Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4431	5.4	警告 Network	GFI	GFI HelpDesk	GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-23757	2026-04-30 12:13	2026-04-20	Show	GitHub Exploit DB Packet Storm

4432	5.4	警告 Network	GFI	GFI HelpDesk	GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-23758	2026-04-30 12:13	2026-04-20	Show	GitHub Exploit DB Packet Storm

4433	6.5	警告 Network	Mattermost, Inc.	Focalboard	Mattermost, Inc.のFocalboardにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-25773	2026-04-30 12:13	2026-04-3	Show	GitHub Exploit DB Packet Storm

4434	4.3	警告 Network	Mattermost, Inc.	Focalboard	Mattermost, Inc.のFocalboardにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-28736	2026-04-30 12:13	2026-04-3	Show	GitHub Exploit DB Packet Storm

4435	7.8	重要 Local	DeepCool	DeepCreative	DeepCoolのDeepCreativeにおける安全でない継承されたパーミッションに関する脆弱性	CWE-277 安全でない継承されたパーミッション	CVE-2026-30266	2026-04-30 12:13	2026-04-20	Show	GitHub Exploit DB Packet Storm

4436	7.5	重要 Network	Angeet	ES3 KVM Firmware	AngeetのES3 KVM Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-32297	2026-04-30 12:13	2026-03-17	Show	GitHub Exploit DB Packet Storm

4437	9.1	緊急 Network	Angeet	ES3 KVM Firmware	AngeetのES3 KVM FirmwareにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-32298	2026-04-30 12:13	2026-03-17	Show	GitHub Exploit DB Packet Storm

4438	7.5	重要 Network	オラクル	Oracle Financial Services Customer Screening	オラクルのOracle Financial Services Customer Screeningにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2026-34320	2026-04-30 12:13	2026-04-21	Show	GitHub Exploit DB Packet Storm

4439	5.8	警告 Network	Pavel Zbornik (pavelzbornik)	whisperX REST API	Pavel Zbornik (pavelzbornik)のwhisperX REST APIにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-34981	2026-04-30 12:13	2026-04-6	Show	GitHub Exploit DB Packet Storm

4440	7.5	重要 Network	Distribution	Distribution	Distributionにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-35172	2026-04-30 12:13	2026-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346661	-	freebsd	freebsd	A logic error in FreeBSD kernel 5.4-STABLE and 6.0 causes the kernel to calculate an incorrect buffer length, which causes more data to be copied to userland than intended, which could allow local us…	NVD-CWE-Other	CVE-2006-0380	2017-07-20 10:29	2006-01-26	Show	GitHub Exploit DB Packet Storm

346662	-	freebsd	freebsd	A logic error in the IP fragment cache functionality in pf in FreeBSD 5.3, 5.4, and 6.0, and OpenBSD, when a 'scrub fragment crop' or 'scrub fragment drop-ovl' rule is being used, allows remote attac…	NVD-CWE-Other	CVE-2006-0381	2017-07-20 10:29	2006-01-26	Show	GitHub Exploit DB Packet Storm

346663	-	apple	mac_os_x	Apple Mac OS X 10.4.5 and allows local users to cause a denial of service (crash) via an undocumented system call.	NVD-CWE-Other	CVE-2006-0382	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

346664	-	apple	mac_os_x mac_os_x_server	IPSec when used with VPN networks in Mac OS X 10.4 through 10.4.5 allows remote attackers to cause a denial of service (application crash) via unspecified vectors involving the "incorrect handling of…	NVD-CWE-Other	CVE-2006-0383	2017-07-20 10:29	2006-03-3	Show	GitHub Exploit DB Packet Storm

346665	-	apple	mac_os_x mac_os_x_server	automount in Mac OS X 10.4.5 and earlier allows remote file servers to cause a denial of service (unresponsiveness) or execute arbitrary code via unspecified vectors that cause automount to "mount fi…	NVD-CWE-Other	CVE-2006-0384	2017-07-20 10:29	2006-03-3	Show	GitHub Exploit DB Packet Storm

346666	-	apple	mac_os_x mac_os_x_server	FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when creating a FileVault image, which allows local users to access protected files when FileVault is enabled.	NVD-CWE-Other	CVE-2006-0386	2017-07-20 10:29	2006-03-4	Show	GitHub Exploit DB Packet Storm

346667	-	apple	mac_os_x mac_os_x_server	Stack-based buffer overflow in Safari in Mac OS X 10.4.5 and earlier, and 10.3.9 and earlier, allows remote attackers to execute arbitrary code via unspecified vectors involving a web page with craft…	NVD-CWE-Other	CVE-2006-0387	2017-07-20 10:29	2006-03-7	Show	GitHub Exploit DB Packet Storm

346668	-	apple	mac_os_x mac_os_x_server	Safari in Mac OS X 10.3 before 10.3.9 and 10.4 before 10.4.5 allows remote attackers to redirect users to local files and execute arbitrary JavaScript via unspecified vectors involving HTTP redirecti…	CWE-94 Code Injection	CVE-2006-0388	2017-07-20 10:29	2006-03-4	Show	GitHub Exploit DB Packet Storm

346669	-	apple	mac_os_x mac_os_x_server	Cross-site scripting (XSS) vulnerability in Syndication (Safari RSS) in Mac OS X 10.4 through 10.4.5 allows remote attackers to execute arbitrary JavaScript via unspecified vectors involving RSS feed…	NVD-CWE-Other	CVE-2006-0389	2017-07-20 10:29	2006-03-4	Show	GitHub Exploit DB Packet Storm

346670	-	apple	mac_os_x	Directory traversal vulnerability in the BOM framework in Mac OS X 10.x before 10.3.9 and 10.4 before 10.4.5 allows user-assisted attackers to overwrite or create arbitrary files via an archive that …	NVD-CWE-Other	CVE-2006-0391	2017-07-20 10:29	2006-03-4	Show	GitHub Exploit DB Packet Storm