Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
21 8.8 重要
Local 		- アップルのmacOSにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-28978 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
22 7.5 重要
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における型の取り違えに関する脆弱性 New CWE-843
型の取り違え 		CVE-2026-28983 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
23 6.2 警告
Local 		アップル tvOS
iOS
iPadOS 		アップルのiPadOS等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス 		CVE-2026-28985 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
24 5.5 警告
Local 		アップル visionos
iOS
iPadOS
watchOS 		アップルのiPadOS等の複数製品におけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-28988 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
25 7.5 重要
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2026-28991 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
26 4.7 警告
Local 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における競合状態に関する脆弱性 New CWE-362
競合状態 		CVE-2026-28992 2026-05-15 11:03 2026-05-11 Show GitHub Exploit DB Packet Storm
27 5.5 警告
Local 		アップル visionos
iOS
iPadOS 		アップルのiPadOS等の複数製品におけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-28993 2026-05-15 11:03 2026-05-11 Show GitHub Exploit DB Packet Storm
28 5.3 警告
Adjacent 		アップル tvOS
iOS
iPadOS
watchOS 		アップルのiPadOS等の複数製品における解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-28994 2026-05-15 11:03 2026-05-11 Show GitHub Exploit DB Packet Storm
29 9.8 緊急
Network 		Rocket.Chat Rocket.Chat Rocket.ChatにおけるSQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2026-29198 2026-05-15 11:03 2026-04-23 Show GitHub Exploit DB Packet Storm
30 6.5 警告
Network 		Textpattern Textpattern CMS TextpatternのTextpattern CMSにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-30452 2026-05-15 11:03 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346601 - ubbcentral ubb.threads Infopop UBB.Threads before 6.5.2 Beta allows remote attackers to include arbitrary files via the language parameter in a cookie followed by a null (%00) byte. NVD-CWE-Other
CVE-2005-2061 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346602 - active_web_softwares activebuyandsell Multiple cross-site scripting (XSS) vulnerabilities in ActiveBuyAndSell 6.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Title parameter to sendpassword.asp or (2) Keywor… NVD-CWE-Other
CVE-2005-2063 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346603 - asp-nuke asp-nuke Multiple cross-site scripting vulnerabilities in ASP Nuke 0.80 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to forgot_password.asp, or the (2) FirstName, … NVD-CWE-Other
CVE-2005-2064 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346604 - asp-nuke asp-nuke HTTP response splitting vulnerability in language_select.asp in ASP Nuke 0.80 allows remote attackers to spoof web content and poison web caches via CRLF ("%0d%0a") sequences in the LangCode paramete… NVD-CWE-Other
CVE-2005-2065 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346605 - asp-nuke asp-nuke SQL injection vulnerability in comment_post.asp in ASP Nuke 0.80 allows remote attackers to execute arbitrary SQL statements via the TaskID parameter. NVD-CWE-Other
CVE-2005-2066 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346606 - asp-nuke asp-nuke SQL injection vulnerability in article.asp in unknown versions of aspnuke allows remote attackers to execute arbitrary SQL commands via the articleid parameter. NVD-CWE-Other
CVE-2005-2067 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346607 - sun solaris traceroute in Sun Solaris 10 on x86 systems allows local users to execute arbitrary code with PRIV_NET_RAWACCESS privileges via (1) a large number of -g arguments or (2) a malformed -s argument with … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2005-2071 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346608 - cgi-club imtrset im_trbbs.cgi in imTRSET 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the df parameter. NVD-CWE-Other
CVE-2005-2082 2016-10-18 12:24 2005-07-5 Show GitHub Exploit DB Packet Storm
346609 - telligent_systems community_server_forums Cross-site scripting (XSS) vulnerability in SearchResults.aspx in Community Forum allows remote attackers to inject arbitrary web script or HTML via the q parameter. NVD-CWE-Other
CVE-2005-2084 2016-10-18 12:24 2005-07-5 Show GitHub Exploit DB Packet Storm
346610 - infradig_systems inframail_advantage Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST comm… NVD-CWE-Other
CVE-2005-2085 2016-10-18 12:24 2005-07-5 Show GitHub Exploit DB Packet Storm