Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3771	7.5	重要 Network	saleor	saleor	saleorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33756	2026-04-21 10:48	2026-04-8	Show	GitHub Exploit DB Packet Storm

3772	3.7	低 Network	Apostrophe Technologies	ApostropheCMS	Apostrophe TechnologiesのApostropheCMSにおけるタイミングの違いに起因する情報漏えいに関する脆弱性	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-33877	2026-04-21 10:48	2026-04-15	Show	GitHub Exploit DB Packet Storm

3773	5.3	警告 Network	Apostrophe Technologies	ApostropheCMS	Apostrophe TechnologiesのApostropheCMSにおける複数の脆弱性	CWE-200 CWE-863	CVE-2026-33888	2026-04-21 10:48	2026-04-15	Show	GitHub Exploit DB Packet Storm

3774	5.4	警告 Network	Apostrophe Technologies	ApostropheCMS	Apostrophe TechnologiesのApostropheCMSにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-33889	2026-04-21 10:48	2026-04-15	Show	GitHub Exploit DB Packet Storm

3775	6.5	警告 Adjacent	Ellanetworks	Ella Core	EllanetworksのElla CoreにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-33903	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

3776	6.5	警告 Adjacent	Ellanetworks	Ella Core	EllanetworksのElla Coreにおけるデッドロックに関する脆弱性	CWE-833 デッドロック	CVE-2026-33904	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

3777	7.2	重要 Network	Ellanetworks	Ella Core	EllanetworksのElla Coreにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-33906	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

3778	6.5	警告 Adjacent	Ellanetworks	Ella Core	EllanetworksのElla CoreにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-33907	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

3779	4.3	警告 Network	Apache Software Foundation	PDFBox	Apache Software FoundationのPDFBoxにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-33929	2026-04-21 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

3780	5.3	警告 Local	Anthropic PBC	Claude SDK for Python	Anthropic PBCのClaude SDK for Pythonにおける複数の脆弱性	CWE-367 CWE-59	CVE-2026-34452	2026-04-21 10:48	2026-03-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348001	-	mantis	mantis	Unspecified "port injection" vulnerabilities in filters in Mantis 1.0.0rc3 and earlier have unknown impact and attack vectors. NOTE: due to a lack of relevant details in the vendor changelog, which …	NVD-CWE-Other	CVE-2005-4520	2011-03-8 11:28	2005-12-28	Show	GitHub Exploit DB Packet Storm

348002	-	-	-	CRLF injection vulnerability in Mantis 1.0.0rc3 and earlier allows remote attackers to modify HTTP headers and conduct HTTP response splitting attacks via (1) the return parameter in login_cookie_tes…	NVD-CWE-Other	CVE-2005-4521	2011-03-8 11:28	2005-12-28	Show	GitHub Exploit DB Packet Storm

348003	-	mantis	mantis	Multiple cross-site scripting (XSS) vulnerabilities in the view_filters_page.php filters script in Mantis 1.0.0rc3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1…	NVD-CWE-Other	CVE-2005-4522	2011-03-8 11:28	2005-12-28	Show	GitHub Exploit DB Packet Storm

348004	-	mantis	mantis	Mantis 1.0.0rc3 and earlier discloses private bugs via public RSS feeds, which allows remote attackers to obtain sensitive information.	NVD-CWE-Other	CVE-2005-4523	2011-03-8 11:28	2005-12-28	Show	GitHub Exploit DB Packet Storm

348005	-	-	-	Mantis 1.0.0rc3 does not properly handle "Make note private" when a bug is being resolved, which has unknown impact and attack vectors, probably related to an information leak.	NVD-CWE-Other	CVE-2005-4524	2011-03-8 11:28	2005-12-28	Show	GitHub Exploit DB Packet Storm

348006	-	chatspot	chatspot	SQL injection vulnerability in the Chatspot 2.0.0a7 module for phpBB allows remote attackers to execute arbitrary SQL commands via unknown vectors.	NVD-CWE-Other	CVE-2005-4528	2011-03-8 11:28	2005-12-28	Show	GitHub Exploit DB Packet Storm

348007	-	chatspot	chatspot	The Chatspot 2.0.0a7 module for phpBB might allow remote attackers to impersonate other users via unknown vectors.	NVD-CWE-Other	CVE-2005-4529	2011-03-8 11:28	2005-12-28	Show	GitHub Exploit DB Packet Storm

348008	-	rws	statistics_counter	SQL injection vulnerability in the "user area" in RWS Statistics Counter before 2.4.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors.	NVD-CWE-Other	CVE-2005-4548	2011-03-8 11:28	2005-12-28	Show	GitHub Exploit DB Packet Storm

348009	-	adtran	netvanta	The Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to cause a denial of service via crafted IKE packets, as demonstrated by t…	NVD-CWE-Other	CVE-2005-4564	2011-03-8 11:28	2005-12-29	Show	GitHub Exploit DB Packet Storm

348010	-	adtran	netvanta	Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string…	NVD-CWE-Other	CVE-2005-4565	2011-03-8 11:28	2005-12-29	Show	GitHub Exploit DB Packet Storm