Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3741 10 緊急
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 CWE-183
CWE-441
CWE-918
CVE-2026-42043 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3742 9.1 緊急
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 CWE-1321
CWE-915
CVE-2026-42044 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3743 8.8 重要
Network 		HashiCorp Vault HashiCorpのVaultにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-4525 2026-04-30 12:25 2026-04-17 Show GitHub Exploit DB Packet Storm
3744 4.9 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-4917 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
3745 4.8 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4918 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
3746 4.8 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4919 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
3747 8.6 重要
Network 		HashiCorp Vault HashiCorpのVaultにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-5052 2026-04-30 12:25 2026-04-17 Show GitHub Exploit DB Packet Storm
3748 6.5 警告
Network 		Rapid7 velociraptor Rapid7のvelociraptorにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-5329 2026-04-30 12:25 2026-04-9 Show GitHub Exploit DB Packet Storm
3749 7.5 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-5477 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
3750 5.9 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-5500 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346551 - expinion.net news_manager_lite Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via the (1) ID parameter to more.asp, (2) ID parameter to category_news.asp, or (3… NVD-CWE-Other
CVE-2004-1846 2017-07-11 10:31 2004-03-20 Show GitHub Exploit DB Packet Storm
346552 - - - News Manager Lite 2.5 allows remote attackers to bypass authentication and gain administrator privileges by setting the ADMIN parameter in the NEWS_LOGIN cookie. NVD-CWE-Other
CVE-2004-1847 2017-07-11 10:31 2004-03-20 Show GitHub Exploit DB Packet Storm
346553 - cpanel cpanel Multiple cross-site scripting (XSS) vulnerabilities in cPanel 9.1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to dodelautores.html or (2) handle parame… NVD-CWE-Other
CVE-2004-1849 2017-07-11 10:31 2004-03-24 Show GitHub Exploit DB Packet Storm
346554 - fluidgames the_rage The Rage 1.01 and earlier allows remote attackers to cause a denial of service (infinite loop) via a TCP packet with the port and IP address set to zero. NVD-CWE-Other
CVE-2004-1850 2017-07-11 10:31 2004-03-23 Show GitHub Exploit DB Packet Storm
346555 - dameware_development mini_remote_control_server Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier for remote attackers to obtain sensitive information via brute force guessing. NVD-CWE-Other
CVE-2004-1851 2017-07-11 10:31 2004-03-24 Show GitHub Exploit DB Packet Storm
346556 - atari terminator_3_war_of_the_machines Buffer overflow in Terminator 3: War of the Machines 1.0 allows remote attackers to cause a denial of service via a long ServerInfo variable. NVD-CWE-Other
CVE-2004-1853 2017-07-11 10:31 2004-03-19 Show GitHub Exploit DB Packet Storm
346557 - picophone internet_telephone Buffer overflow in the logging function in Picophone 1.63 and earlier allows remote attackers to execute arbitrary code via a large packet. NVD-CWE-Other
CVE-2004-1854 2017-07-11 10:31 2004-03-24 Show GitHub Exploit DB Packet Storm
346558 - mythic_entertainment dark_age_of_camelot Dark Age of Camelot before 1.68 live patch does not sign the RSA public key, which could allow remote malicious servers to gain sensitive information via a man-in-the-middle attack. NVD-CWE-Other
CVE-2004-1855 2017-07-11 10:31 2004-03-23 Show GitHub Exploit DB Packet Storm
346559 - hp web_jetadmin devices_update_printer_fw_upload.hts in HP Web JetAdmin 7.5.2546, when no password is set, allows remote attackers to upload arbitrary files to the printer directory. NVD-CWE-Other
CVE-2004-1856 2017-07-11 10:31 2004-03-24 Show GitHub Exploit DB Packet Storm
346560 - hp web_jetadmin Directory traversal vulnerability in setinfo.hts in HP Web Jetadmin 7.5.2546 allows remote authenticated attackers to read arbitrary files via a .. (dot dot) in the setinclude parameter. NVD-CWE-Other
CVE-2004-1857 2017-07-11 10:31 2004-03-24 Show GitHub Exploit DB Packet Storm