Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3951 9.8 緊急
Network 		BMC Software Control-M Managed File Transfer BMC SoftwareのControl-M Managed File Transferにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-23781 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
3952 7.5 重要
Network 		BMC Software Control-M Managed File Transfer BMC SoftwareのControl-M Managed File Transferにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-23782 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
3953 9.9 緊急
Network 		Doorman Doorman Doormanにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-30269 2026-04-30 12:14 2026-04-20 Show GitHub Exploit DB Packet Storm
3954 7.5 重要
Network 		PowerDNS PowerDNS Recursor
dnsdist
PowerDNS Authoritative Server 		PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33257 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3955 7.5 重要
Network 		PowerDNS PowerDNS Recursor
dnsdist
PowerDNS Authoritative Server 		PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33260 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3956 8.8 重要
Network 		litellm litellm LiteLLMにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-40217 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
3957 7.8 重要
Local 		radare radare2 radareのradare2におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-40517 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3958 6.7 警告
Local 		The GnuPG Project Libgcrypt The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-41989 2026-04-30 12:14 2026-04-23 Show GitHub Exploit DB Packet Storm
3959 9.8 緊急
Network 		OFFIS DCMTK OFFISのDCMTKにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-5663 2026-04-30 12:14 2026-04-6 Show GitHub Exploit DB Packet Storm
3960 5.5 警告
Local 		Angry IP Scanner Angry IP Scanner Angry IP Scannerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25262 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346481 - scriptscenter ezupload_pro SQL injection vulnerability in ezUpload Pro 2.2 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified search module parameters. NVD-CWE-Other
CVE-2005-4309 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
346482 - almondsoft almond_personals SQL injection vulnerability in index.php in AlmondSoft Almond Personals 4.05 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2005-4313 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
346483 - hitachi cosminexus_collaboration_portal
groupmax_collaboration_portal
groupmax_collaboration_web_client 		Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Cosminexus Collaboration Portal 06-00 through 06-10-/B, Groupmax Collaboration Portal 07-00 through 07-10-/B, and Groupmax Collaboration… NVD-CWE-Other
CVE-2005-4322 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
346484 - hitachi cosminexus_collaboration_portal
groupmax_collaboration_portal
groupmax_collaboration_web_client 		Unspecified vulnerability in Hitachi Cosminexus Collaboration Portal 06-00 through 06-10-/B, Groupmax Collaboration Portal 07-00 through 07-10-/B, and Groupmax Collaboration Web Client 07-00 through … NVD-CWE-Other
CVE-2005-4323 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
346485 - driverse driverse Multiple unspecified vulnerabilities in Driverse before 0.56b have unknown impact and attack vectors, related to (1) a "ptrace exploit" and (2) "some other potential security problems." NVD-CWE-Other
CVE-2005-4325 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
346486 - apc powerchute_network_shutdown The web interface for American Power Conversion (APC) PowerChute Network Shutdown performs all communication in cleartext (base64-encoded), which allows remote attackers to sniff authentication crede… NVD-CWE-Other
CVE-2005-4326 2017-07-20 10:29 2005-12-17 Show GitHub Exploit DB Packet Storm
346487 - anthony_boyd phpbb_blog Invalid SQL syntax error in blog.php in phpBB Blog 2.2.2 and earlier allows remote attackers to obtain the full path of the application via an invalid permalink parameter to index.php, which produces… NVD-CWE-Other
CVE-2005-4346 2017-07-20 10:29 2005-12-19 Show GitHub Exploit DB Packet Storm
346488 - dragonfly
freebsd
linux
openbsd 		dragonfly
freebsd
linux_kernel
openbsd 		The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another… NVD-CWE-Other
CVE-2005-4351 2017-07-20 10:29 2005-12-31 Show GitHub Exploit DB Packet Storm
346489 - box_uk amaxus Directory traversal vulnerability in Amaxus 3 and earlier allows remote attackers to access arbitrary files via ".." sequences in the change parameter. NVD-CWE-Other
CVE-2005-4376 2017-07-20 10:29 2005-12-20 Show GitHub Exploit DB Packet Storm
346490 - - - Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote attackers to inject arbitrary web script or HTML via the (1) sort_mode parameter to (a) fisheye/list_g… NVD-CWE-Other
CVE-2005-4379 2017-07-20 10:29 2005-12-20 Show GitHub Exploit DB Packet Storm