Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5261	8.1	重要 Network	Pavel Shklovsky (pab1it0)	Azure Data Explorer MCP Server	Pavel Shklovsky (pab1it0)のAzure Data Explorer MCP Serverにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-33980	2026-04-24 11:37	2026-03-27	Show	GitHub Exploit DB Packet Storm

5262	6.1	警告 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34614	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

5263	10	緊急 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-34615	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

5264	8.7	重要 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34617	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

5265	7.5	重要 Network	Nhost	Nhost/auth	NhostのNhost/authにおける複数の脆弱性	CWE-200 CWE-598	CVE-2026-34969	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

5266	9.8	緊急 Network	Aperi'Solve	Aperi'Solve	Aperi'SolveにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-34977	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

5267	8.8	重要 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35050	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

5268	7.2	重要 Network	Sanjay Sharma (sanjay1313)	Visitor-Management-System	Sanjay Sharma (sanjay1313)のVisitor-Management-Systemにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-37748	2026-04-24 11:37	2026-04-21	Show	GitHub Exploit DB Packet Storm

5269	7.5	重要 Network	Little CMS	Little CMS	Little CMSにおける複数の脆弱性	CWE-190 CWE-696	CVE-2026-41254	2026-04-24 11:36	2026-04-18	Show	GitHub Exploit DB Packet Storm

5270	5.3	警告 Network	MetaCPAN BEROV	Ado::Sessions	MetaCPAN BEROVのAdo::Sessionsにおける複数の脆弱性	CWE-338 CWE-340	CVE-2026-5083	2026-04-24 11:36	2026-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
353361	-	w.m.r._simpson	bookreview	BookReview beta 1.0 allows remote attackers to obtain the path of the web server via certain parameters to search.htm, possibly due to a search[string] parameter with a missing value or an incorrect …	NVD-CWE-Other	CVE-2005-1783	2008-09-11 04:40	2005-05-31	Show	GitHub Exploit DB Packet Storm

353362	-	microsoft	windows_98se	User32.DLL in Microsoft Windows 98SE, and possibly other operating systems, allows local and remote attackers to cause a denial of service (crash) via an icon (.ico) bitmap file with large width and …	NVD-CWE-Other	CVE-2005-1793	2008-09-11 04:40	2005-06-1	Show	GitHub Exploit DB Packet Storm

353363	-	clam_anti-virus	clamav	Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to ind…	NVD-CWE-Other	CVE-2005-1800	2008-09-11 04:40	2005-05-28	Show	GitHub Exploit DB Packet Storm

353364	-	nokia	9500	The vCard viewer in Nokia 9500 allows attackers to cause a denial of service (crash) via a vCard with a long Name field, which causes the crash when the user views it.	NVD-CWE-Other	CVE-2005-1801	2008-09-11 04:40	2005-05-26	Show	GitHub Exploit DB Packet Storm

353365	-	crob	crob_ftp	Multiple buffer overflows in Crob FTP 3.6.1, and possibly earlier versions, allow remote attackers to execute arbitrary code via (1) an FTP command with a large string followed by the RMD command wit…	NVD-CWE-Other	CVE-2005-1873	2008-09-11 04:40	2005-06-9	Show	GitHub Exploit DB Packet Storm

353366	-	apple	mac_os_x mac_os_x_server	Mac OS X 10.3.x and earlier uses insecure permissions for a pseudo terminal tty (pty) that is managed by a non-setuid program, which allows local users to read or modify sessions of other users.	NVD-CWE-Other	CVE-2005-1430	2008-09-11 04:39	2005-05-3	Show	GitHub Exploit DB Packet Storm

353367	-	ht_editor	ht_editor	Integer overflow in the ELF parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted ELF file, which leads to a heap-based buffer overflow.	NVD-CWE-Other	CVE-2005-1545	2008-09-11 04:39	2005-05-14	Show	GitHub Exploit DB Packet Storm

353368	-	ht_editor	ht_editor	Buffer overflow in the PE parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted PE file.	NVD-CWE-Other	CVE-2005-1546	2008-09-11 04:39	2005-05-14	Show	GitHub Exploit DB Packet Storm

353369	-	opentools	attachment_mod	Unknown vulnerability in Attachment Mod before 2.3.13, related to a "serious issue with realnames," has unknown impact and attack vectors.	NVD-CWE-Other	CVE-2005-1630	2008-09-11 04:39	2005-05-17	Show	GitHub Exploit DB Packet Storm

353370	-	horde	accounts	Cross-site scripting (XSS) vulnerability in Horde Accounts module before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.	NVD-CWE-Other	CVE-2005-1316	2008-09-11 04:38	2005-05-2	Show	GitHub Exploit DB Packet Storm