Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1851 2.7
Network 		GTranslate Inc. Gtranslate GTranslate Inc.のGtranslateにおける不変と仮定されるデータの変更に関する脆弱性 CWE-471
不変と仮定されるデータの変更 		CVE-2026-8492 2026-05-29 11:19 2026-05-19 Show GitHub Exploit DB Packet Storm
1852 5.4 警告
Network 		Colorbox Inline Project Colorbox Inline Colorbox Inline ProjectのColorbox Inlineにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-8493 2026-05-29 11:19 2026-05-19 Show GitHub Exploit DB Packet Storm
1853 9.8 緊急
Network 		Date iCal Project Date iCal Date iCal ProjectのDate iCalにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-8495 2026-05-29 11:19 2026-05-19 Show GitHub Exploit DB Packet Storm
1854 7.5 重要
Network 		Archive::Tar project Archive::Tar Archive::Tar projectのArchive::Tarにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-9538 2026-05-29 11:19 2026-05-26 Show GitHub Exploit DB Packet Storm
1855 9.8 緊急
Network 		Dolibarr ERP & CRM dolibarr erp/crm Dolibarr ERP & CRMのdolibarr erp/crmにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2018-25357 2026-05-29 11:19 2026-05-23 Show GitHub Exploit DB Packet Storm
1856 6.1 警告
Network 		Moodle Moodle Moodleにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2022-50943 2026-05-29 11:19 2026-05-10 Show GitHub Exploit DB Packet Storm
1857 4.3 警告
Network 		WSO2 WSO2 Identity Server
Identity Server as Key Manager
WSO2 Open Banking IAM 		WSO2のWSO2 Identity Server等の複数製品におけるリクエストに対するレスポンス内容の違いに起因する情報漏えいに関する脆弱性 CWE-204
リクエストに対するレスポンス内容の違いに起因する情報漏えい 		CVE-2024-0391 2026-05-29 11:19 2026-05-11 Show GitHub Exploit DB Packet Storm
1858 8.6 重要
Network 		WSO2 WSO2 Identity Server WSO2のWSO2 Identity Serverにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-10470 2026-05-29 11:19 2026-05-11 Show GitHub Exploit DB Packet Storm
1859 7.3 重要
Network 		WSO2 WSO2 Identity Server WSO2のWSO2 Identity Serverにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2025-10908 2026-05-29 11:18 2026-05-11 Show GitHub Exploit DB Packet Storm
1860 5.5 警告
Local 		IBM IBM DB2 IBMのIBM DB2におけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2025-13755 2026-05-29 11:18 2026-05-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344791 - realnetworks realone_player
realplayer 		Directory traversal vulnerability in the parsing of Skin file names in RealPlayer 10.5 (6.0.12.1040) and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in an RJS filename. NVD-CWE-Other
CVE-2005-0192 2017-12-13 02:17 2004-10-6 Show GitHub Exploit DB Packet Storm
344792 - ibm lotus_domino
lotus_notes_client 		Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authenticati… NVD-CWE-Other
CVE-2003-0122 2017-12-13 02:05 2003-03-18 Show GitHub Exploit DB Packet Storm
344793 - puppet puppet Puppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/daemonout, (2) /tmp/puppetdoc.txt, (3) /tmp/puppetdoc.tex, or… CWE-59
Link Following 		CVE-2010-0156 2017-12-9 11:29 2010-03-4 Show GitHub Exploit DB Packet Storm
344794 - ipswitch whatsup_professional NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain sensitive information about network nodes via a modified … CWE-200
Information Exposure 		CVE-2006-2356 2017-12-5 03:58 2006-05-15 Show GitHub Exploit DB Packet Storm
344795 - orionserver orion_application_server Orion Application Server 1.5.3, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a reque… NVD-CWE-Other
CVE-2002-1859 2017-11-30 23:02 2002-12-31 Show GitHub Exploit DB Packet Storm
344796 - orionserver orion_application_server Cross-site scripting (XSS) vulnerability in Orion 1.3.8 and 1.4.5 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly quoted in the resulting 404 error p… CWE-79
Cross-site Scripting 		CVE-2005-2981 2017-11-30 23:01 2005-09-20 Show GitHub Exploit DB Packet Storm
344797 - ibm lotus_domino
lotus_notes_client 		Buffer overflow in Web Retriever client for Lotus Notes/Domino R4.5 through R6 allows remote malicious web servers to cause a denial of service (crash) via a long HTTP status line. NVD-CWE-Other
CVE-2003-0123 2017-11-22 23:04 2003-03-18 Show GitHub Exploit DB Packet Storm
344798 - microsoft windows_2000
windows_xp 		Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash… NVD-CWE-Other
CVE-2002-2132 2017-11-22 04:26 2002-12-31 Show GitHub Exploit DB Packet Storm
344799 - apple appleshare_mail_server Buffer overflow in Apple AppleShare Mail Server 5.0.3 on MacOS 8.1 and earlier allows a remote attacker to cause a denial of service (crash) via a long HELO command. NVD-CWE-Other
CVE-1999-1015 2017-11-22 04:16 1998-04-8 Show GitHub Exploit DB Packet Storm
344800 - realnetworks helix_player
realone_player
realplayer 		Heap-based buffer overflow in RealPlayer 10 and earlier, Helix Player before 10.0.4, and RealOne Player v1 and v2 allows remote attackers to execute arbitrary code via a long hostname in a RAM file. NVD-CWE-Other
CVE-2005-0755 2017-11-21 23:13 2005-04-19 Show GitHub Exploit DB Packet Storm