Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4151	5.3	警告 Network	hono	node-server	honoのnode-serverにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39406	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

4152	5.3	警告 Network	hono	hono	honoにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39407	2026-04-23 10:11	2026-04-8	Show	GitHub Exploit DB Packet Storm

4153	7.5	重要 Network	hono	hono	honoにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39408	2026-04-23 10:11	2026-04-8	Show	GitHub Exploit DB Packet Storm

4154	5.3	警告 Network	hono	hono	honoにおける動作順序 (正規化前の検証) に関する脆弱性	CWE-180 不適切な動作順序 (正規化前の検証)	CVE-2026-39409	2026-04-23 10:11	2026-04-8	Show	GitHub Exploit DB Packet Storm

4155	4.8	警告 Network	hono	hono	honoにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-39410	2026-04-23 10:11	2026-04-8	Show	GitHub Exploit DB Packet Storm

4156	6.7	警告 Local	フォーティネット	FortiClientEMS	フォーティネットのFortiClientEMSにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-39809	2026-04-23 10:11	2026-04-14	Show	GitHub Exploit DB Packet Storm

4157	5.5	警告 Local	フォーティネット	FortiClientEMS	フォーティネットのFortiClientEMSにおけるハードコードされた暗号鍵の使用に関する脆弱性	CWE-321 ハードコードされた暗号鍵の使用	CVE-2026-39810	2026-04-23 10:11	2026-04-14	Show	GitHub Exploit DB Packet Storm

4158	4.9	警告 Network	フォーティネット	Fortiweb	フォーティネットのFortiwebにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-39811	2026-04-23 10:11	2026-04-14	Show	GitHub Exploit DB Packet Storm

4159	4.8	警告 Network	フォーティネット	FortiSandbox FortiSandbox Cloud	フォーティネットのFortiSandbox等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-39812	2026-04-23 10:11	2026-04-14	Show	GitHub Exploit DB Packet Storm

4160	6.7	警告 Local	フォーティネット	Fortiweb	フォーティネットのFortiwebにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-39814	2026-04-23 10:11	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348291	-	jed_wing	chm_lib	Stack-based buffer overflow in the _chm_find_in_PMGL function in chm_lib.c for chmlib before 0.36, as used in products such as KchmViewer, allows user-assisted attackers to execute arbitrary code via…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2005-2930	2011-08-2 13:00	2005-10-29	Show	GitHub Exploit DB Packet Storm

348292	-	freebsd nrl	freebsd opie	Off-by-one error in the __opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to c…	CWE-189 Numeric Errors	CVE-2010-1938	2011-07-29 11:37	2010-05-29	Show	GitHub Exploit DB Packet Storm

348293	-	clamav	clamav	The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB fil…	CWE-399 Resource Management Errors	CVE-2005-3501	2011-07-14 13:00	2005-11-5	Show	GitHub Exploit DB Packet Storm

348294	-	isc	dhcpd	The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-ide…	CWE-399 Resource Management Errors	CVE-2006-3122	2011-06-13 13:00	2006-08-10	Show	GitHub Exploit DB Packet Storm

348295	-	nlnetlabs	unbound	Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.	CWE-399 Resource Management Errors	CVE-2010-0969	2011-06-2 13:00	2010-03-17	Show	GitHub Exploit DB Packet Storm

348296	-	trend_micro	serverprotect_earthagent	Trend Micro ServerProtect EarthAgent for Windows Management Console 5.58 and possibly earlier versions, when running with Trend Micro Control Manager 2.5 and 3.0, and Damage Cleanup Server 1.1, allow…	CWE-399 Resource Management Errors	CVE-2005-1928	2011-05-20 13:00	2005-12-15	Show	GitHub Exploit DB Packet Storm

348297	-	eric_fichot	downfile	DownFile 1.3 allows remote attackers to gain administrator privileges via a direct request to (1) update.php, (2) del.php, and (3) add_form.php.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-2819	2011-05-19 13:00	2005-09-8	Show	GitHub Exploit DB Packet Storm

348298	-	realnetworks	realone_player realplayer	Unquoted Windows search path vulnerability in RealNetworks RealPlayer 10.5 6.0.12.1040 through 6.0.12.1348, RealPlayer 10, RealOne Player v2, RealOne Player v1, and RealPlayer 8 before 20060322 might…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-2936	2011-05-19 13:00	2005-11-18	Show	GitHub Exploit DB Packet Storm

348299	-	horde	horde	Unspecified cross-site scripting (XSS) vulnerability in Horde before 2.2.9 allows remote attackers to inject arbitrary web script or HTML via "not properly escaped error messages".	CWE-79 Cross-site Scripting	CVE-2005-3570	2011-05-19 13:00	2005-11-16	Show	GitHub Exploit DB Packet Storm

348300	-	sun	java_communications_services_delegated_administrator	Unspecified vulnerability in System Communications Services 6 Delegated Administrator 2005Q1 in Sun Java System Messaging Server 2005Q1 allows remote attackers to obtain the Top-Level Administrator (…	NVD-CWE-noinfo	CVE-2005-4045	2011-05-19 13:00	2005-12-7	Show	GitHub Exploit DB Packet Storm