Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5151 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 CWE-362
CWE-416
CVE-2026-26168 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
5152 6.1 警告
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows カーネル メモリの情報漏えいの脆弱性 CWE-126
バッファオーバーリード 		CVE-2026-26169 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
5153 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		PowerShell の特権の昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2026-26170 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
5154 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows 11 26h1
Microsoft Windows 10 22h2
Microsoft Windows 10 21h2
Microsoft Windows&… 		Windows プッシュ通知の特権昇格の脆弱性 CWE-362
CWE-416
CVE-2026-26172 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
5155 7 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 CWE-362
CWE-416
CWE-476
CVE-2026-26173 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
5156 8.2 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける複数の脆弱性 CWE-119
CWE-787
CVE-2026-27890 2026-04-27 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
5157 7.5 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-28212 2026-04-27 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
5158 6.5 警告
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける複数の脆弱性 CWE-190
CWE-835
CVE-2026-28214 2026-04-27 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
5159 8.2 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-28224 2026-04-27 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
5160 6.5 警告
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-31159 2026-04-27 10:51 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348161 - hpm_guestbook.cgi hpm_guestbook.cgi Cross-site scripting (XSS) vulnerability in hpm_guestbook.cgi allows remote attackers to inject arbitrary web script or HTML by posting a message. NVD-CWE-Other
CVE-2005-0476 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm
348162 - invision_power_services invision_power_board Cross-site scripting (XSS) vulnerability in the SML code for Invision Power Board 1.3.1 FINAL allows remote attackers to inject arbitrary web script via (1) a signature file or (2) a message post con… CWE-79
Cross-site Scripting 		CVE-2005-0477 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm
348163 - trackercam trackercam Multiple buffer overflows in TrackerCam 5.12 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP request with a long User-Agent header … NVD-CWE-Other
CVE-2005-0478 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm
348164 - trackercam trackercam Directory traversal vulnerability in ComGetLogFile.php3 for TrackerCam 5.12 and earlier allows remote attackers to read arbitrary files via ".." sequences and (1) "/" slash), (2) "\" (backslash), or … NVD-CWE-Other
CVE-2005-0479 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm
348165 - trackercam trackercam Cross-site scripting (XSS) vulnerability in TrackerCam 5.12 and earlier allows remote attackers to inject arbitrary HTML or web script via the login request, which is recorded in a log file but not p… NVD-CWE-Other
CVE-2005-0480 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm
348166 - trackercam trackercam TrackerCam 5.12 and earlier allows remote attackers to read log files via the fn parameter in a direct request to the ComGetLogFile.php3 script. NVD-CWE-Other
CVE-2005-0481 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm
348167 - trackercam trackercam TrackerCam 5.12 and earlier allows remote attackers to cause a denial of service (crash) via (1) a large number of connections with a negative Content-Length header, possibly triggering an integer si… NVD-CWE-Other
CVE-2005-0482 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm
348168 - glftpd glftpd Multiple directory traversal vulnerabilities in sitenfo.sh, sitezipchk.sh, and siteziplist.sh in Glftpd 1.26 to 2.00 allow remote authenticated users to (1) determine the existence of arbitrary files… NVD-CWE-Other
CVE-2005-0483 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm
348169 - phparena panews Cross-site scripting (XSS) vulnerability in comment.php for paNews 2.0b4 for PHP Arena allows remote attackers to inject arbitrary HTML and web script via the showpost parameter. CWE-79
Cross-site Scripting 		CVE-2005-0485 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm
348170 - kayako esupport Cross-site scripting (XSS) vulnerability in index.php for Kayako ESupport 2.3.1, and possibly other versions, allows remote attackers to inject arbitrary HTML and web script via the nav parameter. NVD-CWE-Other
CVE-2005-0487 2017-07-11 10:32 2005-03-30 Show GitHub Exploit DB Packet Storm