Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5151 9 緊急
Network 		XWiki Blog Application XWikiのBlog Applicationにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-66024 2026-04-23 10:17 2026-03-4 Show GitHub Exploit DB Packet Storm
5152 6.5 警告
Network 		レッドハット Mirror Registry for Red Hat OpenShift
Quay 		レッドハットのMirror Registry for Red Hat OpenShift等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-2377 2026-04-23 10:17 2026-04-8 Show GitHub Exploit DB Packet Storm
5153 7.2 重要
Network 		langchain Langgraph langchainのLanggraphにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-28277 2026-04-23 10:16 2026-03-5 Show GitHub Exploit DB Packet Storm
5154 7.5 重要
Network 		nekename OpenDeck nekenameのOpenDeckにおける複数の脆弱性 CWE-22
CWE-24
CVE-2026-28427 2026-04-23 10:16 2026-03-4 Show GitHub Exploit DB Packet Storm
5155 6.3 警告
Network 		レッドハット Mirror Registry for Red Hat OpenShift
Quay 		レッドハットのMirror Registry for Red Hat OpenShift等の複数製品におけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-32589 2026-04-23 10:16 2026-04-8 Show GitHub Exploit DB Packet Storm
5156 8.8 重要
Network 		レッドハット Mirror Registry for Red Hat OpenShift
Quay 		レッドハットのMirror Registry for Red Hat OpenShift等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-32590 2026-04-23 10:16 2026-04-8 Show GitHub Exploit DB Packet Storm
5157 5.5 警告
Network 		レッドハット Mirror Registry for Red Hat OpenShift
Quay 		レッドハットのMirror Registry for Red Hat OpenShift等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-32591 2026-04-23 10:16 2026-04-8 Show GitHub Exploit DB Packet Storm
5158 7.5 重要
Network 		trailofbits rfc3161-client trailofbitsのrfc3161-clientにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-33753 2026-04-23 10:16 2026-04-8 Show GitHub Exploit DB Packet Storm
5159 8.8 重要
Network 		Nozomi Networks Inc. Guardian HederaのGuardianにおける誤った領域へのリソースの漏えいに関する脆弱性 CWE-668
誤った領域へのリソースの漏えい 		CVE-2026-39911 2026-04-23 10:16 2026-04-9 Show GitHub Exploit DB Packet Storm
5160 7.5 重要
Network 		Eugene Pankov Ajenti Plugin Core Eugene PankovのAjenti Plugin Coreにおける認証に関する脆弱性 CWE-287
CWE-noinfo
CVE-2026-40177 2026-04-23 10:16 2026-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354641 - firebirdsql
mozilla 		firebird
mozilla
thunderbird 		Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of files on a user's hard drive by obscuring a file upload control and tricking th… NVD-CWE-Other
CVE-2004-1449 2008-09-6 05:41 2004-12-31 Show GitHub Exploit DB Packet Storm
354642 - mozilla mozilla Unknown vulnerability in LiveConnect in Mozilla 1.7 beta allows remote attackers to read arbitrary files in known locations. NVD-CWE-Other
CVE-2004-1450 2008-09-6 05:41 2004-12-31 Show GitHub Exploit DB Packet Storm
354643 - mozilla mozilla Mozilla before 1.6 does not display the entire URL in the status bar when a link contains %00, which could allow remote attackers to trick users into clicking on unknown or untrusted sites and facili… NVD-CWE-Other
CVE-2004-1451 2008-09-6 05:41 2004-12-31 Show GitHub Exploit DB Packet Storm
354644 - linux linux_kernel Unspecified vulnerability in the ptrace MIPS assembly code in Linux kernel 2.4 before 2.4.17 allows local users to gain privileges via unknown vectors. NVD-CWE-Other
CVE-2004-0997 2008-09-6 05:40 2004-12-31 Show GitHub Exploit DB Packet Storm
354645 - linux linux_kernel This vulnerability is addressed in the following product release: Linux, Linux kernel, 2.4.17 NVD-CWE-Other
CVE-2004-0997 2008-09-6 05:40 2004-12-31 Show GitHub Exploit DB Packet Storm
354646 - sco openserver
unixware 		The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a… NVD-CWE-Other
CVE-2004-1039 2008-09-6 05:40 2005-01-11 Show GitHub Exploit DB Packet Storm
354647 - citrix metaframe_client
program_neighborhood_agent 		Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and MetaFrame Presentation Server client for WinCE before 8.33 allows remote servers to create arbitrary shortcuts on the client via… NVD-CWE-Other
CVE-2004-1077 2008-09-6 05:40 2004-04-26 Show GitHub Exploit DB Packet Storm
354648 - citrix metaframe_client
program_neighborhood_agent 		Stack-based buffer overflow in the client for Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and Citrix MetaFrame Presentation Server client for WinCE before 8.33 allows remote at… NVD-CWE-Other
CVE-2004-1078 2008-09-6 05:40 2004-04-26 Show GitHub Exploit DB Packet Storm
354649 - netscape navigator Netscape 7.x to 7.2, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a d… NVD-CWE-Other
CVE-2004-1160 2008-09-6 05:40 2005-01-10 Show GitHub Exploit DB Packet Storm
354650 - gfi mailessentials
mailsecurity 		A bug in the HTML parser in a certain Microsoft HTML library, as used in various third party products, may allow remote attackers to cause a denial of service via certain strings, as reported in GFI … NVD-CWE-Other
CVE-2004-1312 2008-09-6 05:40 2005-01-3 Show GitHub Exploit DB Packet Storm