Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3981 6.5 警告
Network 		オラクル Oracle Life Sciences InForm オラクルのOracle Life Sciences InFormにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-34324 2026-04-27 11:22 2026-04-21 Show GitHub Exploit DB Packet Storm
3982 6.8 警告
Local 		オラクル Oracle Financial Services Analytical Applications Infrastructure オラクルのOracle Financial Services Analytical Applications Infrastructureにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-34325 2026-04-27 11:22 2026-04-21 Show GitHub Exploit DB Packet Storm
3983 8.8 重要
Network 		jellyfin jellyfin jellyfinにおける複数の脆弱性 CWE-187
CWE-20
CWE-22
CVE-2026-35031 2026-04-27 11:22 2026-04-14 Show GitHub Exploit DB Packet Storm
3984 6.5 警告
Network 		jellyfin jellyfin jellyfinにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-35034 2026-04-27 11:22 2026-04-14 Show GitHub Exploit DB Packet Storm
3985 8.8 重要
Network 		Glances project Glances Nicolas Hennion (nicolargo)のGlancesにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-35587 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
3986 9.3 緊急
Network 		nanobot nanobot nanobotにおける WebSocket でのオリジン検証の欠如に関する脆弱性 CWE-1385
WebSocket でのオリジン検証の欠如 		CVE-2026-35589 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
3987 8.8 重要
Network 		webkul krayin crm webkulのkrayin crmにおける複数の脆弱性 CWE-269
CWE-639
CVE-2026-38529 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
3988 8.1 重要
Network 		webkul krayin crm webkulのkrayin crmにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-38530 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
3989 8.1 重要
Network 		webkul krayin crm webkulのkrayin crmにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-38532 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
3990 5.4 警告
Network 		Istio Istio Istioにおける複数の脆弱性 CWE-185
CWE-863
CVE-2026-39350 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347451 - bluecoat reporter templates.admin.users.user_form_processing in Blue Coat Reporter before 7.1.2 allows authenticated users to gain administrator privileges via an HTTP POST that sets volatile.user.administrator to tru… NVD-CWE-Other
CVE-2005-1708 2016-10-18 12:22 2005-05-24 Show GitHub Exploit DB Packet Storm
347452 - bluecoat reporter Multiple cross-site scripting (XSS) vulnerabilities in Blue Coat Reporter before 7.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the username in an Add User window or (2) … NVD-CWE-Other
CVE-2005-1710 2016-10-18 12:22 2005-05-24 Show GitHub Exploit DB Packet Storm
347453 - apple mac_os_x_server launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory. NVD-CWE-Other
CVE-2005-1725 2016-10-18 12:22 2005-06-8 Show GitHub Exploit DB Packet Storm
347454 - metro_marketing cookie_cart Cookie Cart allows remote attackers to read the Order Notification list via the testmycgi and path parameters to testmy.cgi. NVD-CWE-Other
CVE-2005-1732 2016-10-18 12:22 2005-05-24 Show GitHub Exploit DB Packet Storm
347455 - metro_marketing cookie_cart Cookie Cart stores the password file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and encrypted passwords via a direct request to pa… NVD-CWE-Other
CVE-2005-1733 2016-10-18 12:22 2005-05-24 Show GitHub Exploit DB Packet Storm
347456 - gforge gforge viewFile.php in the scm component of Gforge before 4.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the file_name parameter. NVD-CWE-Other
CVE-2005-1752 2016-10-18 12:22 2005-12-31 Show GitHub Exploit DB Packet Storm
347457 - php_poll_creator php_poll_creator PHP remote file inclusion vulnerability in poll_vote.php in PHP Poll Creator 1.01 allows remote attackers to execute arbitrary PHP code via the relativer_pfad parameter. NVD-CWE-Other
CVE-2005-1755 2016-10-18 12:22 2005-12-31 Show GitHub Exploit DB Packet Storm
347458 - shtool shtool Race condition in shtool 2.0.1 and earlier allows local users to modify or create arbitrary files via a symlink attack on temporary files after they have been created, a different vulnerability than … NVD-CWE-Other
CVE-2005-1759 2016-10-18 12:22 2005-06-28 Show GitHub Exploit DB Packet Storm
347459 - alwil avast_antivirus Buffer overflow in the Aavmker4 device driver in Avast! Antivirus 4.6 and possibly other versions allows local users to cause a denial of service (system crash) and possibly execute arbitrary code vi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-1770 2016-10-18 12:22 2005-05-31 Show GitHub Exploit DB Packet Storm
347460 - - - Unknown vulnerability in HP-UX trusted systems B.11.00 through B.11.23 allows remote attackers to gain unauthorized access, possibly involving remshd and/or telnet -t. NVD-CWE-Other
CVE-2005-1771 2016-10-18 12:22 2005-05-31 Show GitHub Exploit DB Packet Storm