Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5001 7.2 重要
Network 		LibreNMS LibreNMS LibreNMSにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-6204 2026-04-24 11:35 2026-04-13 Show GitHub Exploit DB Packet Storm
5002 10 緊急
Network 		ATRODO (Jon Gentle) Net::Dropbear ATRODO (Jon Gentle)のNet::Dropbearにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2016-6129
CVE-2018-12437
CVE-2025-15638 		2026-04-24 11:35 2026-04-21 Show GitHub Exploit DB Packet Storm
5003 9.8 緊急
Network 		The Perl Foundation Perl The Perl FoundationのPerlにおける不特定の脆弱性 CWE-Other
その他 		CVE-2026-3381
CVE-2026-4176 		2026-04-24 11:35 2026-03-29 Show GitHub Exploit DB Packet Storm
5004 5.3 警告
Network 		Tokuhiro Matsuno (tokuhirom) Amon2::Plugin::Web::CSRFDefender Tokuhiro Matsuno (tokuhirom)のAmon2::Plugin::Web::CSRFDefenderにおける複数の脆弱性 CWE-338
CWE-340
CVE-2025-15604
CVE-2026-5082 		2026-04-24 11:35 2026-04-8 Show GitHub Exploit DB Packet Storm
5005 7.5 重要
Network 		pyLoad pyLoad pyLoadにおける複数の脆弱性 CWE-502
CWE-863
CVE-2026-33509
CVE-2026-35464 		2026-04-24 11:35 2026-04-7 Show GitHub Exploit DB Packet Storm
5006 9.8 緊急
Network 		Tomas Varaneckas JAD Java Decompiler Tomas VaraneckasのJAD Java Decompilerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2016-20049 2026-04-24 11:35 2026-03-28 Show GitHub Exploit DB Packet Storm
5007 6.1 警告
Network 		WSO2 WSO2 API Manager WSO2のWSO2 API Managerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-10242 2026-04-24 11:35 2026-04-16 Show GitHub Exploit DB Packet Storm
5008 9.1 緊急
Network 		WSO2 Identity Server as Key Manager
WSO2 API Manager
WSO2 Identity Server
WSO2 Open Banking AM
WSO2 Open Banking IAM 		WSO2のWSO2 API Manager等の複数製品におけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2024-2374 2026-04-24 11:35 2026-04-16 Show GitHub Exploit DB Packet Storm
5009 5.4 警告
Network 		WSO2 WSO2 API Manager WSO2のWSO2 API Managerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-4867 2026-04-24 11:34 2026-04-16 Show GitHub Exploit DB Packet Storm
5010 7.5 重要
Network 		WSO2 WSO2 API Manager WSO2のWSO2 API ManagerにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2024-8010 2026-04-24 11:34 2026-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351941 - scriptsolutions perldiver Cross-site scripting (XSS) vulnerability in perldiver.cgi in PerlDiver 2.x allows remote attackers to inject arbitrary web script or HTML via the module parameter. NVD-CWE-Other
CVE-2005-3067 2011-03-8 11:25 2005-09-28 Show GitHub Exploit DB Packet Storm
351942 - qualcomm qpopper poppassd in Qualcomm qpopper 4.0.8 allows local users to modify arbitrary files and gain privileges via the -t (trace file) command line argument. NVD-CWE-Other
CVE-2005-3098 2011-03-8 11:25 2005-09-29 Show GitHub Exploit DB Packet Storm
351943 - william_stearns mason Mason before 1.0.0 does not install the init script after the user uses Mason to configure a firewall, which causes the system to run without a firewall after a reboot. NVD-CWE-Other
CVE-2005-3118 2011-03-8 11:25 2005-10-7 Show GitHub Exploit DB Packet Storm
351944 - gnu gnump3d Directory traversal vulnerability in GNUMP3D before 2.9.6 allows remote attackers to read arbitrary files via crafted sequences such as "/.//..//////././", which is collapsed into "/.././" after ".."… NVD-CWE-Other
CVE-2005-3123 2011-03-8 11:25 2005-10-31 Show GitHub Exploit DB Packet Storm
351945 - acme_labs thttpd syslogtocern in Acme thttpd before 2.23 allows local users to write arbitrary files via a symlink attack on a temporary file. NVD-CWE-Other
CVE-2005-3124 2011-03-8 11:25 2005-11-6 Show GitHub Exploit DB Packet Storm
351946 - uim uim Uim 0.4.x before 0.4.9.1 and 0.5.0 and earlier does not properly handle the LIBUIM_VANILLA environment variable when a suid or sgid application is linked to libuim, such as immodule for Qt, which all… NVD-CWE-Other
CVE-2005-3149 2011-03-8 11:25 2005-10-6 Show GitHub Exploit DB Packet Storm
351947 - bluecoat winproxy The listening daemon in Blue Coat Systems Inc. WinProxy before 6.1a allows remote attackers to cause a denial of service (crash) via a long HTTP request that causes an out-of-bounds read. NVD-CWE-Other
CVE-2005-3187 2011-03-8 11:25 2005-12-31 Show GitHub Exploit DB Packet Storm
351948 - qualcomm worldmail_imap_server Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote attackers to read arbitrary email messages via ".." sequences in the SELECT command. NVD-CWE-Other
CVE-2005-3189 2011-03-8 11:25 2005-11-18 Show GitHub Exploit DB Packet Storm
351949 - nullsoft winamp Buffer overflow in Winamp 5.03a, 5.09 and 5.091, and other versions before 5.094, allows remote attackers to execute arbitrary code via an MP3 file with a long ID3v2 tag such as (1) ARTIST or (2) TIT… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-2310 2011-03-8 11:24 2005-07-19 Show GitHub Exploit DB Packet Storm
351950 - phpsftpd phpsftpd inc.login.php in PHPsFTPd 0.2 through 0.4 allows remote attackers to obtain the administrator's username and password by setting the do_login parameter and performing an edit action using user.php, w… NVD-CWE-Other
CVE-2005-2314 2011-03-8 11:24 2005-07-19 Show GitHub Exploit DB Packet Storm