Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2671 6.5 警告
Network 		getkirby kirby getkirbyのkirbyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40099 2026-04-30 12:29 2026-04-24 Show GitHub Exploit DB Packet Storm
2672 5.4 警告
Network 		Auth0 Inc. nextjs-auth0 Auth0 Inc.のnextjs-auth0における複数の脆弱性 CWE-362
CWE-863
CVE-2026-40155 2026-04-30 12:29 2026-04-17 Show GitHub Exploit DB Packet Storm
2673 5.5 警告
Local 		systemd project systemd systemd projectのsystemdにおける不適切な動作順序に関する脆弱性 CWE-696
不適切な動作順序 		CVE-2026-40223 2026-04-30 12:29 2026-04-10 Show GitHub Exploit DB Packet Storm
2674 7.3 重要
Local 		systemd project systemd systemd projectのsystemdにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40224 2026-04-30 12:29 2026-04-10 Show GitHub Exploit DB Packet Storm
2675 6.4 警告
Physics 		systemd project systemd systemd projectのsystemdにおける領域間での誤ったリソース移動に関する脆弱性 CWE-669
領域間での誤ったリソース移動 		CVE-2026-40225 2026-04-30 12:28 2026-04-10 Show GitHub Exploit DB Packet Storm
2676 6.1 警告
Network 		FreeRDP FreeRDP FreeRDPにおける境界条件の判定に関する脆弱性 CWE-193
境界条件の判定 		CVE-2026-40254 2026-04-30 12:28 2026-04-24 Show GitHub Exploit DB Packet Storm
2677 3.7
Network 		BACnet Stack BACnet Stack BACnet Stackにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性 CWE-758
未定義、未指定、または実装定義の動作への依存 		CVE-2026-40279 2026-04-30 12:28 2026-04-21 Show GitHub Exploit DB Packet Storm
2678 7.6 重要
Network 		WeGIA WeGIA WeGIAにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40283 2026-04-30 12:28 2026-04-17 Show GitHub Exploit DB Packet Storm
2679 6.5 警告
Network 		OpenFGA OpenFGA OpenFGAにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-40293 2026-04-30 12:28 2026-04-17 Show GitHub Exploit DB Packet Storm
2680 9.9 緊急
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける複数の脆弱性 CWE-22
CWE-427
CWE-73
CWE-94
CVE-2026-40342 2026-04-30 12:28 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346571 - icewarp
merak 		web_mail
mail_server 		Multiple cross-site scripting (XSS) vulnerabilities in MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HT… NVD-CWE-Other
CVE-2005-3131 2016-10-18 12:32 2005-10-5 Show GitHub Exploit DB Packet Storm
346572 - icewarp
merak 		web_mail
mail_server 		MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allows remote attackers to obtain sensitive information via a direct request to bwlist_inc.html, which reveals the… NVD-CWE-Other
CVE-2005-3132 2016-10-18 12:32 2005-10-5 Show GitHub Exploit DB Packet Storm
346573 - icewarp
merak 		web_mail
mail_server 		Multiple directory traversal vulnerabilities in MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allows remote attackers to (1) delete arbitrary files or directori… NVD-CWE-Other
CVE-2005-3133 2016-10-18 12:32 2005-10-5 Show GitHub Exploit DB Packet Storm
346574 - twiki twiki The history (revision control) function in TWiki 02-Sep-2004 and earlier allows remote attackers to execute arbitrary code via shell metacharacters, as demonstrated via the rev parameter to TWikiUser… NVD-CWE-Other
CVE-2005-2877 2016-10-18 12:31 2005-09-17 Show GitHub Exploit DB Packet Storm
346575 - gnu mailutils Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command. NVD-CWE-Other
CVE-2005-2878 2016-10-18 12:31 2005-09-14 Show GitHub Exploit DB Packet Storm
346576 - advansysperu_software usb_lock_auto-protect Advansysperu Software USB Lock Auto-Protect (AP) 1.5 uses a weak encryption scheme to encrypt passwords, which allows local users to gain sensitive information and bypass USB interface protection. NVD-CWE-Other
CVE-2005-2879 2016-10-18 12:31 2005-09-15 Show GitHub Exploit DB Packet Storm
346577 - checkpoint connectra_ngx Check Point NGX R60 does not properly verify packets against the predefined service group "CIFS" rule, which allows remote attackers to bypass intended restrictions. NVD-CWE-Other
CVE-2005-2889 2016-10-18 12:31 2005-09-15 Show GitHub Exploit DB Packet Storm
346578 - stylemotion web_news WEB//NEWS 1.4 allows remote attackers to obtain sensitive information via a direct request to files in the actions directory, which reveal the path in an error message, as demonstrated using cat.add.… NVD-CWE-Other
CVE-2005-2897 2016-10-18 12:31 2005-09-15 Show GitHub Exploit DB Packet Storm
346579 - cj_design cj_tag_board Multiple cross-site scripting (XSS) vulnerabilities in details.php in CjTagBoard 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) date, (2) time, (3) name, (4) ip, (5) ag… NVD-CWE-Other
CVE-2005-2899 2016-10-18 12:31 2005-09-15 Show GitHub Exploit DB Packet Storm
346580 - cj_desing cjlinkout Cross-site scripting (XSS) vulnerability in top.php in CjLinkOut 1.0 allows remote attackers to inject arbitrary web script or HTML via the 123 parameter. NVD-CWE-Other
CVE-2005-2900 2016-10-18 12:31 2005-09-15 Show GitHub Exploit DB Packet Storm