Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4981 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 CWE-362
CWE-416
CVE-2026-26168 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
4982 6.1 警告
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows カーネル メモリの情報漏えいの脆弱性 CWE-126
バッファオーバーリード 		CVE-2026-26169 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
4983 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		PowerShell の特権の昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2026-26170 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
4984 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows 11 26h1
Microsoft Windows 10 22h2
Microsoft Windows 10 21h2
Microsoft Windows&… 		Windows プッシュ通知の特権昇格の脆弱性 CWE-362
CWE-416
CVE-2026-26172 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
4985 7 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 CWE-362
CWE-416
CWE-476
CVE-2026-26173 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
4986 8.2 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける複数の脆弱性 CWE-119
CWE-787
CVE-2026-27890 2026-04-27 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
4987 7.5 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-28212 2026-04-27 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
4988 6.5 警告
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける複数の脆弱性 CWE-190
CWE-835
CVE-2026-28214 2026-04-27 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
4989 8.2 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-28224 2026-04-27 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
4990 6.5 警告
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-31159 2026-04-27 10:51 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350441 - telligent_systems community_server_forums Cross-site scripting (XSS) vulnerability in SearchResults.aspx in Community Forum allows remote attackers to inject arbitrary web script or HTML via the q parameter. NVD-CWE-Other
CVE-2005-2084 2016-10-18 12:24 2005-07-5 Show GitHub Exploit DB Packet Storm
350442 - infradig_systems inframail_advantage Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST comm… NVD-CWE-Other
CVE-2005-2085 2016-10-18 12:24 2005-07-5 Show GitHub Exploit DB Packet Storm
350443 - phpbb_group phpbb PHP remote file inclusion vulnerability in viewtopic.php in phpBB 2.0.15 and earlier allows remote attackers to execute arbitrary PHP code. NVD-CWE-Other
CVE-2005-2086 2016-10-18 12:24 2005-07-5 Show GitHub Exploit DB Packet Storm
350444 - drupal drupal Unknown vulnerability in Drupal 4.5.0 through 4.5.3, 4.6.0, and 4.6.1 allows remote attackers to execute arbitrary PHP code via a public comment or posting. NVD-CWE-Other
CVE-2005-2106 2016-10-18 12:24 2005-07-5 Show GitHub Exploit DB Packet Storm
350445 - phpcms phpcms Directory traversal vulnerability in class.layout_phpcms.php in phpCMS 1.2.x before 1.2.1pl2 allows remote attackers to read or include arbitrary files, as demonstrated using a .. (dot dot) in the la… NVD-CWE-Other
CVE-2005-1840 2016-10-18 12:23 2005-06-2 Show GitHub Exploit DB Packet Storm
350446 - ekg ekg Certain contributed scripts for ekg Gadu Gadu client 1.5 and earlier create temporary files insecurely, with unknown impact and attack vectors, a different vulnerability than CVE-2005-1916. NVD-CWE-Other
CVE-2005-1850 2016-10-18 12:23 2005-07-19 Show GitHub Exploit DB Packet Storm
350447 - ekg ekg A certain contributed script for ekg Gadu Gadu client 1.5 and earlier allows attackers to execute shell commands via unknown attack vectors. NVD-CWE-Other
CVE-2005-1851 2016-10-18 12:23 2005-07-19 Show GitHub Exploit DB Packet Storm
350448 - popper popper PHP remote file inclusion vulnerability in childwindow.inc.php in Popper 1.41-r2 and earlier allows remote attackers to execute arbitrary PHP code via the form parameter. NVD-CWE-Other
CVE-2005-1870 2016-10-18 12:23 2005-06-9 Show GitHub Exploit DB Packet Storm
350449 - drupal drupal Unknown vulnerability in the privilege system in Drupal 4.4.0 through 4.6.0, when public registration is enabled, allows remote attackers to gain privileges, due to an "input check" that "is not impl… NVD-CWE-Other
CVE-2005-1871 2016-10-18 12:23 2005-06-9 Show GitHub Exploit DB Packet Storm
350450 - ibm websphere_application_server Buffer overflow in the administrative console in IBM WebSphere Application Server 5.x, when the global security option is enabled, allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-1872 2016-10-18 12:23 2005-06-3 Show GitHub Exploit DB Packet Storm