Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4841 6.1 警告
Network 		generatedata generatedata generatedataにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-70025 2026-05-11 11:02 2026-03-10 Show GitHub Exploit DB Packet Storm
4842 7.5 重要
Network 		pdfmake project pdfmake pdfmakeにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-26801 2026-05-11 11:02 2026-03-10 Show GitHub Exploit DB Packet Storm
4843 7.8 重要
Local 		Luis Novo (lfnovo) Open Notebook Luis Novo (lfnovo)のOpen Notebookにおける複数の脆弱性 CWE-20
CWE-352
CWE-917
CWE-noinfo
CVE-2026-28201 2026-05-11 11:02 2026-05-7 Show GitHub Exploit DB Packet Storm
4844 9.8 緊急
Network 		Xiaomi MIUI File Explorer XiaomiのMIUI File Explorerにおける複数の脆弱性 CWE-303
CWE-862
CVE-2026-29515 2026-05-11 11:02 2026-03-11 Show GitHub Exploit DB Packet Storm
4845 6.1 警告
Network 		WorkflowFirst Software LLC Staff.Wiki WorkflowFirst Software LLCのStaff.Wikiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-29969 2026-05-11 11:02 2026-03-26 Show GitHub Exploit DB Packet Storm
4846 5.4 警告
Network 		spomky-labs webauthn-lib
webauthn-symfony-bundle
webauthn framwork 		spomky-labsのwebauthn-lib等の複数製品における同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-30964 2026-05-11 11:02 2026-03-10 Show GitHub Exploit DB Packet Storm
4847 6.5 警告
Network 		appium Appium/support appiumのAppium/supportにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-30973 2026-05-11 11:02 2026-03-10 Show GitHub Exploit DB Packet Storm
4848 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2025
Microsoft Windows Server 2022
Microsoft Windows 11 24h2
Microsoft Windows 11 25h2
Microsoft … 		リモート デスクトップ クライアントのリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-32157 2026-05-11 11:02 2026-04-14 Show GitHub Exploit DB Packet Storm
4849 10 緊急
Network 		Luis Novo (lfnovo) Open Notebook Luis Novo (lfnovo)のOpen Notebookにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-33587 2026-05-11 11:02 2026-05-7 Show GitHub Exploit DB Packet Storm
4850 8.1 重要
Network 		Luis Novo (lfnovo) Open Notebook Luis Novo (lfnovo)のOpen Notebookにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-33588 2026-05-11 11:02 2026-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346211 - cisco ios
multiservice_platform_2650
multiservice_platform_2650xm
multiservice_platform_2651
multiservice_platform_2651xm
7200_router
7300_router
7500_router
7600_router
catalyst… 		Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue ins… NVD-CWE-Other
CVE-2004-1111 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
346212 - vim_development_group vim VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap,… NVD-CWE-Other
CVE-2004-1138 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
346213 - linux linux_kernel Unknown vulnerability in the 32bit emulation code in Linux 2.4 on AMD64 systems allows local users to gain privileges. NVD-CWE-Other
CVE-2004-1144 2017-10-11 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
346214 - ethereal_group
sgi
conectiva
altlinux
debian
redhat
suse 		ethereal
propack
linux
alt_linux
debian_linux
enterprise_linux
enterprise_linux_desktop
linux_advanced_workstation
suse_linux 		Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java… NVD-CWE-Other
CVE-2004-1145 2017-10-11 10:29 2004-12-15 Show GitHub Exploit DB Packet Storm
346215 - adobe acrobat_reader Format string vulnerability in Adobe Acrobat Reader 6.0.0 through 6.0.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an .ETD docume… NVD-CWE-Other
CVE-2004-1153 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
346216 - mozilla firefox
mozilla 		Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a dif… NVD-CWE-Other
CVE-2004-1156 2017-10-11 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
346217 - kde
mandrakesoft
redhat 		konqueror
mandrake_linux
fedora_core 		Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but… NVD-CWE-Other
CVE-2004-1158 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
346218 - kde kdelibs
konqueror 		Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserte… NVD-CWE-Other
CVE-2004-1165 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
346219 - gnu mailman Cross-site scripting (XSS) vulnerability in the driver script in mailman before 2.1.5 allows remote attackers to inject arbitrary web script or HTML via a URL, which is not properly escaped in the re… NVD-CWE-Other
CVE-2004-1177 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
346220 - libtiff libtiff Integer overflow in the tiffdump utility for libtiff 3.7.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF … NVD-CWE-Other
CVE-2004-1183 2017-10-11 10:29 2005-01-6 Show GitHub Exploit DB Packet Storm