Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4761 9.1 緊急
Network 		Open JS Foundation fastify/middie Open JS Foundationの@fastify/middieにおける解釈の競合に関する脆弱性 CWE-436
解釈の競合 		CVE-2026-33804 2026-04-24 11:30 2026-04-16 Show GitHub Exploit DB Packet Storm
4762 4.3 警告
Network 		LangGenius, Inc. Dify LangGenius, Inc.のDifyにおける複数の脆弱性 CWE-284
CWE-863
CVE-2026-34082 2026-04-24 11:30 2026-04-20 Show GitHub Exploit DB Packet Storm
4763 8.6 重要
Network 		Chamilo Association Chamilo LMS Chamilo AssociationのChamilo LMSにおける複数の脆弱性 CWE-306
CWE-918
CVE-2026-34160 2026-04-24 11:30 2026-04-14 Show GitHub Exploit DB Packet Storm
4764 5.4 警告
Network 		Chamilo Association Chamilo LMS Chamilo AssociationのChamilo LMSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-34161 2026-04-24 11:30 2026-04-14 Show GitHub Exploit DB Packet Storm
4765 9.1 緊急
Network 		Canonical LXD CanonicalのLXDにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-34177 2026-04-24 11:30 2026-04-9 Show GitHub Exploit DB Packet Storm
4766 9.1 緊急
Network 		Canonical LXD CanonicalのLXDにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-34178 2026-04-24 11:30 2026-04-9 Show GitHub Exploit DB Packet Storm
4767 9.1 緊急
Network 		Canonical LXD CanonicalのLXDにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-34179 2026-04-24 11:30 2026-04-9 Show GitHub Exploit DB Packet Storm
4768 5.4 警告
Network 		Docmost Docmost Docmostにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-34212 2026-04-24 11:30 2026-04-14 Show GitHub Exploit DB Packet Storm
4769 5.4 警告
Network 		Docmost Docmost Docmostにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-34213 2026-04-24 11:30 2026-04-14 Show GitHub Exploit DB Packet Storm
4770 6.5 警告
Network 		オラクル PeopleSoft Enterprise HCM Absence Management オラクルのPeopleSoft Enterprise HCM Absence Managementにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-34266 2026-04-24 11:30 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350011 - snitz_communications snitz_forums_2000 Cross-site scripting (XSS) vulnerability in post.asp in Snitz Forums 2000 3.4.05 allows remote attackers to inject arbitrary web script or HTML via the type parameter in a Topic method. NVD-CWE-Other
CVE-2005-3411 2011-03-8 11:26 2005-11-2 Show GitHub Exploit DB Packet Storm
350012 - 10-4_aps asp_fast_forum Cross-site scripting (XSS) vulnerability in error.asp in ASP Fast Forum allows remote attackers to inject arbitrary web script or HTML via the error parameter. NVD-CWE-Other
CVE-2005-3422 2011-03-8 11:26 2005-11-2 Show GitHub Exploit DB Packet Storm
350013 - gnu gnump3d Cross-site scripting (XSS) vulnerability in GNUMP3D before 2.9.5 allows remote attackers to inject arbitrary web script or HTML via 404 error pages, a different vulnerability than CVE-2005-3425. NVD-CWE-Other
CVE-2005-3424 2011-03-8 11:26 2005-11-2 Show GitHub Exploit DB Packet Storm
350014 - f-secure f-secure_anti-virus
internet_gatekeeper 		Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Gatekeeper 6.40 to 6.42 allows limited remote attackers to bypass Web Console authentication and read… NVD-CWE-Other
CVE-2005-3468 2011-03-8 11:26 2005-11-3 Show GitHub Exploit DB Packet Storm
350015 - - - Directory traversal vulnerability in the ruleset view for MailWatch for MailScanner 1.0.2 allows remote attackers to access arbitrary files. NVD-CWE-Other
CVE-2005-3471 2011-03-8 11:26 2005-11-3 Show GitHub Exploit DB Packet Storm
350016 - sun java_system_communications_express Unspecified vulnerability in Sun Java System Communications Express 2005Q1 and 2004Q2 allows local and remote attackers to read sensitive information from configuration files. NVD-CWE-Other
CVE-2005-3472 2011-03-8 11:26 2005-11-3 Show GitHub Exploit DB Packet Storm
350017 - cisco aironet_ap1131
aironet_ap1200
aironet_ap1240 		Cisco 1200, 1131, and 1240 series Access Points, when operating in Lightweight Access Point Protocol (LWAPP) mode and controlled by 2000 and 4400 series Airespace WLAN controllers running 3.1.59.24, … NVD-CWE-Other
CVE-2005-3482 2011-03-8 11:26 2005-11-3 Show GitHub Exploit DB Packet Storm
350018 - clam_anti-virus clamav The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CA… NVD-CWE-Other
CVE-2005-3500 2011-03-8 11:26 2005-11-5 Show GitHub Exploit DB Packet Storm
350019 - ibm aix Buffer overflow in swcons in IBM AIX 5.2, when debug malloc is enabled, allows remote attackers to cause a core dump and possibly execute arbitrary code. NVD-CWE-Other
CVE-2005-3504 2011-03-8 11:26 2005-11-5 Show GitHub Exploit DB Packet Storm
350020 - cutephp cutenews Directory traversal vulnerability in CuteNews 1.4.1 allows remote attackers to include arbitrary files, execute code, and gain privileges via "../" sequences in the template parameter to (1) show_arc… NVD-CWE-Other
CVE-2005-3507 2011-03-8 11:26 2005-11-6 Show GitHub Exploit DB Packet Storm