Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5161 4.3 警告
Network 		GitHub Enterprise Server GitHubのEnterprise Serverにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-5512 2026-04-30 10:58 2026-04-21 Show GitHub Exploit DB Packet Storm
5162 5.5 警告
Local 		レッドハット
libarchive		 Red Hat OpenShift Container Platform
Red Hat Enterprise Linux
Red Hat Hardened Images
libarchive 		libarchive等の複数ベンダの製品におけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-5745 2026-04-30 10:58 2026-04-7 Show GitHub Exploit DB Packet Storm
5163 5.3 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるバッファオーバーリードの脆弱性 CWE-126
バッファオーバーリード 		CVE-2026-5772 2026-04-30 10:57 2026-04-9 Show GitHub Exploit DB Packet Storm
5164 6.5 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2026-5778 2026-04-30 10:57 2026-04-9 Show GitHub Exploit DB Packet Storm
5165 9.6 緊急
Network 		GitHub Enterprise Server GitHubのEnterprise Serverにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-5845 2026-04-30 10:57 2026-04-21 Show GitHub Exploit DB Packet Storm
5166 8.9 重要
Network 		GitHub Enterprise Server GitHubのEnterprise Serverにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-5921 2026-04-30 10:57 2026-04-21 Show GitHub Exploit DB Packet Storm
5167 7.8 重要
Local 		レッドハット
gimp		 Red Hat Enterprise Linux
gimp 		gimp等の複数ベンダの製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-6384 2026-04-30 10:57 2026-04-15 Show GitHub Exploit DB Packet Storm
5168 7.8 重要
Local 		Rapid7 Insight Agent Rapid7のInsight Agentにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-6482 2026-04-30 10:57 2026-04-17 Show GitHub Exploit DB Packet Storm
5169 8.1 重要
Network 		Mozilla Foundation Mozilla Thunderbird
Mozilla Firefox 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-125
CWE-416
CWE-787
CVE-2026-6785 2026-04-30 10:57 2026-04-26 Show GitHub Exploit DB Packet Storm
5170 8.1 重要
Network 		Mozilla Foundation Mozilla Thunderbird
Mozilla Firefox 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-125
CWE-416
CWE-787
CVE-2026-6786 2026-04-30 10:57 2026-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349551 - the_ignition_project ignitionserver Unknown vulnerability in The Ignition Project ignitionServer 0.1.2 through 0.3.1, with the linking service enabled, allows remote attackers to bypass authentication. NVD-CWE-Other
CVE-2004-2431 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
349552 - - - WinAgents TFTP Server 3.0 allows remote attackers to cause a denial of service (crash) via a request for a file with a long file name, possibly due to an off-by-one buffer overflow. NVD-CWE-Other
CVE-2004-2432 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
349553 - altnet
grokster
kazaa 		altnet_download_manager
grokster
kazaa_media_desktop 		Buffer overflow in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager 4.0.0.4 and earlier, as used in Kazaa Media Desktop 1.3 through 2.6.4 and Grokkster 1.3 through 2.6,… NVD-CWE-Other
CVE-2004-2433 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
349554 - axis 2100_network_camera
2110_network_camera
2120_network_camera
2130_ptz_network_camera
230_mpeg2_video_server
2400_video_server
2401_video_server
2411_video_server
2420_network_c… 		Directory traversal vulnerability in Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to bypass authentication via a .. (dot dot) in an HTTP POST requ… NVD-CWE-Other
CVE-2004-2426 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
349555 - microsoft ie Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service (browser crash) via a link with "::{" (colon colon left brace), which triggers a null dereference when the use… NVD-CWE-Other
CVE-2004-2434 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
349556 - peoplesoft hrms Cross-site scripting (XSS) vulnerability in PeopleSoft Human Resources Management System (HRMS) 7.0, when "web enabled" using HTML Access, allows remote attackers to inject arbitrary web script or HT… NVD-CWE-Other
CVE-2004-2435 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
349557 - php_fusion php_fusion SQL injection vulnerability in PHP-Fusion 4.01 allows remote attackers to execute arbitrary SQL commands via the rowstart parameter to (1) index.php or (2) members.php, or (3) the comment_id paramete… NVD-CWE-Other
CVE-2004-2437 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
349558 - php_fusion php_fusion Cross-site scripting (XSS) vulnerability in PHP-Fusion 4.01 allows remote attackers to inject arbitrary web script or HTML via the (1) Submit News, (2) Submit Link or (3) Submit Article field. NVD-CWE-Other
CVE-2004-2438 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
349559 - hp color_laserjet
color_laserjet_4600
laserjet_2500
laserjet_3000
laserjet_3700
laserjet_4100_mfp
laserjet_4200
laserjet_4300
laserjet_9000
laserjet_9000_mfp
laserjet_9040_… 		The remote upgrade capability in HP LaserJet 4200 and 4300 printers does not require a password, which allows remote attackers to upgrade firmware. NVD-CWE-Other
CVE-2004-2439 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
349560 - proxytunnel proxytunnel Unspecified vulnerability in cmdline.c in proxytunnel 1.1.3 and earlier allows local users to obtain proxy credentials (username or password) of other users. NVD-CWE-Other
CVE-2004-2440 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm