Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3051 7.8 重要
Local 		マイクロソフト Microsoft Office Online Server
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps
Microsoft Office
Microsoft Excel 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-32199 2026-04-30 11:03 2026-04-14 Show GitHub Exploit DB Packet Storm
3052 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Office Long Term Servicing Channel (LTSC)
Microsoft PowerPoint
Microsoft Office 		Microsoft PowerPoint のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-32200 2026-04-30 11:03 2026-04-14 Show GitHub Exploit DB Packet Storm
3053 7.8 重要
Local 		デル Alienware Command Center デルのAlienware Command Centerにおける最小権限の違反に関する脆弱性 CWE-272
最小権限の違反 		CVE-2026-32655 2026-04-30 11:03 2026-04-27 Show GitHub Exploit DB Packet Storm
3054 2.7
Network 		GitHub Enterprise Server GitHubのEnterprise Serverにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-3307 2026-04-30 11:03 2026-04-21 Show GitHub Exploit DB Packet Storm
3055 5.5 警告
Local 		マイクロソフト Microsoft Dynamics 365 Microsoft Dynamics 365 の(オンプレミス) で、情報漏えいの脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-33103 2026-04-30 11:03 2026-04-14 Show GitHub Exploit DB Packet Storm
3056 10 緊急
Network 		Apache Software Foundation Apache Camel Apache Software FoundationのApache Camelにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-33453 2026-04-30 11:03 2026-04-27 Show GitHub Exploit DB Packet Storm
3057 9.4 緊急
Network 		Apache Software Foundation Apache Camel Apache Software FoundationのApache Camelにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-33454 2026-04-30 11:03 2026-04-27 Show GitHub Exploit DB Packet Storm
3058 7.5 重要
Network 		Linaro OP-TEE Trusted OS LinaroのOP-TEE Trusted OSにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-33662 2026-04-30 11:03 2026-04-24 Show GitHub Exploit DB Packet Storm
3059 7.4 重要
Network 		OpenProject OpenProject OpenProjectにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-33667 2026-04-30 11:03 2026-04-15 Show GitHub Exploit DB Packet Storm
3060 6.7 警告
Local 		デル data domain operating system デルのdata domain operating systemにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-35154 2026-04-30 11:03 2026-04-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346611 - phpfreenews phpfreenews Multiple cross-site scripting (XSS) vulnerabilities in PHPFreeNews 1.40 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) NewsMode parameter to NewsCategoryForm.ph… NVD-CWE-Other
CVE-2005-2638 2016-10-18 12:29 2005-08-23 Show GitHub Exploit DB Packet Storm
346612 - valusoft chris_moneymakers_world_poker_championship Buffer overflow in Chris Moneymaker's World Poker Championship 1.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long nickname. NVD-CWE-Other
CVE-2005-2639 2016-10-18 12:29 2005-08-23 Show GitHub Exploit DB Packet Storm
346613 - neoteris
juniper
netscreen 		instant_virtual_extranet
netscreen_screenos
ns-10
ns-100
ns-204
ns-500
ns-50ns25
netscreen-5gt
netscreen-idp
netscreen-idp_10
netscreen-idp_100
netscreen-idp_1000
 Behavioral discrepancy information leak in Juniper Netscreen VPN running ScreenOS 5.2.0 and earlier, when using IKE with pre-shared key authentication, allows remote attackers to enumerate valid user… NVD-CWE-Other
CVE-2005-2640 2016-10-18 12:29 2005-08-23 Show GitHub Exploit DB Packet Storm
346614 - tor tor Tor 0.1.0.13 and earlier, and experimental versions 0.1.1.4-alpha and earlier, does not reject certain weak keys when using ephemeral Diffie-Hellman (DH) handshakes, which allows malicious Tor server… NVD-CWE-Other
CVE-2005-2643 2016-10-18 12:29 2005-08-23 Show GitHub Exploit DB Packet Storm
346615 - whisper32 whisper32 Whisper 32 1.16, and possibly earlier versions, stores passwords in plaintext in memory, which allows local users to obtain the password using a debugger or another mechanism to read process memory. NVD-CWE-Other
CVE-2005-2664 2016-10-18 12:29 2005-08-23 Show GitHub Exploit DB Packet Storm
346616 - elm_development_group elm Stack-based buffer overflow in expires.c in Elm 2.5 PL5 through PL7, and possibly other versions, allows remote attackers to execute arbitrary code via an e-mail message with a long Expires header. NVD-CWE-Other
CVE-2005-2665 2016-10-18 12:29 2005-08-23 Show GitHub Exploit DB Packet Storm
346617 - phpkit phpkit Multiple SQL injection vulnerabilities in PHPKit 1.6.1 allow remote attackers to execute arbitrary SQL commands via the (1) letter parameter to login/member.php or (2) im_receiver parameter to login/… NVD-CWE-Other
CVE-2005-2683 2016-10-18 12:29 2005-08-23 Show GitHub Exploit DB Packet Storm
346618 - ibm lotus_notes IBM Lotus Notes does not properly restrict access to password hashes in the Notes Address Book (NAB), which allows remote attackers to obtain sensitive information via the (1) password digest field i… NVD-CWE-Other
CVE-2005-2696 2016-10-18 12:29 2005-08-27 Show GitHub Exploit DB Packet Storm
346619 - mybulletinboard mybulletinboard SQL injection vulnerability in search.php for MyBulletinBoard (MyBB) 1.00 Release Candidate 1 through 4 allows remote attackers to execute arbitrary SQL commands via the uid parameter. NOTE: this is… NVD-CWE-Other
CVE-2005-2697 2016-10-18 12:29 2005-08-27 Show GitHub Exploit DB Packet Storm
346620 - phpkit phpkit Unrestricted file upload vulnerability in admin/admin.php in PHPKit 1.6.1 allows remote authenticated administrators to execute arbitrary PHP code by uploading a .php file to the content/images/ dire… NVD-CWE-Other
CVE-2005-2699 2016-10-18 12:29 2005-08-27 Show GitHub Exploit DB Packet Storm