Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4941	5.4	警告 Network	オラクル	PeopleSoft Enterprise HCM Shared Components	オラクルのPeoplesoft Enterprise Hcm Shared Componentsにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-22019	2026-04-24 11:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

4942	6.1	警告 Adjacent	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-2399	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

4943	4.3	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial ShutdownにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-2400	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

4944	5	警告 Local	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-2401	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

4945	5.3	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-2402	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

4946	4.3	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおける入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2026-2403	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

4947	5.3	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-2404	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

4948	6.5	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-2405	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

4949	9.8	緊急 Network	OpenAEV	OpenAEV	OpenAEVにおけるパスワード管理機能に関する脆弱性	CWE-640 パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み	CVE-2026-24467	2026-04-24 11:38	2026-04-20	Show	GitHub Exploit DB Packet Storm

4950	7.5	重要 Network	Vexa AI, Inc.	Vexa	Vexa AI, Inc.のVexaにおける複数の脆弱性	CWE-306 CWE-862	CVE-2026-25058	2026-04-24 11:37	2026-04-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349821	-	oracle	database_server	Directory traversal vulnerability in Oracle Database Server 8i and 9i allows remote attackers to read or rename arbitrary files via "\\.\\.." (modified dot dot backslash) sequences to UTL_FILE funct…	NVD-CWE-Other	CVE-2005-0701	2016-10-18 12:13	2005-03-7	Show	GitHub Exploit DB Packet Storm

349822	-	gamearena	experience2	PHP remote file inclusion vulnerability in modules.php in eXPerience2 allows remote attackers to execute arbitrary PHP code by modifying the file parameter to reference a URL on a remote web server t…	NVD-CWE-Other	CVE-2005-0721	2016-10-18 12:13	2005-05-2	Show	GitHub Exploit DB Packet Storm

349823	-	seth_m._knorr	biz_mail_form	CRLF injection vulnerability in bizmail.cgi in Biz Mail Form before 2.2 allows remote attackers to bypass the email check and send spam e-mail via CRLF sequences and forged mail headers in the email …	NVD-CWE-Other	CVE-2005-0493	2016-10-18 12:12	2005-05-2	Show	GitHub Exploit DB Packet Storm

349824	-	seth_m._knorr	biz_mail_form	Upgrade to newest version.	NVD-CWE-Other	CVE-2005-0493	2016-10-18 12:12	2005-05-2	Show	GitHub Exploit DB Packet Storm

349825	-	avaya	ip_office_phone_manager ip_soft_phone	The Avaya IP Office Phone Manager, and other products such as the IP Softphone, stores sensitive data in cleartext in a registry key, which allows local and possibly remote users to steal usernames a…	NVD-CWE-Other	CVE-2005-0506	2016-10-18 12:12	2005-03-14	Show	GitHub Exploit DB Packet Storm

349826	-	gd_software	sd_server	Directory traversal vulnerability in SD Server 4.0.70 and earlier allows remote attackers to read arbitrary files via .. sequences in an HTTP request.	NVD-CWE-Other	CVE-2005-0507	2016-10-18 12:12	2005-03-14	Show	GitHub Exploit DB Packet Storm

349827	-	microsoft mono	.net_framework mono	Multiple cross-site scripting (XSS) vulnerabilities in the Mono 1.0.5 implementation of ASP.NET (.Net) allow remote attackers to inject arbitrary HTML or web script via Unicode representations for AS…	NVD-CWE-Other	CVE-2005-0509	2016-10-18 12:12	2005-03-14	Show	GitHub Exploit DB Packet Storm

349828	-	jelsoft	vbulletin	misc.php for vBulletin 3.0.6 and earlier, when "Add Template Name in HTML Comments" is enabled, allows remote attackers to execute arbitrary PHP code via nested variables in the template parameter.	NVD-CWE-Other	CVE-2005-0511	2016-10-18 12:12	2005-02-21	Show	GitHub Exploit DB Packet Storm

349829	-	pmachine	pmachine_pro	PHP remote file inclusion vulnerability in mail_autocheck.php in the Email This Entry add-on for pMachine Pro 2.4, and possibly other versions including pMachine Free, allows remote attackers to exec…	NVD-CWE-Other	CVE-2005-0513	2016-10-18 12:12	2005-02-19	Show	GitHub Exploit DB Packet Storm

349830	-	twiki	imagegalleryplugin	The ImageGalleryPlugin (ImageGalleryPlugin.pm) in Twiki allows remote attackers to execute arbitrary commands via certain commands that generate thumbnails.	NVD-CWE-Other	CVE-2005-0516	2016-10-18 12:12	2005-02-23	Show	GitHub Exploit DB Packet Storm