-2005-2903	2017-07-11 10:33	2005-09-15	Show	GitHub Exploit DB Packet Storm