Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3921	10	緊急 Network	マイクロソフト	Microsoft Purview eDiscovery	Microsoft Purview eDiscovery Elevation of Privilege Vulnerability	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-26150	2026-05-1 10:39	2026-04-23	Show	GitHub Exploit DB Packet Storm

3922	8.8	重要 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおける非公開の機能に関する脆弱性	CWE-912 非公開の機能	CVE-2026-31847	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

3923	9.8	緊急 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおける重要な情報の平文保存に関する脆弱性	CWE-312 重要な情報の平文保存	CVE-2026-31848	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

3924	6.5	警告 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-31849	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

3925	4.9	警告 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおける認証情報の平文保存に関する脆弱性	CWE-256 平文でパスワードを保存	CVE-2026-31850	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

3926	9.8	緊急 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-31851	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

3927	6.1	警告 Network	angular	Angular CLI	angularのAngular CLIにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-33397	2026-05-1 10:38	2026-03-26	Show	GitHub Exploit DB Packet Storm

3928	9.1	緊急 Network	Fatedier	FRP	FatedierのFRPにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-40910	2026-05-1 10:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

3929	8.8	重要 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおける隔離または分類に関する脆弱性	CWE-653 不適切な隔離または分類	CVE-2026-40968	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

3930	5.3	警告 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2026-40969	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346181	-	csdoom	csdoom	Buffer overflow in client/server Doom (csDoom) 0.7 and earlier allows remote attackers to (1) cause a denial of service via a long nickname or teamname to the SV_SetupUserInfo function or (2) execute…	NVD-CWE-Other	CVE-2006-1402	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm

346182	-	csdoom	csdoom_2005	Format string vulnerability in the PrintString function in c_console.cpp in client/server Doom (csDoom) 0.7 and earlier allows remote attackers to cause a denial of service and possibly execute arbit…	NVD-CWE-Other	CVE-2006-1403	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm

346183	-	csdoom	csdoom_2005	<a href="http://cwe.mitre.org/data/definitions/134.html">CWE-134: Use of Externally-Controlled Format String</a>	NVD-CWE-Other	CVE-2006-1403	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm

346184	-	industrial_imagination	blankol	Multiple cross-site scripting (XSS) vulnerabilities in bol.cgi in BlankOL 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) file or (2) function parameter.	NVD-CWE-Other	CVE-2006-1404	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm

346185	-	sheer_vision_technologies	sscms	Cross-site scripting (XSS) vulnerability in search.aspx in SweetSuite.NET Content Management System (ssCMS) 2.1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the ke…	NVD-CWE-Other	CVE-2006-1405	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm

346186	-	uniforum	uniforum	Multiple cross-site scripting (XSS) vulnerabilities in wbadmlog.aspx in uniForum 4.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) txtuser or (2) txtpassword p…	NVD-CWE-Other	CVE-2006-1406	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm

346187	-	webhost_automation	helm_web_hosting_control_panel	Multiple cross-site scripting (XSS) vulnerabilities in Helm Web Hosting Control Panel 3.2.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) txtDomainName parame…	NVD-CWE-Other	CVE-2006-1407	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm

346188	-	webhost_automation	helm_web_hosting_control_panel	These issues are reportedly fixed by the vendor. Version 3.2.10-stable will contain these fixes when it is released. Contact the vendor for further information on obtaining fixes.	NVD-CWE-Other	CVE-2006-1407	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm

346189	-	vavoom	vavoom	Vavoom 1.19.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via (1) a packet with no data or (2) a large packet, which prevents Vavoom from discarding the packet fr…	NVD-CWE-Other	CVE-2006-1408	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm

346190	-	vavoom	vavoom	Buffer overflow in Vavoom 1.19.1 and earlier allows remote attackers to cause a denial of service (application crash) via an invalid comprLength value in a compressed packet.	NVD-CWE-Other	CVE-2006-1409	2017-07-20 10:30	2006-03-28	Show	GitHub Exploit DB Packet Storm