Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4761	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23445	2026-04-27 11:24	2026-04-3	Show	GitHub Exploit DB Packet Storm

4762	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23446	2026-04-27 11:23	2026-04-3	Show	GitHub Exploit DB Packet Storm

4763	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2026-23447	2026-04-27 11:23	2026-04-3	Show	GitHub Exploit DB Packet Storm

4764	4.8	警告 Network	OctoberCMS	October	OctoberCMSのOctoberにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-25133	2026-04-27 11:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

4765	8.1	重要 Network	OpenMage	Magento	OpenMageのMagentoにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-25524	2026-04-27 11:23	2026-04-20	Show	GitHub Exploit DB Packet Storm

4766	4.9	警告 Network	OpenMage	Magento	OpenMageのMagentoにおける複数の脆弱性	CWE-184 CWE-22	CVE-2026-25525	2026-04-27 11:23	2026-04-20	Show	GitHub Exploit DB Packet Storm

4767	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Server Update Services (WSUS) の特権の昇格の脆弱性	CWE-362 CWE-416	CVE-2026-26174	2026-04-27 11:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

4768	4.6	警告 Physics	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows ブートマネージャーのセキュリティ機能のバイパスの脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-26175	2026-04-27 11:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

4769	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows クライアント側のキャッシュドライバー (csc.sys) の特権昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-26176	2026-04-27 11:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

4770	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-26177	2026-04-27 11:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347301	-	nicecoder	idesk	SQL injection vulnerability in faq.php in Nicecoder iDesk 1.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.	NVD-CWE-Other	CVE-2005-3843	2017-07-11 10:33	2005-11-27	Show	GitHub Exploit DB Packet Storm

347302	-	ezinvoiceinc	ez_invoice_inc	SQL injection vulnerability in invoices.php in EZ Invoice Inc 2.0 allows remote attackers to execute arbitrary SQL commands via the i parameter. NOTE: the vendor has stated "EZ Invoice, Inc has a pa…	CWE-89 SQL Injection	CVE-2005-3845	2017-07-11 10:33	2005-11-27	Show	GitHub Exploit DB Packet Storm

347303	-	fscripts	fantastic_news	SQL injection vulnerability in news.php in Fantastic News 2.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter.	NVD-CWE-Other	CVE-2005-3846	2017-07-11 10:33	2005-11-27	Show	GitHub Exploit DB Packet Storm

347304	-	unalz	unalz	Buffer overflow in unalz before 0.53 allows remote attackers to execute arbitrary code via long file names in ALZ archives.	NVD-CWE-Other	CVE-2005-3862	2017-07-11 10:33	2005-11-29	Show	GitHub Exploit DB Packet Storm

347305	-	dillo	dillo_web_browser	Format string vulnerability in the a_Interface_msg function in Dillo before 0.8.3-r4 allows remote attackers to execute arbitrary code via format string specifiers in a web page.	NVD-CWE-Other	CVE-2005-0012	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

347306	-	crosswire_bible_society	sword	diatheke.pl in Sword 1.5.7a allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.	NVD-CWE-Other	CVE-2005-0015	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

347307	-	gatos	gatos	Buffer overflow in the exported_display function in xatitv in gatos before 0.0.5 allows local users to execute arbitrary code.	NVD-CWE-Other	CVE-2005-0016	2017-07-11 10:32	2005-04-14	Show	GitHub Exploit DB Packet Storm

347308	-	yongguang_zhang	hztty	Unknown vulnerability in hztty 2.0 and earlier allows local users to execute arbitrary commands.	NVD-CWE-Other	CVE-2005-0019	2017-07-11 10:32	2005-04-27	Show	GitHub Exploit DB Packet Storm

347309	-	playmidi mandrakesoft	playmidi mandrake_linux mandrake_linux_corporate_server	Buffer overflow in playmidi before 2.4 allows local users to execute arbitrary code.	NVD-CWE-Other	CVE-2005-0020	2017-07-11 10:32	2005-04-14	Show	GitHub Exploit DB Packet Storm

347310	-	gnome	libvte4 libzvt2	gnome-pty-helper in GNOME libzvt2 and libvte4 allows local users to spoof the logon hostname via a modified DISPLAY environment variable. NOTE: the severity of this issue has been disputed.	NVD-CWE-Other	CVE-2005-0023	2017-07-11 10:32	2005-10-6	Show	GitHub Exploit DB Packet Storm