Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 4:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1901	7.2	重要 Network	citeum	opencti	citeumのopenctiにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-44730	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1902	5.3	警告 Network	Hedera	Guardian	HederaのGuardianにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-45248	2026-05-29 11:16	2026-05-14	Show	GitHub Exploit DB Packet Storm

1903	8.1	重要 Network	Apache Software Foundation	apache-airflow-providers-google	Apache Software Foundationのapache-airflow-providers-googleにおけるエンティティ認証のない鍵交換に関する脆弱性	CWE-322 エンティティ認証のない鍵交換	CVE-2026-45361	2026-05-29 11:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

1904	8.8	重要 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint のリモートコードが実行される脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-45659	2026-05-29 11:16	2026-05-22	Show	GitHub Exploit DB Packet Storm

1905	9.9	緊急 Network	Twenty.com PBC	Twenty	Twenty.com PBCのTwentyにおける複数の脆弱性	CWE-78 CWE-89	CVE-2026-46624	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1906	5.3	警告 Network	Apache Software Foundation	apache-airflow-providers-fab	Apache Software Foundationのapache-airflow-providers-fabにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-46745	2026-05-29 11:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

1907	9.8	緊急 Network	マイクロソフト	Azure Resource Manager	Azure Resource Manager の特権昇格の脆弱性	CWE-287 CWE-noinfo	CVE-2026-47280	2026-05-29 11:16	2026-05-22	Show	GitHub Exploit DB Packet Storm

1908	8.2	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-4868	2026-05-29 11:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

1909	6.5	警告 Network	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-48684	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1910	6.5	警告 Network	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおけるレングスパラメーターの不整合による処理に関する脆弱性	CWE-130 レングスパラメーターの不整合による不適切な処理	CVE-2026-48685	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354751	-	flatnuke	flatnuke	Directory traversal vulnerability in thumb.php in FlatNuke 2.5.3 allows remote attackers to read arbitrary images or obtain the installation path via the image parameter.	NVD-CWE-Other	CVE-2005-1896	2011-03-8 11:23	2005-06-9	Show	GitHub Exploit DB Packet Storm

354752	-	log4sh	log4sh	The log4sh_readProperties function in log4sh 1.2.5 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable log4sh.$$ filenames.	NVD-CWE-Other	CVE-2005-1915	2011-03-8 11:23	2005-09-3	Show	GitHub Exploit DB Packet Storm

354753	-	trend_micro	serverprotect	Directory traversal vulnerability in the Crystal Report component (rptserver.asp) in Trend Micro ServerProtect Management Console 5.58, as used in Control Manager 2.5 and 3.0 and Damage Cleanup Serve…	NVD-CWE-Other	CVE-2005-1930	2011-03-8 11:23	2005-12-15	Show	GitHub Exploit DB Packet Storm

354754	-	3com	3c15100d	Directory traversal vulnerability in the web server for 3Com Network Supervisor 5.0.2 allows remote attackers to read arbitrary files via ".." sequences in the URL to TCP port 21700.	NVD-CWE-Other	CVE-2005-2020	2011-03-8 11:23	2005-09-8	Show	GitHub Exploit DB Packet Storm

354755	-	sun	iplanet_messaging_server one_messaging_server	Unknown vulnerability in Webmail in iPlanet Messaging Server 5.2 Patch 1 and Sun ONE Messaging Server 6.2 allows remote attackers to execute arbitrary Javascript, possibly due to a cross-site scripti…	NVD-CWE-noinfo CWE-79 Cross-site Scripting	CVE-2005-2022	2011-03-8 11:23	2005-06-17	Show	GitHub Exploit DB Packet Storm

354756	-	-	-	Multiple SQL injection vulnerabilities in Fortibus CMS 4.0.0 allow remote attackers to execute arbitrary SQL commands via (1) the username or password to logon.asp, (2) WeeklyNotesDisplay.asp, or (3)…	NVD-CWE-Other	CVE-2005-2037	2011-03-8 11:23	2005-06-21	Show	GitHub Exploit DB Packet Storm

354757	-	hp	version_control_repository_manager	HP Version Control Repository Manager (VCRM) before 2.1.1.730 does not properly handle the "@" character in a proxy password, which could allow attackers with physical access to obtain portions of th…	NVD-CWE-Other	CVE-2005-2076	2011-03-8 11:23	2005-06-29	Show	GitHub Exploit DB Packet Storm

354758	-	pavsta	pavsta_auto_site	PHP remote file inclusion vulnerability in user_check.php for Pavsta Auto Site allows remote attackers to execute arbitrary PHP code via the sitepath parameter.	NVD-CWE-Other	CVE-2005-2139	2011-03-8 11:23	2005-07-5	Show	GitHub Exploit DB Packet Storm

354759	-	the_cacti_group	cacti	config.php in Cacti 0.8.6e and earlier allows remote attackers to set the no_http_headers switch, then modify session information to gain privileges and disable the use of addslashes to conduct SQL i…	NVD-CWE-Other	CVE-2005-2149	2011-03-8 11:23	2005-07-6	Show	GitHub Exploit DB Packet Storm

354760	-	nabocorp	nabopoll	PHP remote file inclusion vulnerability in survey.inc.php for nabopoll 1.2 allows remote attackers to execute arbitrary PHP code via the path parameter.	NVD-CWE-Other	CVE-2005-2157	2011-03-8 11:23	2005-07-6	Show	GitHub Exploit DB Packet Storm