Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2441 6.1 警告
Network 		Joomla! Joomla! Joomla!におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-30894 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2442 6.1 警告
Network 		Joomla! Joomla! Joomla!におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-30895 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2443 9.8 緊急
Network 		マイクロソフト Microsoft Entra ID Microsoft Azure Active Directory B2C Elevation of Privilege Vulnerability CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-33843 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
2444 4.3 警告
Network 		Joomla! Joomla! Joomla!におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-35220 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2445 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-35221 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2446 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-35222 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2447 8.8 重要
Network 		FreeRDP FreeRDP FreeRDPにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40033 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2448 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40383 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2449 7.2 重要
Network 		IBM Engineering Lifecycle Management IBMのEngineering Lifecycle Managementにおける危険なメソッドや機能の公開に関する脆弱性 CWE-749
危険なメソッドや機能の公開 		CVE-2026-4051 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2450 6.5 警告
Network 		struktur AG libheif struktur AGのlibheifにおける複数の脆弱性 CWE-125
CWE-476
CVE-2026-41069 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344141 - microsoft jet Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query. NVD-CWE-Other
CVE-2004-0197 2018-10-13 06:34 2004-06-1 Show GitHub Exploit DB Packet Storm
344142 - microsoft windows_2003_server
windows_xp 		Help and Support Center in Microsoft Windows XP and Windows Server 2003 SP1 does not properly validate HCP URLs, which allows remote attackers to execute arbitrary code, as demonstrated using certain… NVD-CWE-Other
CVE-2004-0199 2018-10-13 06:34 2004-06-14 Show GitHub Exploit DB Packet Storm
344143 - bea
borland_software
businessobjects
microsoft 		weblogic_server
j_builder
crystal_enterprise
crystal_enterprise_java_sdk
crystal_enterprise_ras
crystal_reports
business_solutions_crm
outlook
visual_studio_.net 		Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio .NET 2003 and Outlook 2003 with Business C… NVD-CWE-Other
CVE-2004-0204 2018-10-13 06:34 2004-08-6 Show GitHub Exploit DB Packet Storm
344144 - avaya
microsoft 		ip600_media_servers
internet_information_server
definity_one_media_server
s8100
modular_messaging_message_storage_server 		Buffer overflow in Microsoft Internet Information Server (IIS) 4.0 allows local users to execute arbitrary code via the redirect function. NVD-CWE-Other
CVE-2004-0205 2018-10-13 06:34 2004-08-6 Show GitHub Exploit DB Packet Storm
344145 - microsoft windows_2000
windows_2003_server
windows_98
windows_nt
windows_xp 		Network Dynamic Data Exchange (NetDDE) services for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to remotely execute arbitrary code or loca… NVD-CWE-Other
CVE-2004-0206 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344146 - microsoft windows_2000
windows_2003_server
windows_98
windows_nt
windows_xp 		"Shatter" style vulnerability in the Window Management application programming interface (API) for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local… NVD-CWE-Other
CVE-2004-0207 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344147 - microsoft windows_2000
windows_2003_server
windows_nt
windows_xp 		The Virtual DOS Machine (VDM) subsystem of Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local users to access kernel memory and gain privileges via a malicious p… NVD-CWE-Other
CVE-2004-0208 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344148 - microsoft windows_2000
windows_2003_server
windows_xp 		Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via (1) Windows Metaf… NVD-CWE-Other
CVE-2004-0209 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344149 - microsoft windows_2003_server The kernel for Microsoft Windows Server 2003 does not reset certain values in CPU data structures, which allows local users to cause a denial of service (system crash) via a malicious program. NVD-CWE-Other
CVE-2004-0211 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344150 - avaya
microsoft 		ip600_media_servers
outlook_express
definity_one_media_server
s8100
modular_messaging_message_storage_server 		Microsoft Outlook Express 5.5 and 6 allows attackers to cause a denial of service (application crash) via a malformed e-mail header. NVD-CWE-Other
CVE-2004-0215 2018-10-13 06:34 2004-08-6 Show GitHub Exploit DB Packet Storm