Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217301	5	警告	SAP	-	SAP Network Interface Router における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2014-8589	2014-11-6 18:09	2014-10-17	Show	GitHub Exploit DB Packet Storm

217302	7.5	危険	SAP	-	SAP HANA の metadata.xsjs における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-8588	2014-11-6 18:08	2014-10-17	Show	GitHub Exploit DB Packet Storm

217303	7.5	危険	SAP	-	SAP NetWeaver AS ABAP および SAP HANA で使用される SAPCRYPTOLIB などの製品における DSA 署名を偽装される脆弱性	CWE-310 暗号の問題	CVE-2014-8587	2014-11-6 18:08	2014-10-15	Show	GitHub Exploit DB Packet Storm

217304	7.5	危険	CodePeople	-	WordPress 用 CP Multi View Event Calendar プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-8586	2014-11-6 16:31	2014-10-23	Show	GitHub Exploit DB Packet Storm

217305	5	警告	WordPress Download Manager	-	WordPress 用 WordPress Download Manager プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-59 リンク解釈の問題	CVE-2014-8585	2014-11-6 16:30	2014-10-26	Show	GitHub Exploit DB Packet Storm

217306	4.3	警告	Web-Dorado	-	WordPress 用 Web Dorado Spider Video Player プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8584	2014-11-6 16:29	2014-11-3	Show	GitHub Exploit DB Packet Storm

217307	7.5	危険	clip-share NuevoLab.com.	-	ClipShare 用 Nuevolab Nuevoplayer の midroll.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-8339	2014-11-6 15:50	2014-10-28	Show	GitHub Exploit DB Packet Storm

217308	6.5	警告	EllisLab, Inc.	-	EllisLab ExpressionEngine における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5387	2014-11-6 15:49	2014-10-3	Show	GitHub Exploit DB Packet Storm

217309	6.8	警告	Axway	-	Axway SecureTransport におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-7057	2014-11-6 15:49	2013-12-11	Show	GitHub Exploit DB Packet Storm

217310	5	警告	Epicor Software	-	Epicor Enterprise におけるデータベース接続のパスワードを取得される脆弱性	CWE-200 情報漏えい	CVE-2014-4311	2014-11-6 15:49	2014-09-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
161	5.5	MEDIUM Local	-	-	A divide-by-zero vulnerability in the ext4_block_set_lb_size function in src/ext4_blockdev.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by providing a malformed ext4 fi… New	CWE-369 Divide By Zero	CVE-2025-70100	2026-06-5 00:48	2026-06-3	Show	GitHub Exploit DB Packet Storm

162	6.5	MEDIUM Network	-	-	An out-of-bounds read in the ext4_ext_binsearch_idx function in src/ext4_extent.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by supplying a specially crafted ext4 files… New	CWE-125 Out-of-bounds Read	CVE-2025-70101	2026-06-5 00:48	2026-06-3	Show	GitHub Exploit DB Packet Storm

163	-		-	-	Active IQ Config Advisor version 6.7.3 contains hard-coded credentials that could allow an authenticated attacker with low privileges to perform unauthorized AutoSupport operations. New	CWE-259 Use of Hard-coded Password	CVE-2026-22054	2026-06-5 00:48	2026-06-4	Show	GitHub Exploit DB Packet Storm

164	-		-	-	Active IQ OneCollect version 2.7.3 contains hard-coded credentials that could allow an authenticated attacker with low privileges to perform unauthorized AutoSupport operations. New	CWE-259 Use of Hard-coded Password	CVE-2026-22055	2026-06-5 00:48	2026-06-4	Show	GitHub Exploit DB Packet Storm

165	-		-	-	In affected versions of Octopus Server, permissions were not checked correctly resulting in any authenticated user being able to make server level changes using a certain API endpoint despite receivi… New	CWE-862 Missing Authorization	CVE-2026-4881	2026-06-5 00:48	2026-06-4	Show	GitHub Exploit DB Packet Storm

166	7.5	HIGH Network	-	-	React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportio… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-42342	2026-06-5 00:43	2026-06-3	Show	GitHub Exploit DB Packet Storm

167	-		-	-	Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-tesla tesla allows a denial of service via decompression bomb in HTTP response bodies. When Tesla.Middleware.… New	CWE-409 Improper Handling of Highly Compressed Data (Data Amplification)	CVE-2026-48594	2026-06-5 00:42	2026-06-3	Show	GitHub Exploit DB Packet Storm

168	-		-	-	Improper Handling of Case Sensitivity vulnerability in elixir-tesla tesla allows credential leakage to a third-party origin on cross-origin redirects. Tesla.Middleware.FollowRedirects strips securit… New	CWE-178 Improper Handling of Case Sensitivity	CVE-2026-48595	2026-06-5 00:42	2026-06-3	Show	GitHub Exploit DB Packet Storm

169	-		-	-	Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') vulnerability in elixir-tesla tesla allows HTTP header injection via Tesla.Multipart.add_content_type_par… New	CWE-113 HTTP Response Splitting	CVE-2026-48596	2026-06-5 00:42	2026-06-3	Show	GitHub Exploit DB Packet Storm

170	-		-	-	Allocation of Resources Without Limits or Throttling vulnerability in elixir-tesla tesla allows denial of service via atom table exhaustion in Tesla.Adapter.Mint. Tesla.Adapter.Mint.open_conn/2 conv… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-48597	2026-06-5 00:42	2026-06-3	Show	GitHub Exploit DB Packet Storm