Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207701	5.4	警告	シスコシステムズ	-	Cisco uBR10000 デバイス上で稼働する PRE モジュールの Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2015-4203	2015-06-24 16:35	2015-06-22	Show	GitHub Exploit DB Packet Storm

207702	7.8	危険	シスコシステムズ	-	Cisco uBR10000 デバイス上で稼働する PRE モジュールの Cisco IOS の IPv6-to-IPv4 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-4200	2015-06-24 16:35	2015-06-22	Show	GitHub Exploit DB Packet Storm

207703	6.8	警告	シスコシステムズ	-	Cisco Data Center Analytics Framework におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-4189	2015-06-24 16:35	2015-06-22	Show	GitHub Exploit DB Packet Storm

207704	6.8	警告	Alcatel-Lucent	-	Alcatel-Lucent CellPipe 7130 RG 5Ae.M2013 HOL のファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-4586	2015-06-24 14:34	2015-06-16	Show	GitHub Exploit DB Packet Storm

207705	4.3	警告	Drupal Debian	-	Drupal の OpenID モジュールにおける他のユーザのアカウントにログインされる脆弱性	CWE-20 不適切な入力確認	CVE-2015-3234	2015-06-24 14:09	2015-06-17	Show	GitHub Exploit DB Packet Storm

207706	5.8	警告	Drupal Debian	-	Drupal の Field UI モジュールにおけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2015-3232	2015-06-24 14:09	2015-06-17	Show	GitHub Exploit DB Packet Storm

207707	4	警告	Drupal Debian	-	Drupal の Render キャッシュシステムにおけるプライベートなコンテンツを取得される脆弱性	CWE-200 情報漏えい	CVE-2015-3231	2015-06-24 14:09	2015-06-17	Show	GitHub Exploit DB Packet Storm

207708	4.3	警告	Dream Property GmbH	-	DreamBox DM500-S におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-4714	2015-06-24 12:14	2015-06-9	Show	GitHub Exploit DB Packet Storm

207709	6.5	警告	ApPHP	-	ApPHP Hotel Site における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-4713	2015-06-24 12:06	2015-06-19	Show	GitHub Exploit DB Packet Storm

207710	5	警告	Benoit Blanchon	-	Arduino JSON の Internals/QuotedString.cpp の extractFrom 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-4590	2015-06-24 12:02	2015-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
41	5.3	MEDIUM Network	-	-	Out-of-bounds Read vulnerability in mod_proxy_ajp of Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the… New	CWE-125 Out-of-bounds Read	CVE-2026-33857	2026-05-5 03:16	2026-05-4	Show	GitHub Exploit DB Packet Storm

42	6.5	MEDIUM Network	-	-	HTTP response splitting vulnerability in multiple Apache HTTP Server modules with untrusted or compromised backend servers. This issue affects Apache HTTP Server: from through 2.4.66. Users are rec… New	CWE-443	CVE-2026-33523	2026-05-5 03:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

43	5.3	MEDIUM Network	-	-	A NULL pointer dereference in the mod_authn_socache in Apache HTTP Server 2.4.66 and earlier allows an unauthenticated remote user to crash a child process in a caching forward proxy configuration. … New	CWE-476 NULL Pointer Dereference	CVE-2026-33007	2026-05-5 03:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

44	-		-	-	A timing attack against mod_auth_digest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes th… New	CWE-208 Information Exposure Through Timing Discrepancy	CVE-2026-33006	2026-05-5 03:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

45	7.5	HIGH Network	-	-	Easy PayPal Events & Tickets plugin for WordPress version 1.3 and earlier contain a hardcoded authentication bypass vulnerability in the QR code scanning functionality that allows unauthenticated rem… New	CWE-798 Use of Hard-coded Credentials	CVE-2026-32834	2026-05-5 03:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

46	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… New	-	CVE-2026-2828	2026-05-5 03:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

47	7.5	HIGH Network	-	-	A NULL pointer dereference in mod_dav_lock in Apache HTTP Server 2.4.66 and earlier may allow an attacker to crash the server with a malicious request.mod_dav_lock is not used internally by mod_dav o… New	CWE-476 NULL Pointer Dereference	CVE-2026-29169	2026-05-5 03:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

48	8.1	HIGH Adjacent	-	-	BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client (udhcpc6) DNS_SERVERS option handler in networking/udhcp/d6_dhcpc.c that allows network-adjacent attac… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-29004	2026-05-5 03:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

49	-		-	-	An escalation of privilege bug in various modules in Apache HTTP 2.4.66 and earlier allows local .htaccess authors to read files with the privileges of the httpd user. Users are recommended to upgra… New	CWE-269 Improper Privilege Management	CVE-2026-24072	2026-05-5 03:16	2026-05-4	Show	GitHub Exploit DB Packet Storm

50	8.8	HIGH Network	-	-	Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol. This issue affects Apache HTTP Server: 2.4.66. Users are recommended to upgrade to version 2.4.67, which f… New	CWE-415 Double Free	CVE-2026-23918	2026-05-5 03:16	2026-05-5	Show	GitHub Exploit DB Packet Storm