Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5241	5	警告 Network	OpenFGA	OpenFGA Helm Charts	OpenFGAのHelm Charts等の複数製品における複数の脆弱性	CWE-706 CWE-863	CVE-2026-41131	2026-04-27 10:47	2026-04-22	Show	GitHub Exploit DB Packet Storm

5242	8.8	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41137	2026-04-27 10:47	2026-04-23	Show	GitHub Exploit DB Packet Storm

5243	8.8	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41138	2026-04-27 10:47	2026-04-23	Show	GitHub Exploit DB Packet Storm

5244	7	重要 Network	openremote	openremote	openremoteにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41166	2026-04-27 10:47	2026-04-22	Show	GitHub Exploit DB Packet Storm

5245	5.3	警告 Network	pypdf project	pypdf	pypdf projectのpypdfにおける過度な反復の脆弱性	CWE-834 過度なイテレーション	CVE-2026-41168	2026-04-27 10:46	2026-04-22	Show	GitHub Exploit DB Packet Storm

5246	9.8	緊急 Network	flowiseai	flowise	flowiseaiのflowiseにおける不完全なブラックリストに関する脆弱性	CWE-184 不完全なブラックリスト	CVE-2026-41264	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

5247	9.8	緊急 Network	flowiseai	flowise	flowiseaiのflowiseにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-41265	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

5248	7.5	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおける複数の脆弱性	CWE-200 CWE-522 CWE-862	CVE-2026-41266	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

5249	9.8	緊急 Network	flowiseai	flowise	flowiseaiのflowiseにおける複数の脆弱性	CWE-639 CWE-915	CVE-2026-41267	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

5250	9.8	緊急 Network	flowiseai	flowise	flowiseaiのflowiseにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-41268	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349621	-	cisco	content_services_switch_11000 content_services_switch_11050 content_services_switch_11150 content_services_switch_11800	Cisco 11000 Series Content Services Switches (CSS) running WebNS 5.0(x) before 05.0(04.07)S, and 6.10(x) before 06.10(02.05)S allow remote attackers to cause a denial of service (device reset) via a …	NVD-CWE-Other	CVE-2004-0352	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

349622	-	gnu	anubis	Multiple buffer overflows in auth_ident() function in auth.c for GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to gain privileges via a long string.	NVD-CWE-Other	CVE-2004-0353	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

349623	-	gnu	anubis	Multiple format string vulnerabilities in GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to execute arbitrary code via format string specifiers in strings passed to (1) the …	NVD-CWE-Other	CVE-2004-0354	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

349624	-	invision_power_services	invision_board	Invision Power Board 1.3 Final allows remote attackers to gain sensitive information by selecting a file for "Personal Photo" that is not an image file, which displays the installation path in an err…	NVD-CWE-Other	CVE-2004-0355	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

349625	-	seattle_lab_software	slmail_pro	Stack-based buffer overflows in SL Mail Pro 2.0.9 allow remote attackers to execute arbitrary code via (1) user.dll, (2) loadpageadmin.dll or (3) loadpageuser.dll.	NVD-CWE-Other	CVE-2004-0357	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

349626	-	virtuasystems	virtuanews_pro	Cross-site scripting (XSS) vulnerability in VirtuaNews Admin Panel Pro 1.0.3 allows remote attackers to execute arbitrary script as other users via (1) the mainnews parameter in admin.php, (2) the ex…	NVD-CWE-Other	CVE-2004-0358	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

349627	-	invision_power_services	invision_board	Cross-site scripting (XSS) vulnerability in index.php for Invision Power Board 1.3 final allows remote attackers to execute arbitrary script as other users via the (1) c, (2) f, (3) showtopic, (4) sh…	NVD-CWE-Other	CVE-2004-0359	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

349628	-	-	-	The Javascript engine in Safari 1.2 and earlier allows remote attackers to cause a denial of service (segmentation fault) by creating a new Array object with a large size value, then writing into tha…	NVD-CWE-Other	CVE-2004-0361	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

349629	-	iss	blackice_agent_server blackice_pc_protection blackice_server_protection realsecure_desktop realsecure_guard realsecure_network_sensor realsecure_sentry realsecure_server_sensor	Multiple stack-based buffer overflows in the ICQ parsing routines of the ISS Protocol Analysis Module (PAM) component, as used in various RealSecure, Proventia, and BlackICE products, allow remote at…	NVD-CWE-Other	CVE-2004-0362	2017-07-11 10:30	2004-04-15	Show	GitHub Exploit DB Packet Storm

349630	-	symantec	norton_antispam	Stack-based buffer overflow in the SymSpamHelper ActiveX component (symspam.dll) in Norton AntiSpam 2004, as used in Norton Internet Security 2004, allows remote attackers to execute arbitrary code v…	NVD-CWE-Other	CVE-2004-0363	2017-07-11 10:30	2004-04-15	Show	GitHub Exploit DB Packet Storm