Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
271 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-43380 2026-05-21 10:51 2026-05-8 Show GitHub Exploit DB Packet Storm
272 5.3 警告
Network 		protobufjs project protobufjs protobufjs projectのprotobufjsにおけるUnicode エンコーディングの処理に関する脆弱性 CWE-176
Unicode エンコーディングの不適切な処理 		CVE-2026-44288 2026-05-21 10:51 2026-05-13 Show GitHub Exploit DB Packet Storm
273 8.7 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-44549 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
274 8.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-44565 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
275 9.8 緊急
Network 		openwebui open webui openwebuiのopen webuiにおける複数の脆弱性 CWE-22
CWE-434
CVE-2026-44566 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
276 7.3 重要
Network 		openwebui open webui openwebuiのopen webuiにおける複数の脆弱性 CWE-602
CWE-863
CVE-2026-44567 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
277 7.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-44569 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
278 9.9 緊急
Network 		traefik traefik traefikにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-44774 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
279 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-45187 2026-05-21 10:50 2026-05-19 Show GitHub Exploit DB Packet Storm
280 5.4 警告
Network 		openwebui open webui openwebuiのopen webuiにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-45396 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346001 - powerportal powerportal Cross-site scripting (XSS) vulnerability in modules.php in PowerPortal 1.x allows remote attackers to inject arbitrary script or HTML via the (1) id parameter to the (a) private_messages module; (2) … NVD-CWE-Other
CVE-2004-0663 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346002 - powerportal powerportal Directory traversal vulnerability in modules.php in PowerPortal 1.x allows remote attackers to list arbitrary directories via a .. (dot dot) in the files parameter. NVD-CWE-Other
CVE-2004-0664 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346003 - cgiscript.net csfaq csFAQ.cgi in csFAQ allows remote attackers to gain sensitive information via an invalid database parameter, which reveals the path to the web server in an error message. NVD-CWE-Other
CVE-2004-0665 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346004 - popclient popclient Off-by-one error in the POP3_readmsg function in popclient 3.0b6 allows remote attackers to cause a denial of service (application crash) via an e-mail message with a certain line length, which leads… NVD-CWE-Other
CVE-2004-0666 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346005 - - - Web Access in Lotus Domino 6.5.1 allows remote attackers to cause a denial of service (server crash) via a large e-mail message, as demonstrated using a large image attachment. NVD-CWE-Other
CVE-2004-0668 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346006 - ibm lotus_domino Lotus Domino 6.5.0 and 6.5.1, with IMAP enabled, allows remote authenticated users to change their quota by using the IMAP setquota command. NVD-CWE-Other
CVE-2004-0669 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346007 - zyxel prestige Prestige 650HW-31 running Rompager 4.7 software allows remote attackers to cause a denial of service (device reboot) via a long password. NVD-CWE-Other
CVE-2004-0670 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346008 - symantec brightmail_antispam Brightmail Spamfilter 6.0 and earlier beta releases allows remote attackers to read mail from other users by modifying the id parameter in a viewMsgDetails.do request. NVD-CWE-Other
CVE-2004-0671 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346009 - netegrity identityminder
policy_server 		Multiple cross-site scripting (XSS) vulnerabilities in the primary and management web interfaces in Netegrity IdentityMinder Web Edition 5.6 allows remote attackers to execute script as other users v… NVD-CWE-Other
CVE-2004-0672 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346010 - simm-comm sci_photo_chat Cross-site scripting (XSS) vulnerability in SCI Photo Chat Server 3.4.9 allows remote attackers to execute arbitrary web script as other users via an invalid request that is echoed in the resulting e… NVD-CWE-Other
CVE-2004-0673 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm