Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2861	9.8	緊急 Network	scshr	hr portal	scshrのhr portalにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2025-48782	2026-02-6 10:41	2025-06-6	Show	GitHub Exploit DB Packet Storm

2862	7.5	重要 Network	scshr	hr portal	scshrのhr portalにおけるファイル名やパス名の外部制御に関する脆弱性	CWE-73 ファイル名やパス名の外部制御	CVE-2025-48783	2026-02-6 10:41	2025-06-6	Show	GitHub Exploit DB Packet Storm

2863	7.5	重要 Network	scshr	hr portal	scshrのhr portalにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-48784	2026-02-6 10:41	2025-06-6	Show	GitHub Exploit DB Packet Storm

2864	7.5	重要 Network	scshr	hr portal	scshrのhr portalにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2025-5192	2026-02-6 10:41	2025-06-6	Show	GitHub Exploit DB Packet Storm

2865	6.8	警告 Physics	Elspec LTD	G5DFR ファームウェア	Elspec LTDのG5DFR ファームウェアにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2025-59392	2026-02-6 10:41	2025-11-6	Show	GitHub Exploit DB Packet Storm

2866	7.2	重要 Network	Sangoma	freepbx	SangomaのfreepbxにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-64328	2026-02-6 10:41	2025-11-7	Show	GitHub Exploit DB Packet Storm

2867	6.5	警告 Network	Salesforce.com, inc.	MuleSoft Anypoint Extension Pack	Salesforce.com, inc.のMuleSoft Anypoint Extension Packにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2025-10875	2026-02-6 10:41	2025-11-4	Show	GitHub Exploit DB Packet Storm

2868	7.5	重要 Network	Intelbras	ICIP 30 Firmware	IntelbrasのICIP 30 Firmwareにおける複数の脆弱性	CWE-255 CWE-256 CWE-522	CVE-2025-13187	2026-02-6 10:41	2025-11-14	Show	GitHub Exploit DB Packet Storm

2869	5.3	警告 Network	Zeit, Inc.	AI	Vercel, Inc. (旧 Zeit, Inc.)のAIにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2025-48985	2026-02-6 10:41	2025-11-7	Show	GitHub Exploit DB Packet Storm

2870	5.5	警告 Local	Open JS Foundation	ESLint	Open JS FoundationのESLintにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2025-50537	2026-02-6 10:40	2026-01-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347421	-	openbsd	openssh	sshd in OpenSSH 3.5p1, when PermitRootLogin is disabled, immediately closes the TCP connection after a root login attempt with the correct password, but leaves the connection open after an attempt wi…	CWE-16 Configuration	CVE-2004-2760	2009-01-29 14:37	2004-12-31	Show	GitHub Exploit DB Packet Storm

347422	-	netscape	navigator	Netscape 4 sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.	CWE-200 Information Exposure	CVE-2003-1560	2009-01-29 14:28	2003-12-31	Show	GitHub Exploit DB Packet Storm

347423	-	opera	opera	Opera, probably before 7.50, sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer …	NVD-CWE-noinfo CWE-200 Information Exposure	CVE-2003-1561	2009-01-29 14:28	2003-12-31	Show	GitHub Exploit DB Packet Storm

347424	-	bsdi caldera redhat	bsd_os openlinux linux	Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-1999-0002	2009-01-26 14:00	1998-10-12	Show	GitHub Exploit DB Packet Storm

347425	-	clam_anti-virus	clamav	The Quantum archive decompressor in Clam AntiVirus (ClamAV) before 0.86.1 allows remote attackers to cause a denial of service (application crash) via a crafted Quantum archive.	NVD-CWE-Other	CVE-2005-2056	2008-11-15 14:48	2005-06-29	Show	GitHub Exploit DB Packet Storm

347426	-	ipswitch	ipswitch_collaboration_suite	The IMAP daemon (IMAPD32.EXE) in Ipswitch Collaboration Suite (ICS) allows remote attackers to cause a denial of service (CPU consumption) via an LSUB command with a large number of null characters, …	NVD-CWE-Other	CVE-2005-1249	2008-11-15 14:46	2005-05-25	Show	GitHub Exploit DB Packet Storm

347427	-	ipswitch	imail imail_server	Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via "..\" …	NVD-CWE-Other	CVE-2005-1252	2008-11-15 14:46	2005-05-25	Show	GitHub Exploit DB Packet Storm

347428	-	ipswitch	imail	Stack-based buffer overflow in the IMAP server for Ipswitch IMail 8.12 and 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to cause a denial of service (c…	NVD-CWE-Other	CVE-2005-1254	2008-11-15 14:46	2005-05-25	Show	GitHub Exploit DB Packet Storm

347429	-	ipswitch	imail imail_server ipswitch_collaboration_suite	Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to e…	NVD-CWE-Other	CVE-2005-1255	2008-11-15 14:46	2005-05-25	Show	GitHub Exploit DB Packet Storm

347430	-	ipswitch	imail imail_server ipswitch_collaboration_suite	Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated user…	NVD-CWE-Other	CVE-2005-1256	2008-11-15 14:46	2005-05-25	Show	GitHub Exploit DB Packet Storm