Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1511	8.8	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-3560	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

1512	8	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-3561	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

1513	8.8	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-3562	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

1514	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-3689	2026-04-30 12:29	2026-04-11	Show	GitHub Exploit DB Packet Storm

1515	7.4	重要 Network	OpenClaw	OpenClaw	OpenClawにおける認証時の IP アドレスへの依存に関する脆弱性	CWE-291 認証時の IP アドレスへの依存	CVE-2026-3690	2026-04-30 12:29	2026-04-11	Show	GitHub Exploit DB Packet Storm

1516	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-3691	2026-04-30 12:29	2026-04-11	Show	GitHub Exploit DB Packet Storm

1517	7.3	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	w30e ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-38834	2026-04-30 12:29	2026-04-21	Show	GitHub Exploit DB Packet Storm

1518	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	w30e ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-38835	2026-04-30 12:29	2026-04-21	Show	GitHub Exploit DB Packet Storm

1519	5.4	警告 Network	pyLoad	pyLoad	pyLoadにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40071	2026-04-30 12:29	2026-04-9	Show	GitHub Exploit DB Packet Storm

1520	6.5	警告 Network	getkirby	kirby	getkirbyのkirbyにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40099	2026-04-30 12:29	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346851	-	leafnode	leafnode	fetchnews in leafnode 1.9.48 to 1.11.1 allows remote NNTP servers to cause a denial of service (crash) by closing the connection while fetchnews is reading (1) an article header or (2) an article bod…	NVD-CWE-Other	CVE-2005-1453	2011-03-8 11:22	2005-05-5	Show	GitHub Exploit DB Packet Storm

346852	-	cisco	firewall_services_module	Unknown vulnerability in Cisco Firewall Services Module (FWSM) 2.3.1 and earlier, when using URL, FTP, or HTTPS filtering exceptions, allows certain TCP packets to bypass access control lists (ACLs).	NVD-CWE-Other	CVE-2005-1517	2011-03-8 11:22	2005-05-11	Show	GitHub Exploit DB Packet Storm

346853	-	apple	quicktime	Apple QuickTime Player 7.0 on Mac OS X 10.4 allows remote attackers to obtain sensitive information via a .mov file with a Quartz Composer composition (.qtz) file that uses certain patches to read lo…	NVD-CWE-Other	CVE-2005-1579	2011-03-8 11:22	2005-05-12	Show	GitHub Exploit DB Packet Storm

346854	-	niteenterprises	remote_file_manager	NiteEnterprises Remote File Manager 1.0 allows remote attackers to cause a denial of service (crash) via a crafted string to TCP port 7080.	NVD-CWE-Other	CVE-2005-1603	2011-03-8 11:22	2005-05-16	Show	GitHub Exploit DB Packet Storm

346855	-	woltlab	burning_board	SQL injection vulnerability in the verify_email function in Woltlab Burning Board 2.x and earlier allows remote attackers to execute arbitrary SQL commands via the $email variable.	NVD-CWE-Other	CVE-2005-1642	2011-03-8 11:22	2005-05-17	Show	GitHub Exploit DB Packet Storm

346856	-	fastream	netfile_ftp_web_server	The default installation of Fastream NETFile FTP/Web Server 7.4.6, which supports FXP, does not require that the IP address in a PORT command be the same as the IP of the logged in user, which allows…	NVD-CWE-Other	CVE-2005-1646	2011-03-8 11:22	2005-05-18	Show	GitHub Exploit DB Packet Storm

346857	-	gentoo	linux_webapp-config	The fn_show_postinst function in Gentoo webapp-config before 1.10-r14 allows local users to overwrite arbitrary files via a symlink attack on the postinst.txt temporary file.	NVD-CWE-Other	CVE-2005-1707	2011-03-8 11:22	2005-05-24	Show	GitHub Exploit DB Packet Storm

346858	-	bluecoat	reporter	Unknown vulnerability in Blue Coat Reporter before 7.1.2 allows remote unauthenticated attackers to add a license.	NVD-CWE-Other	CVE-2005-1709	2011-03-8 11:22	2005-05-24	Show	GitHub Exploit DB Packet Storm

346859	-	netwin	surgemail	Cross-site scripting (XSS) vulnerability in NetWin SurgeMail 3.0c2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.	NVD-CWE-Other	CVE-2005-1714	2011-03-8 11:22	2005-05-24	Show	GitHub Exploit DB Packet Storm

346860	-	novell	imanager	Multiple vulnerabilities in the OpenSSL ASN.1 parser, as used in Novell iManager 2.0.2, allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted packets, as demonst…	NVD-CWE-Other	CVE-2005-1730	2011-03-8 11:22	2005-12-31	Show	GitHub Exploit DB Packet Storm