Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4521 5.4 警告
Network 		OpenMage Magento OpenMageのMagentoにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40098 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
4522 7.5 重要
Network 		free5gc free5gc free5GCにおける複数の脆弱性 CWE-285
CWE-636
CVE-2026-40248 2026-04-27 11:21 2026-04-16 Show GitHub Exploit DB Packet Storm
4523 5.8 警告
Network 		free5gc free5gc
udr 		free5GCのfree5GC等の複数製品における例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-40343 2026-04-27 11:21 2026-04-22 Show GitHub Exploit DB Packet Storm
4524 8.8 重要
Network 		OpenMage Magento OpenMageのMagentoにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-40488 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
4525 9.1 緊急
Network 		FreeScout FreeScout FreeScoutにおける複数の脆弱性 CWE-330
CWE-340
CVE-2026-40496 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
4526 8.1 重要
Network 		FreeScout FreeScout FreeScoutにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40497 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
4527 8.8 重要
Network 		PJSIP pjsip PJSIPのpjsipにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40614 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
4528 6.5 警告
Network 		decidim decidim Decidim Free Software AssociationのDecidimにおける不適切な権限設定に関する脆弱性 CWE-266
不適切な権限設定 		CVE-2026-40869 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
4529 9.8 緊急
Network 		PJSIP pjsip PJSIPのpjsipにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-40892 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
4530 7.5 重要
Network 		follow-redirects project Follow Redirects Follow Redirects projectのFollow Redirectsにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-40895 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354391 - novell netware The xvesa code in Novell Netware 6.5 SP2 and SP3 allows remote attackers to redirect the xsession without authentication via a direct request to GUIMirror/Start. NVD-CWE-Other
CVE-2005-0819 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
354392 - - - Microsoft Office InfoPath 2003 SP1 includes sensitive information in the Manifest.xsf file in a custom .xsn form, which allows attackers to obtain printer and network information, obtain the database… NVD-CWE-Other
CVE-2005-0820 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
354393 - citrix metaframe_password_manager Citrix Metaframe Password Manager 2.5 and earlier stores a password in cleartext although it is obfuscated when presented to a user, which allows users to view their secondary passwords even if it is… NVD-CWE-Other
CVE-2005-0822 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
354394 - lgames ltris Buffer overflow in LTris before 1.0.10 allows local users to execute arbitrary code via a crafted highscores file. NVD-CWE-Other
CVE-2005-0825 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
354395 - xzabite dyndnsupdate Multiple buffer overflows in Xzabite DYNDNSUpdate 0.6.15 and earlier, including the ipcheck function in dyndnsupdate.c, allow remote attackers who spoof a dyndns.org server to execute arbitrary code … NVD-CWE-Other
CVE-2005-0830 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
354396 - php-post php-post_web_forum PHP-Post allows remote attackers to spoof the names of other users by registering with a username containing hex-encoded characters. NVD-CWE-Other
CVE-2005-0831 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
354397 - belkin belkin_54g_wireless_router Belkin 54G (F5D7130) wireless router allows remote attackers to access restricted resources by sniffing URIs from UPNP datagrams, then accessing those URIs, which do not require authentication. NVD-CWE-Other
CVE-2005-0833 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
354398 - - - Belkin 54G (F5D7130) wireless router enables SNMP by default in a manner that allows remote attackers to obtain sensitive information. NVD-CWE-Other
CVE-2005-0834 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
354399 - belkin 54g_wireless_router The SNMP service in the Belkin 54G (F5D7130) wireless router allows remote attackers to cause a denial of service via unknown vectors. NVD-CWE-Other
CVE-2005-0835 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
354400 - funlabs 4x4_off-road_adventure_iii
cabelas_big_game_hunter_2004_season
cabelas_big_game_hunter_2005
cabelas_dangerous_hunts
cabelas_deer_hunt_2005_season
revolution
secret_service_in_harms_… 		Multiple games developed by FUN labs, including 4X4 Off-road Adventure III, Big Game Hunter, Dangerous Hunts, Deer Hunt, Revolution, Secret Service, Shadow Force, and US Most Wanted, allow remote att… NVD-CWE-Other
CVE-2005-0849 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm