Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248441	2.6	注意	Enlightenment	-	imlib2 の loader_tga.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4807	2012-06-26 15:37	2006-11-6	Show	GitHub Exploit DB Packet Storm

248442	5.1	警告	Enlightenment	-	imlib2 における整数オーバーフローの脆弱性	-	CVE-2006-4806	2012-06-26 15:37	2006-11-6	Show	GitHub Exploit DB Packet Storm

248443	7.5	危険	FFmpeg	-	ffmpeg の libavcodec におけるバッファオーバーフローの脆弱性	-	CVE-2006-4800	2012-06-26 15:37	2006-09-14	Show	GitHub Exploit DB Packet Storm

248444	5	警告	dws systems inc.	-	SQL-Ledger におけるパスワードを取得される脆弱性	-	CVE-2006-4798	2012-06-26 15:37	2006-09-14	Show	GitHub Exploit DB Packet Storm

248445	4.3	警告	cj-design	-	CloudNine Interactive CJ Tag Board の tag.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4797	2012-06-26 15:37	2006-09-14	Show	GitHub Exploit DB Packet Storm

248446	4.3	警告	e107.org	-	e107 におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4794	2012-06-26 15:37	2006-09-14	Show	GitHub Exploit DB Packet Storm

248447	2.1	注意	alphamail	-	AlphaMail における重要な情報を取得される脆弱性	-	CVE-2006-4787	2012-06-26 15:37	2006-09-14	Show	GitHub Exploit DB Packet Storm

248448	7.5	危険	futuresoft	-	FutureSoft TFTP Server MT におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2006-4781	2012-06-26 15:37	2006-09-14	Show	GitHub Exploit DB Packet Storm

248449	7.5	危険	cchost	-	Creative Commons Tools ccHost における SQL インジェクションの脆弱性	-	CVE-2006-4778	2012-06-26 15:37	2006-09-14	Show	GitHub Exploit DB Packet Storm

248450	7.5	危険	gtasoft	-	p4CMS の abf_js.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4769	2012-06-26 15:37	2006-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2801	6.5	MEDIUM Network	mattermost	mattermost_server	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to validate 7zip archive structure before processing which allows an authenticated attacker to cause server memory exh…	CWE-789 Memory Allocation with Excessive Size Value	CVE-2026-6340	2026-05-20 02:21	2026-05-18	Show	GitHub Exploit DB Packet Storm

2802	7.5	HIGH Network	hsclabs	mailinspector	HSC MailInspector 5.3.3-7 has a Path Traversal vulnerability due to improper validation of user-supplied input in the /tap/dw.php endpoint. The text parameter is used to construct file paths without …	CWE-22 Path Traversal	CVE-2026-29963	2026-05-20 02:21	2026-05-19	Show	GitHub Exploit DB Packet Storm

2803	6.1	MEDIUM Network	hsclabs	mailinspector	HSC MailInspector v5.3.3-7 contains a Cross-Site Scripting (XSS) vulnerability in the /tap/tap.php endpoint due to improper neutralization of user-controlled input using alternate or obfuscated JavaS…	CWE-79 Cross-site Scripting	CVE-2026-29964	2026-05-20 02:20	2026-05-19	Show	GitHub Exploit DB Packet Storm

2804	6.1	MEDIUM Network	hsclabs	mailinspector	HSC MailInspector 5.3.3-7 is vulnerable to Cross Site Scripting (XSS) in the /police/WarningUrlPage.php endpoint due to improper neutralization of user-supplied input that uses alternate or obfuscate…	CWE-79 Cross-site Scripting	CVE-2026-29965	2026-05-20 02:19	2026-05-19	Show	GitHub Exploit DB Packet Storm

2805	4.3	MEDIUM Network	mattermost	mattermost_server	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 Fail to enforce slash command trigger-word uniqueness during command updates which allows an authenticated team member with…	CWE-863 Incorrect Authorization	CVE-2026-28732	2026-05-20 02:18	2026-05-18	Show	GitHub Exploit DB Packet Storm

2806	5.0	MEDIUM Network	-	-	AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions 0.1.0 through 0.6.51, SendEmailBlock in autogpt_platform/backen…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-33234	2026-05-20 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

2807	9.9	CRITICAL Network	-	-	Dokploy is a free, self-hostable Platform as a Service (PaaS). Versions 0.26.6 and below have OS command injection through the appName parameter. 3 chained issues cause this problem: inadequate input…	CWE-78 OS Command	CVE-2026-27130	2026-05-20 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

2808	8.3	HIGH Network	google	chrome	Out of bounds write in Media in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML pag…	CWE-787 Out-of-bounds Write	CVE-2026-8548	2026-05-20 02:02	2026-05-15	Show	GitHub Exploit DB Packet Storm

2809	8.8	HIGH Network	google	chrome	Use after free in Media in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-8549	2026-05-20 01:58	2026-05-15	Show	GitHub Exploit DB Packet Storm

2810	6.5	MEDIUM Network	google	chrome	Use after free in Google Lens in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memo…	CWE-416 Use After Free	CVE-2026-8550	2026-05-20 01:51	2026-05-15	Show	GitHub Exploit DB Packet Storm