Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4951	8.8	重要 Network	Dolibarr ERP & CRM	dolibarr erp/crm	Dolibarr ERP & CRMのdolibarr erp/crmにおける複数の脆弱性	CWE-284 CWE-94	CVE-2026-31018	2026-04-27 11:23	2026-04-21	Show	GitHub Exploit DB Packet Storm

4952	8.8	重要 Network	Dolibarr ERP & CRM	dolibarr erp/crm	Dolibarr ERP & CRMのdolibarr erp/crmにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-31019	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

4953	3.5	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性	CWE-1021 レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限	CVE-2026-3254	2026-04-27 11:22	2026-04-22	Show	GitHub Exploit DB Packet Storm

4954	9.9	緊急 Network	Linux Foundation	Spinnaker	Linux FoundationのSpinnakerにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-32604	2026-04-27 11:22	2026-04-20	Show	GitHub Exploit DB Packet Storm

4955	9.9	緊急 Network	Linux Foundation	Spinnaker	Linux FoundationのSpinnakerにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-32613	2026-04-27 11:22	2026-04-20	Show	GitHub Exploit DB Packet Storm

4956	7.8	重要 Local	Podman project	podman	Podman projectのpodmanにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-33414	2026-04-27 11:22	2026-04-14	Show	GitHub Exploit DB Packet Storm

4957	6.1	警告 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおける複数の脆弱性	CWE-284 CWE-601	CVE-2026-34283	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

4958	6.1	警告 Network	オラクル	Oracle Business Process Management Suite	オラクルのOracle Business Process Management Suiteにおける複数の脆弱性	CWE-284 CWE-601	CVE-2026-34284	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

4959	8.7	重要 Network	オラクル	Oracle HTTP Server	オラクルのOracle HTTP Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-34291	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

4960	7.2	重要 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-34292	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347811	-	web_crossing_inc	web_crossing	Cross-site scripting (XSS) vulnerability in WebX in Web Crossing 5.x allows remote attackers to inject arbitrary web script or HTML via a URL with an "@" followed by the desired script.	NVD-CWE-Other	CVE-2005-1611	2017-07-11 10:32	2005-05-16	Show	GitHub Exploit DB Packet Storm

347812	-	viewglob	viewglob	Unknown vulnerability in Viewglob before 2.0.1, related to "a potential security issue with the Viewglob display and ssh X forwarding," has unknown impact.	NVD-CWE-Other	CVE-2005-1627	2017-07-11 10:32	2005-05-17	Show	GitHub Exploit DB Packet Storm

347813	-	booby	booby	booby.php in Booby 1.0.0 and earlier allows remote attackers to view private bookmarks by guessing item IDs.	NVD-CWE-Other	CVE-2005-1631	2017-07-11 10:32	2005-05-17	Show	GitHub Exploit DB Packet Storm

347814	-	jorg_ruppel	zoidcom	The ZCom_BitStream::Deserialize function in Zoidcom 1.0 beta 4 and earlier allows remote attackers to cause a denial of service via a crafted UDP packet with a large size value, which causes a memory…	NVD-CWE-Other	CVE-2005-1643	2017-07-11 10:32	2005-05-17	Show	GitHub Exploit DB Packet Storm

347815	-	1two	livre_d_or	Cross-site scripting (XSS) vulnerability in guestbook.php for 1Two Livre d'Or 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) livreornom, (2) livreoremail, or (3) livre…	NVD-CWE-Other	CVE-2005-1644	2017-07-11 10:32	2005-05-18	Show	GitHub Exploit DB Packet Storm

347816	-	keyvan1	imagegallery	Keyvan1 ImageGallery stores the image.mdb database under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information.	NVD-CWE-Other	CVE-2005-1645	2017-07-11 10:32	2005-05-18	Show	GitHub Exploit DB Packet Storm

347817	-	htmljunction	ezguestbook	HTMLJunction EZGuestbook stores the guestbook.mdb file under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as the administ…	NVD-CWE-Other	CVE-2005-1660	2017-07-11 10:32	2005-05-18	Show	GitHub Exploit DB Packet Storm

347818	-	-	-	Directory traversal vulnerability in Jeuce Personal Web Server 2.13 allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.	NVD-CWE-Other	CVE-2005-1662	2017-07-11 10:32	2005-05-18	Show	GitHub Exploit DB Packet Storm

347819	-	jeuce	jeuce_personal_web_server	Jeuce Personal Web Server 2.13 allows remote attackers to cause a denial of service (server crash) via a GET request beginning with "://".	NVD-CWE-Other	CVE-2005-1663	2017-07-11 10:32	2005-05-18	Show	GitHub Exploit DB Packet Storm

347820	-	microsoft	asp.net	The __VIEWSTATE functionality in Microsoft ASP.NET 1.x allows remote attackers to conduct replay attacks to (1) apply a ViewState generated from one view to a different view, (2) reuse ViewState info…	NVD-CWE-Other	CVE-2005-1664	2017-07-11 10:32	2005-05-18	Show	GitHub Exploit DB Packet Storm