Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2781 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. w30e ファームウェア Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-24428 2026-02-2 19:32 2026-01-26 Show GitHub Exploit DB Packet Storm
2782 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. w30e ファームウェア Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるデフォルトのパスワードの使用に関する脆弱性 CWE-1393
デフォルトのパスワードの使用 		CVE-2026-24429 2026-02-2 19:32 2026-01-26 Show GitHub Exploit DB Packet Storm
2783 9.8 緊急
Network 		libexpat project libexpat libexpat projectのlibexpatにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-24515 2026-02-2 19:32 2026-01-23 Show GitHub Exploit DB Packet Storm
2784 6.5 警告
Network 		Discourse Discourse Discourseにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-24742 2026-02-2 19:32 2026-01-28 Show GitHub Exploit DB Packet Storm
2785 8.8 重要
Network 		Linux Foundation pytorch Linux Foundationのpytorchにおける複数の脆弱性 CWE-502
CWE-94
CVE-2026-24747 2026-02-2 19:32 2026-01-27 Show GitHub Exploit DB Packet Storm
2786 9.8 緊急
Network 		infiniflow ragflow infiniflowのragflowにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-24770 2026-02-2 19:32 2026-01-27 Show GitHub Exploit DB Packet Storm
2787 7.1 重要
Network 		vLLM vLLM vLLMにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-24779 2026-02-2 19:32 2026-01-27 Show GitHub Exploit DB Packet Storm
2788 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおける保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-24868 2026-02-2 19:32 2026-01-27 Show GitHub Exploit DB Packet Storm
2789 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-24869 2026-02-2 19:31 2026-01-27 Show GitHub Exploit DB Packet Storm
2790 8.2 重要
Network 		ThemeMove SmilePure ThemeMoveのWordPress用SmilePureにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-58958 2026-02-2 19:31 2025-10-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347801 - cutephp cutenews show_news.php in CuteNews 1.3.6 allows remote attackers to obtain the full path of the server via an invalid archive parameter. NVD-CWE-Other
CVE-2005-2394 2008-09-6 05:51 2005-07-27 Show GitHub Exploit DB Packet Storm
347802 - php_fusion php_fusion PHP-Fusion allows remote attackers to inject arbitrary Cascading Style Sheets (CSS) via the BBCode color tag. NVD-CWE-Other
CVE-2005-2401 2008-09-6 05:51 2005-07-27 Show GitHub Exploit DB Packet Storm
347803 - portailphp portailphp SQL injection vulnerability in mod_forum/read_message.php in PortailPHP allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php with the affiche parameter set to "… NVD-CWE-Other
CVE-2005-2486 2008-09-6 05:51 2005-08-7 Show GitHub Exploit DB Packet Storm
347804 - apple mac_os_x
mac_os_x_server 		Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2 allows external user-assisted attackers to execute arbitrary code via a crafted Rich Text Format (RTF) file. NVD-CWE-Other
CVE-2005-2501 2008-09-6 05:51 2005-08-19 Show GitHub Exploit DB Packet Storm
347805 - apple mac_os_x
mac_os_x_server 		The System Profiler in Mac OS X 10.4.2 labels a Bluetooth device with "Requires Authentication: No" even when the user has selected the "Require pairing for security" option, which could confuse user… NVD-CWE-Other
CVE-2005-2504 2008-09-6 05:51 2005-08-19 Show GitHub Exploit DB Packet Storm
347806 - apple mac_os_x Buffer overflow in CoreFoundation in Mac OS X 10.3.9 allows attackers to execute arbitrary code via command line arguments to an application that uses CoreFoundation. NVD-CWE-Other
CVE-2005-2505 2008-09-6 05:51 2005-08-19 Show GitHub Exploit DB Packet Storm
347807 - apple mac_os_x
mac_os_x_server 		Algorithmic complexity vulnerability in CoreFoundation in Mac OS X 10.3.9 and 10.4.2 allows attackers to cause a denial of service (CPU consumption) via crafted Gregorian dates. NVD-CWE-Other
CVE-2005-2506 2008-09-6 05:51 2005-08-19 Show GitHub Exploit DB Packet Storm
347808 - apple mac_os_x_server Buffer overflow in Directory Services in Mac OS X 10.3.9 and 10.4.2 allows remote attackers to execute arbitrary code during authentication. NVD-CWE-Other
CVE-2005-2507 2008-09-6 05:51 2005-08-19 Show GitHub Exploit DB Packet Storm
347809 - apple mac_os_x
mac_os_x_server 		dsidentity in Directory Services in Mac OS X 10.4.2 allows local users to add or remove user accounts. NVD-CWE-Other
CVE-2005-2508 2008-09-6 05:51 2005-08-19 Show GitHub Exploit DB Packet Storm
347810 - apple mac_os_x
mac_os_x_server 		Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, when Fast User Switching is enabled, allows attackers to log into other accounts if they know the passwords to at least two accoun… NVD-CWE-Other
CVE-2005-2509 2008-09-6 05:51 2005-08-19 Show GitHub Exploit DB Packet Storm