Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5061 9.1 緊急
Network 		LibreNMS LibreNMS LibreNMSにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-51092 2026-05-14 10:23 2026-05-8 Show GitHub Exploit DB Packet Storm
5062 9.8 緊急
Network 		The PHP Group PHP The PHP GroupのPHPにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-14179 2026-05-14 10:23 2026-05-10 Show GitHub Exploit DB Packet Storm
5063 7.5 重要
Network 		IBM watsonx.data IBMのwatsonx.dataにおける意図するエンドポイントとの通信チャネルの制限に関する脆弱性 CWE-923
意図するエンドポイントとの通信チャネルの不適切な制限 		CVE-2025-36180 2026-05-14 10:23 2026-04-30 Show GitHub Exploit DB Packet Storm
5064 5.5 警告
Local 		IBM watsonx.data IBMのwatsonx.dataにおける認証情報の平文保存に関する脆弱性 CWE-256
平文でパスワードを保存 		CVE-2025-36335 2026-05-14 10:23 2026-04-30 Show GitHub Exploit DB Packet Storm
5065 7.5 重要
Network 		アップル iOS
iPadOS 		アップルのiPadOS等の複数製品におけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2025-46311 2026-05-14 10:23 2026-05-12 Show GitHub Exploit DB Packet Storm
5066 4.7 警告
Network 		ISPConfig ISPConfig ISPConfigにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-52206 2026-05-14 10:23 2026-05-5 Show GitHub Exploit DB Packet Storm
5067 7.3 重要
Network 		AstrBot AstrBot AstrBotにおけるハードコードされた暗号鍵の使用に関する脆弱性 CWE-321
ハードコードされた暗号鍵の使用 		CVE-2025-55449 2026-05-14 10:23 2026-05-8 Show GitHub Exploit DB Packet Storm
5068 7.2 重要
Network 		Check MK Check MK Check MKにおける認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2025-64998 2026-05-14 10:22 2026-03-24 Show GitHub Exploit DB Packet Storm
5069 6.5 警告
Network 		Apache Software Foundation CloudStack Apache Software FoundationのCloudStackにおける認可されていない行為者への個人情報の漏えいに関する脆弱性 CWE-359
認可されていないアクターへの個人情報の漏えい 		CVE-2025-66171 2026-05-14 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
5070 8.1 重要
Network 		Apache Software Foundation CloudStack Apache Software FoundationのCloudStackにおける認可されていない行為者への個人情報の漏えいに関する脆弱性 CWE-359
認可されていないアクターへの個人情報の漏えい 		CVE-2025-66172 2026-05-14 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345971 - linux linux_kernel The ipt_recent kernel module (ipt_recent.c) in Linux kernel 2.6.12 and earlier does not properly perform certain time tests when the jiffies value is greater than LONG_MAX, which can cause ipt_recent… NVD-CWE-Other
CVE-2005-2873 2017-10-11 10:30 2005-09-10 Show GitHub Exploit DB Packet Storm
345972 - easy_software_products cups The is_path_absolute function in scheduler/client.c for the daemon in CUPS before 1.1.23 allows remote attackers to cause a denial of service (CPU consumption by tight loop) via a "..\.." URL in an H… NVD-CWE-Other
CVE-2005-2874 2017-10-11 10:30 2005-09-14 Show GitHub Exploit DB Packet Storm
345973 - squid squid Squid 2.5.STABLE10 and earlier, while performing NTLM authentication, does not properly handle certain request sequences, which allows attackers to cause a denial of service (daemon restart). NVD-CWE-Other
CVE-2005-2917 2017-10-11 10:30 2005-10-1 Show GitHub Exploit DB Packet Storm
345974 - realnetworks helix_player
realone_player
realplayer
rhapsody 		Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player allows remote malicious servers to cause a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-2922 2017-10-11 10:30 2005-12-31 Show GitHub Exploit DB Packet Storm
345975 - mozilla firefox
mozilla 		Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash. NVD-CWE-Other
CVE-2005-2968 2017-10-11 10:30 2005-09-21 Show GitHub Exploit DB Packet Storm
345976 - pam pam The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unix_chkpwd, which does not log failed guesses or delay its responses. NVD-CWE-Other
CVE-2005-2977 2017-10-11 10:30 2005-11-1 Show GitHub Exploit DB Packet Storm
345977 - mozilla firefox Firefox 1.0.6 allows attackers to cause a denial of service (crash) via a Proxy Auto-Config (PAC) script that uses an eval statement. NOTE: it is not clear whether an untrusted party has any role in … NVD-CWE-Other
CVE-2005-3089 2017-10-11 10:30 2005-09-29 Show GitHub Exploit DB Packet Storm
345978 - - - The FTP server in HP-UX 10.20, B.11.00, and B.11.11, allows remote attackers to list arbitrary directories as root by running the LIST command before logging in. NVD-CWE-Other
CVE-2005-3296 2017-10-11 10:30 2005-10-24 Show GitHub Exploit DB Packet Storm
345979 - apache spamassassin SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e-mail with a large number of recipients ("To" addresses), which triggers a bus error in Perl. NVD-CWE-Other
CVE-2005-3351 2017-10-11 10:30 2005-11-21 Show GitHub Exploit DB Packet Storm
345980 - ibm aix Buffer overflow in the chcons (chcon) command in IBM AIX 5.2 and 5.3, when DEBUG MALLOC is enabled, might allow attackers to execute arbitrary code via a long command line argument. NVD-CWE-Other
CVE-2005-3396 2017-10-11 10:30 2005-11-1 Show GitHub Exploit DB Packet Storm