Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3071 5.3 警告
Network 		Python Software Foundation urllib3 Python Software Foundationのurllib3における情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-44431 2026-05-18 12:12 2026-05-13 Show GitHub Exploit DB Packet Storm
3072 7.5 重要
Network 		Python Software Foundation urllib3 Python Software Foundationのurllib3における高圧縮データの処理 (データ増幅)に関する脆弱性 CWE-409
高圧縮データの不適切な処理 (データ増幅) 		CVE-2026-44432 2026-05-18 12:12 2026-05-13 Show GitHub Exploit DB Packet Storm
3073 5.7 警告
Adjacent 		Frappe ERPNext FrappeのERPNextにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-44440 2026-05-18 12:12 2026-05-13 Show GitHub Exploit DB Packet Storm
3074 4.3 警告
Network 		Frappe ERPNext FrappeのERPNextにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-44441 2026-05-18 12:12 2026-05-13 Show GitHub Exploit DB Packet Storm
3075 9.9 緊急
Network 		Frappe ERPNext FrappeのERPNextにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-44442 2026-05-18 12:12 2026-05-13 Show GitHub Exploit DB Packet Storm
3076 6.5 警告
Network 		Frappe ERPNext FrappeのERPNextにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-44445 2026-05-18 12:11 2026-05-13 Show GitHub Exploit DB Packet Storm
3077 7.5 重要
Network 		Frappe ERPNext FrappeのERPNextにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-44446 2026-05-18 12:11 2026-05-13 Show GitHub Exploit DB Packet Storm
3078 7.5 重要
Network 		Frappe ERPNext FrappeのERPNextにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-44447 2026-05-18 12:11 2026-05-13 Show GitHub Exploit DB Packet Storm
3079 5.4 警告
Network 		Vercel, Inc. (旧 Zeit, Inc.) Next.js Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける解釈の競合に関する脆弱性 CWE-436
解釈の競合 		CVE-2026-44576 2026-05-18 12:11 2026-05-13 Show GitHub Exploit DB Packet Storm
3080 8.6 重要
Network 		Vercel, Inc. (旧 Zeit, Inc.) Next.js Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-44578 2026-05-18 12:11 2026-05-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345251 - vim_development_group vim VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap,… NVD-CWE-Other
CVE-2004-1138 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
345252 - linux linux_kernel Unknown vulnerability in the 32bit emulation code in Linux 2.4 on AMD64 systems allows local users to gain privileges. NVD-CWE-Other
CVE-2004-1144 2017-10-11 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
345253 - ethereal_group
sgi
conectiva
altlinux
debian
redhat
suse 		ethereal
propack
linux
alt_linux
debian_linux
enterprise_linux
enterprise_linux_desktop
linux_advanced_workstation
suse_linux 		Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java… NVD-CWE-Other
CVE-2004-1145 2017-10-11 10:29 2004-12-15 Show GitHub Exploit DB Packet Storm
345254 - adobe acrobat_reader Format string vulnerability in Adobe Acrobat Reader 6.0.0 through 6.0.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an .ETD docume… NVD-CWE-Other
CVE-2004-1153 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
345255 - mozilla firefox
mozilla 		Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a dif… NVD-CWE-Other
CVE-2004-1156 2017-10-11 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
345256 - kde
mandrakesoft
redhat 		konqueror
mandrake_linux
fedora_core 		Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but… NVD-CWE-Other
CVE-2004-1158 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
345257 - kde kdelibs
konqueror 		Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserte… NVD-CWE-Other
CVE-2004-1165 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
345258 - gnu mailman Cross-site scripting (XSS) vulnerability in the driver script in mailman before 2.1.5 allows remote attackers to inject arbitrary web script or HTML via a URL, which is not properly escaped in the re… NVD-CWE-Other
CVE-2004-1177 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
345259 - libtiff libtiff Integer overflow in the tiffdump utility for libtiff 3.7.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF … NVD-CWE-Other
CVE-2004-1183 2017-10-11 10:29 2005-01-6 Show GitHub Exploit DB Packet Storm
345260 - suse suse_linux SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorize… NVD-CWE-Other
CVE-2004-1190 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm