Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5001 5.3 警告
Network 		Tokuhiro Matsuno (tokuhirom) Amon2::Plugin::Web::CSRFDefender Tokuhiro Matsuno (tokuhirom)のAmon2::Plugin::Web::CSRFDefenderにおける複数の脆弱性 CWE-338
CWE-340
CVE-2025-15604
CVE-2026-5082 		2026-04-24 11:35 2026-04-8 Show GitHub Exploit DB Packet Storm
5002 7.5 重要
Network 		pyLoad pyLoad pyLoadにおける複数の脆弱性 CWE-502
CWE-863
CVE-2026-33509
CVE-2026-35464 		2026-04-24 11:35 2026-04-7 Show GitHub Exploit DB Packet Storm
5003 9.8 緊急
Network 		Tomas Varaneckas JAD Java Decompiler Tomas VaraneckasのJAD Java Decompilerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2016-20049 2026-04-24 11:35 2026-03-28 Show GitHub Exploit DB Packet Storm
5004 6.1 警告
Network 		WSO2 WSO2 API Manager WSO2のWSO2 API Managerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-10242 2026-04-24 11:35 2026-04-16 Show GitHub Exploit DB Packet Storm
5005 9.1 緊急
Network 		WSO2 Identity Server as Key Manager
WSO2 API Manager
WSO2 Identity Server
WSO2 Open Banking AM
WSO2 Open Banking IAM 		WSO2のWSO2 API Manager等の複数製品におけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2024-2374 2026-04-24 11:35 2026-04-16 Show GitHub Exploit DB Packet Storm
5006 5.4 警告
Network 		WSO2 WSO2 API Manager WSO2のWSO2 API Managerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-4867 2026-04-24 11:34 2026-04-16 Show GitHub Exploit DB Packet Storm
5007 7.5 重要
Network 		WSO2 WSO2 API Manager WSO2のWSO2 API ManagerにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2024-8010 2026-04-24 11:34 2026-04-16 Show GitHub Exploit DB Packet Storm
5008 5.4 警告
Network 		WSO2 WSO2 Identity Server WSO2のWSO2 Identity Serverにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2025-12624 2026-04-24 11:34 2026-04-16 Show GitHub Exploit DB Packet Storm
5009 8.2 重要
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2025-31958 2026-04-24 11:34 2026-04-21 Show GitHub Exploit DB Packet Storm
5010 5.3 警告
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)における重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2025-31981 2026-04-24 11:34 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349791 - rsa securid_web_agent Heap-based buffer overflow in RSA SecurID Web Agent 5, 5.2, and 5.3 allows remote attackers to execute arbitrary code via crafted chunked-encoding data. NVD-CWE-Other
CVE-2005-1471 2016-10-18 12:19 2005-05-6 Show GitHub Exploit DB Packet Storm
349792 - oracle database_server SQL injection vulnerability in the SYS.DBMS_CDC_IPUBLISH.CREATE_SCN_CHANGE_SET procedure in Oracle Database Server 10g allows remote attackers to execute arbitrary SQL commands via the CHANGE_SET_NAM… NVD-CWE-Other
CVE-2005-1197 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
349793 - anaconda_partners foundation_directory Directory traversal vulnerability in apexec.pl for Anaconda Foundation Directory allows remote attackers to read arbitrary files via hex-encoded null characters (%00) in the middle of ".." sequences … NVD-CWE-Other
CVE-2005-1198 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
349794 - infopop ultimate_bulletin_board SQL injection vulnerability in printthread.php in UBB.Threads allows remote attackers to execute arbitrary SQL commands via the main parameter. NVD-CWE-Other
CVE-2005-1199 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
349795 - egroupware egroupware Multiple cross-site scripting (XSS) vulnerabilities in eGroupware before 1.0.0.007 allow remote attackers to inject arbitrary web script or HTML via the (1) ab_id, (2) page, (3) type, or (4) lang par… NVD-CWE-Other
CVE-2005-1202 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
349796 - egroupware egroupware Multiple SQL injection vulnerabilities in index.php in eGroupware before 1.0.0.007 allow remote attackers to execute arbitrary SQL commands via the (1) filter or (2) cats_app parameter. NVD-CWE-Other
CVE-2005-1203 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
349797 - nelso_software desktop_rover Desktop Rover 3.0, and possibly earlier versions, allows remote attackers to cause a denial of service (application crash) via a crafted packet to TCP port 61427, which causes an invalid memory acces… NVD-CWE-Other
CVE-2005-1204 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
349798 - magnus_lundvall yawcam Directory traversal vulnerability in Yawcam 0.2.5 allows remote attackers to read arbitrary files via "..\" (dot dot backslash) sequences in a GET request. NVD-CWE-Other
CVE-2005-1230 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm
349799 - woltlab burning_board Cross-site scripting (XSS) vulnerability in thread.php in WoltLab Burning Board 2.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the hilight parameter. NVD-CWE-Other
CVE-2005-1285 2016-10-18 12:18 2005-04-22 Show GitHub Exploit DB Packet Storm
349800 - softwin bitdefender_antivirus Unquoted Windows search path vulnerability in BitDefender 8 allows local users to prevent BitDefender from starting by creating a malicious C:\program.exe, possibly due to the lack of quoting of the … NVD-CWE-Other
CVE-2005-1286 2016-10-18 12:18 2005-05-2 Show GitHub Exploit DB Packet Storm