Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245731 5 警告 Centreon - Centreon の include/doc/get_image.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1119 2012-06-26 15:55 2008-03-3 Show GitHub Exploit DB Packet Storm
245732 7.1 危険 red swoosh
アカマイテクノロジーズ		 - Akamai Client の管理インターフェースにおける認証を回避される脆弱性 CWE-287
CWE-352
CVE-2008-1106 2012-06-26 15:55 2008-06-9 Show GitHub Exploit DB Packet Storm
245733 9.3 危険 Foxit Software Inc - Foxit Reader におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1104 2012-06-26 15:55 2008-05-21 Show GitHub Exploit DB Packet Storm
245734 6.9 警告 blender - Blender における詳細不明な脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-1103 2012-06-26 15:55 2008-04-28 Show GitHub Exploit DB Packet Storm
245735 6.8 警告 blender - Blender の imb_loadhdr 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1102 2012-06-26 15:55 2008-04-22 Show GitHub Exploit DB Packet Storm
245736 7.5 危険 beehive software - Beehive Software SendFile.NET の outboxWriteUnsent 関数における権限を取得される脆弱性 CWE-DesignError
CVE-2008-1079 2012-06-26 15:55 2008-03-4 Show GitHub Exploit DB Packet Storm
245737 7.2 危険 Gentoo Linux
rPath, Inc		 - am-utils および net-fs パッケージの expn における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-1078 2012-06-26 15:55 2008-02-28 Show GitHub Exploit DB Packet Storm
245738 6.8 警告 group e - GROUP-E の lib/head_auth.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1074 2012-06-26 15:55 2008-02-28 Show GitHub Exploit DB Packet Storm
245739 4.3 警告 Alkacon Software - Alkacon OpenCMS の file tree navigation 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1045 2012-06-26 15:55 2008-02-27 Show GitHub Exploit DB Packet Storm
245740 6.8 警告 DrBenHur - DBHcms の mod/mod.extmanager.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1038 2012-06-26 15:55 2008-02-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
41 9.9 CRITICAL
Network 		- - Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network acc… New CWE-284
Improper Access Control 		CVE-2026-46775 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
42 - - - WWBN AVideo is an open source video platform. In 29.0 and earlier, an unauthenticated remote attacker can read arbitrary image files anywhere on disk that the PHP user can open — including private us… New CWE-22
Path Traversal 		CVE-2026-46337 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
43 - - - Trilium Notes is a cross-platform, hierarchical note taking application focused on building large personal knowledge bases. Prior to 0.102.2, a malicious ZIP archive imported with safe import enabled… New CWE-22
CWE-79
Path Traversal
Cross-site Scripting 		CVE-2026-45668 2026-05-30 03:17 2026-05-30 Show GitHub Exploit DB Packet Storm
44 9.9 CRITICAL
Network 		- - Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitr… New CWE-22
CWE-35
Path Traversal
 Path Traversal: '.../...//' 		CVE-2026-45661 2026-05-30 03:17 2026-05-30 Show GitHub Exploit DB Packet Storm
45 5.4 MEDIUM
Network 		- - Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.22 and 6.18.1, the Glide image proxy's URL validation could be bypassed using an IP representation that wasn't nor… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45660 2026-05-30 03:17 2026-05-30 Show GitHub Exploit DB Packet Storm
46 9.9 CRITICAL
Network 		- - Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.26.6 and earlier, Dokploy contains a command injection vulnerability in the /docker-container-logs WebSocket endpoint. The tail and… New CWE-78
OS Command  		CVE-2026-45633 2026-05-30 03:17 2026-05-30 Show GitHub Exploit DB Packet Storm
47 9.9 CRITICAL
Network 		- - Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.26.7 and earlier, the schedule router does not enforce organization/role checks. As a result, any authenticated user can create, up… New CWE-78
CWE-269
CWE-862
OS Command 
 Improper Privilege Management
 Missing Authorization 		CVE-2026-45632 2026-05-30 03:17 2026-05-30 Show GitHub Exploit DB Packet Storm
48 10.0 CRITICAL
Network 		- - Dokploy is a free, self-hostable Platform as a Service (PaaS). From 0.27.0 to before 0.29.3, a hardcoded BETTER_AUTH_SECRET fallback ("better-auth-secret-123456789") lets an unauthenticated attacker … New CWE-798
 Use of Hard-coded Credentials 		CVE-2026-45631 2026-05-30 03:17 2026-05-30 Show GitHub Exploit DB Packet Storm
49 9.0 CRITICAL
Network 		- - Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.28.8 and earlier, authenticated OS command injection in the application.updateTraefikConfig tRPC endpoint allows admin/owner users … New CWE-78
OS Command  		CVE-2026-45630 2026-05-30 03:17 2026-05-30 Show GitHub Exploit DB Packet Storm
50 9.9 CRITICAL
Network 		- - Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.28.8 and earlier, authenticated OS command injection in the /listen-deployment WebSocket endpoint allows any organization member to… New CWE-78
OS Command  		CVE-2026-45629 2026-05-30 03:17 2026-05-30 Show GitHub Exploit DB Packet Storm