Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4421 7.5 重要
Network 		Intelbras ICIP 30 Firmware IntelbrasのICIP 30 Firmwareにおける複数の脆弱性 CWE-255
CWE-256
CWE-522
CVE-2025-13187 2026-02-6 10:41 2025-11-14 Show GitHub Exploit DB Packet Storm
4422 5.3 警告
Network 		Zeit, Inc. AI Vercel, Inc. (旧 Zeit, Inc.)のAIにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2025-48985 2026-02-6 10:41 2025-11-7 Show GitHub Exploit DB Packet Storm
4423 5.5 警告
Local 		Open JS Foundation ESLint Open JS FoundationのESLintにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2025-50537 2026-02-6 10:40 2026-01-26 Show GitHub Exploit DB Packet Storm
4424 6.1 警告
Network 		nuxt Nuxt Devtools nuxtのNuxt Devtoolsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-52662 2026-02-6 10:40 2025-11-7 Show GitHub Exploit DB Packet Storm
4425 7.8 重要
Local 		Synology Inc. BeeDrive Synology Inc.のBeeDriveにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2025-54158 2026-02-6 10:40 2025-12-4 Show GitHub Exploit DB Packet Storm
4426 7.5 重要
Network 		Synology Inc. BeeDrive Synology Inc.のBeeDriveにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-54159 2026-02-6 10:40 2025-12-4 Show GitHub Exploit DB Packet Storm
4427 7.8 重要
Local 		Synology Inc. BeeDrive Synology Inc.のBeeDriveにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-54160 2026-02-6 10:40 2025-12-4 Show GitHub Exploit DB Packet Storm
4428 9.8 緊急
Network 		ThemeMove UniCamp ThemeMoveのWordPress用UniCampにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-54701 2026-02-6 10:40 2025-08-14 Show GitHub Exploit DB Packet Storm
4429 5.3 警告
Network 		Codeshare Codeshare Codeshareにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-60925 2026-02-6 10:40 2025-11-4 Show GitHub Exploit DB Packet Storm
4430 6.1 警告
Network 		Zucchetti s.p.a. Infinity Zucchetti
ZMaintenance Infinity 		Zucchetti s.p.a.のZMaintenance Infinity等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-61431 2026-02-6 10:40 2025-11-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351501 - groove groove_workspace
virtual_office 		Multiple cross-site scripting (XSS) vulnerabilities in Groove Mobile Workspace in Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 allo… NVD-CWE-Other
CVE-2005-1676 2008-09-6 05:49 2005-05-20 Show GitHub Exploit DB Packet Storm
351502 - groove groove_workspace
virtual_office 		Unknown vulnerability in Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 allows remote attackers to bypass restrictions on COM objects. NVD-CWE-Other
CVE-2005-1677 2008-09-6 05:49 2005-05-20 Show GitHub Exploit DB Packet Storm
351503 - groove groove_workspace
virtual_office 		Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 does not properly display file extensions on attached or embedded files in a compound … NVD-CWE-Other
CVE-2005-1678 2008-09-6 05:49 2005-05-20 Show GitHub Exploit DB Packet Storm
351504 - sap sap_r_3 Directory traversal vulnerability in Internet Graphics Server in SAP before 6.40 Patch 11 allows remote attackers to read arbitrary files via ".." sequences in an HTTP GET request. NVD-CWE-Other
CVE-2005-1691 2008-09-6 05:49 2005-07-26 Show GitHub Exploit DB Packet Storm
351505 - mailscanner mailscanner Unknown vulnerability in MailScanner 4.41.3 and earlier, related to "incomplete reporting of viruses in zip files," allows remote attackers to bypass virus detection. NVD-CWE-Other
CVE-2005-1706 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
351506 - mailscanner mailscanner The vendor has released a fixed version (4.42.2) NVD-CWE-Other
CVE-2005-1706 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
351507 - clam_anti-virus
gibraltar
squid 		clamav
gibraltar_firewall
squid 		Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses f… NVD-CWE-Other
CVE-2005-1711 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
351508 - sy9 serendipity Unknown vulnerability in Serendipity 0.8, when used with multiple authors, allows unprivileged authors to upload arbitrary media files. NVD-CWE-Other
CVE-2005-1712 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
351509 - s9y serendipity Multiple cross-site scripting (XSS) vulnerabilities in Serendipity 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) templatedropdown and (2) shoutbox plugins. NVD-CWE-Other
CVE-2005-1713 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
351510 - ej3 topo Cross-site scripting (XSS) vulnerability in index.php for TOPo 2.2 (2.2.178) allows remote attackers to inject arbitrary web script or HTML via the (1) m, (2) s, (3) ID, or (4) t parameters, or the (… NVD-CWE-Other
CVE-2005-1715 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm