Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2181 9.8 緊急
Network 		zlib zlib Ruby-lang.orgのZlibにおける複数の脆弱性 CWE-120
CWE-131
CVE-2026-27820 2026-05-25 10:25 2026-04-16 Show GitHub Exploit DB Packet Storm
2182 7.8 重要
Local 		Louis Pilfold Gleam Louis PilfoldのGleamにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-32146 2026-05-25 10:25 2026-04-11 Show GitHub Exploit DB Packet Storm
2183 4.3 警告
Network 		ERLANG Erlang/ssh
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-32147 2026-05-25 10:25 2026-04-21 Show GitHub Exploit DB Packet Storm
2184 7.8 重要
Local 		Elixir-ecto Postgrex Elixir-ectoのPostgrexにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-32687 2026-05-25 10:25 2026-05-12 Show GitHub Exploit DB Packet Storm
2185 7.5 重要
Network 		マイクロソフト go-ntlmssp マイクロソフトのgo-ntlmsspにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-32952 2026-05-25 10:25 2026-04-24 Show GitHub Exploit DB Packet Storm
2186 7.5 重要
Network 		Mtrudel Bandit MtrudelのBanditにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-39803 2026-05-25 10:25 2026-05-13 Show GitHub Exploit DB Packet Storm
2187 7.5 重要
Network 		Mtrudel Bandit MtrudelのBanditにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-39806 2026-05-25 10:25 2026-05-13 Show GitHub Exploit DB Packet Storm
2188 7.5 重要
Network 		Quarkiverse Hub Quarkus OpenAPI Generator Quarkiverse HubのQuarkus OpenAPI Generatorにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40180 2026-05-25 10:25 2026-04-10 Show GitHub Exploit DB Packet Storm
2189 8.8 重要
Network 		OWASP OWASP BLT OWASPのOWASP BLTにおける複数の脆弱性 CWE-94
CWE-95
CVE-2026-40316 2026-05-25 10:25 2026-04-15 Show GitHub Exploit DB Packet Storm
2190 7.5 重要
Network 		WebOnyx graphql-php WebOnyxのgraphql-phpにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-40476 2026-05-25 10:25 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
357831 - linux linux_kernel Multiple integer overflows in Sbus PROM driver (drivers/sbus/char/openprom.c) for the Linux kernel 2.4.x up to 2.4.27, 2.6.x up to 2.6.7, and possibly later versions, allow local users to execute arb… CWE-189
Numeric Errors 		CVE-2004-2731 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
357832 - zen_cart zen_cart SQL injection vulnerability in application_top.php for Zen Cart 1.1.3 before patch 2 may allow remote attackers to execute arbitrary SQL commands via the products_id parameter. NVD-CWE-Other
CVE-2004-2025 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357833 - - - The Altiris Client Service for Windows 5.6 SP1 Hotfix E (5.6.181) allows local users to execute arbitrary commands by opening the AClient tray icon and using the View Log File option, a different vul… NVD-CWE-Other
CVE-2004-2070 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357834 - microsoft baseline_security_analyzer Microsoft Baseline Security Analyzer (MBSA) 1.2 does not correctly identify systems that have been patched but remain vulnerable to exploit until the system is rebooted, possibly giving the administr… NVD-CWE-Other
CVE-2004-2091 2008-09-6 05:43 2004-02-10 Show GitHub Exploit DB Packet Storm
357835 - symantec norton_antivirus Unknown versions of Symantec Norton AntiVirus and Microsoft Outlook allow attackers to cause a denial of service (crash) via malformed e-mail messages (1) without a body or (2) without a carriage ret… NVD-CWE-Other
CVE-2004-2147 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357836 - xmlstarlet command_line_xml_toolkit Format string vulnerability in xml_elem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code. NVD-CWE-Other
CVE-2004-2160 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357837 - microsoft windows_xp The Internet Connection Firewall (ICF) in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which allows local users to use sessmgr.exe to create a local listening port that byp… NVD-CWE-Other
CVE-2004-2176 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357838 - devoybb devoybb_web_forum Cross-site scripting (XSS) vulnerability in DevoyBB Web Forum 1.0.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NVD-CWE-Other
CVE-2004-2177 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357839 - devoybb devoybb_web_forum SQL injection vulnerability in DevoyBB Web Forum 1.0.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NVD-CWE-Other
CVE-2004-2178 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
357840 - microsoft frontpage
ie 		asycpict.dll, as used in Microsoft products such as Front Page 97 and 98, allows remote attackers to cause a denial of service (hang) via a JPEG image with maximum height and width values. NVD-CWE-Other
CVE-2004-2179 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm