Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5151 8.1 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2026-5188 2026-04-30 10:58 2026-04-10 Show GitHub Exploit DB Packet Storm
5152 8 重要
Adjacent 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-5295 2026-04-30 10:58 2026-04-9 Show GitHub Exploit DB Packet Storm
5153 5.4 警告
Adjacent 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-5392 2026-04-30 10:58 2026-04-10 Show GitHub Exploit DB Packet Storm
5154 9.1 緊急
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-5393 2026-04-30 10:58 2026-04-10 Show GitHub Exploit DB Packet Storm
5155 4.3 警告
Adjacent 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-5448 2026-04-30 10:58 2026-04-10 Show GitHub Exploit DB Packet Storm
5156 6.5 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-5460 2026-04-30 10:58 2026-04-10 Show GitHub Exploit DB Packet Storm
5157 8.1 重要
Adjacent 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-5466 2026-04-30 10:58 2026-04-10 Show GitHub Exploit DB Packet Storm
5158 8.1 重要
Adjacent 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるデータの整合性検証不備に関する脆弱性 CWE-354
データの整合性検証不備 		CVE-2026-5479 2026-04-30 10:58 2026-04-10 Show GitHub Exploit DB Packet Storm
5159 5.3 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるデータの整合性検証不備に関する脆弱性 CWE-354
データの整合性検証不備 		CVE-2026-5504 2026-04-30 10:58 2026-04-9 Show GitHub Exploit DB Packet Storm
5160 4 警告
Local 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-5507 2026-04-30 10:58 2026-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348061 - lucidcms lucidcms Cross-site scripting (XSS) vulnerability in index.php in lucidCMS 1.0.11 allows remote attackers to inject arbitrary web script or HTML via the query string. NVD-CWE-Other
CVE-2005-3127 2017-07-11 10:33 2005-10-5 Show GitHub Exploit DB Packet Storm
348062 - squirrelmail address_add_plugin Cross-site scripting (XSS) vulnerability in add.php in Address Add Plugin 1.9 and 2.0 for Squirrelmail allows remote attackers to inject arbitrary web script or HTML via the IMG tag. NVD-CWE-Other
CVE-2005-3128 2017-07-11 10:33 2005-10-5 Show GitHub Exploit DB Packet Storm
348063 - s9y serendipity Cross-site request forgery (CSRF) vulnerability in Serendipity 0.8.4 and earlier allows remote attackers to perform unauthorized actions as a logged in user via a link or IMG tag to serendipity_admin… NVD-CWE-Other
CVE-2005-3129 2017-07-11 10:33 2005-10-5 Show GitHub Exploit DB Packet Storm
348064 - virtools web_player Directory traversal vulnerability in Virtools Web Player 3.0.0.100 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a filename. NVD-CWE-Other
CVE-2005-3136 2017-07-11 10:33 2005-10-5 Show GitHub Exploit DB Packet Storm
348065 - gnu cfengine The (1) cfmailfilter and (2) cfcron.in files for cfengine 1.6.5 allow local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CVE-2005-2960. NVD-CWE-Other
CVE-2005-3137 2017-07-11 10:33 2005-10-6 Show GitHub Exploit DB Packet Storm
348066 - mozilla bugzilla Bugzilla 2.18rc1 through 2.18.3, 2.19 through 2.20rc2, and 2.21 allows remote attackers to obtain sensitive information such as the list of installed products via the config.cgi file, which is access… NVD-CWE-Other
CVE-2005-3138 2017-07-11 10:33 2005-10-6 Show GitHub Exploit DB Packet Storm
348067 - mozilla bugzilla Bugzilla 2.19.1 through 2.20rc2 and 2.21, with user matching turned on in substring mode, allows attackers to list all users whose names match an arbitrary substring, even when the usevisibilitygroup… NVD-CWE-Other
CVE-2005-3139 2017-07-11 10:33 2005-10-6 Show GitHub Exploit DB Packet Storm
348068 - kaspersky_lab kaspersky_anti-virus
kaspersky_anti-virus_personal
kaspersky_anti-virus_personal_pro
kaspersky_personal_security_suite 		Heap-based buffer overflow in Kaspersky Antivirus (KAV) 5.0 and Kaspersky Personal Security Suite 1.1 allows remote attackers to execute arbitrary code via a CAB file with large records after the hea… NVD-CWE-Other
CVE-2005-3142 2017-07-11 10:33 2005-10-6 Show GitHub Exploit DB Packet Storm
348069 - devellion cubecart Multiple cross-site scripting (XSS) vulnerabilities in CubeCart 3.0.3 allow remote attackers to inject arbitrary web script or HTML via the redir parameter to (1) cart.php or (2) index.php, or (3) th… NVD-CWE-Other
CVE-2005-3152 2017-07-11 10:33 2005-10-6 Show GitHub Exploit DB Packet Storm
348070 - php_fusion php_fusion Multiple SQL injection vulnerabilities in PHP-Fusion before 6.00.110 allow remote attackers to execute arbitrary SQL commands via (1) the activate parameter in register.php and (2) the cat_id paramet… NVD-CWE-Other
CVE-2005-3161 2017-07-11 10:33 2005-10-6 Show GitHub Exploit DB Packet Storm