Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
5351 7.8 重要
Local
Zoom Video Communications, Inc. Zoom Workplace VDI
Zoom Rooms
Zoom Workplace Desktop
Zoom Video Communications, Inc.のZoom Rooms等の複数製品における権限管理に関する脆弱性 CWE-269
CWE-noinfo
CVE-2026-30902 2026-05-18 12:18 2026-03-11 Show GitHub Exploit DB Packet Storm
5352 9.8 緊急
Network
Zoom Video Communications, Inc. Zoom Workplace VDI
Zoom Workplace Desktop
Zoom Video Communications, Inc.のZoom Workplace Desktop等の複数製品における複数の脆弱性 CWE-610
CWE-73
CVE-2026-30903 2026-05-18 12:18 2026-03-11 Show GitHub Exploit DB Packet Storm
5353 7.8 重要
Local
lightningai pytorch lightning Lightning AIのPyTorch Lightningにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション
CVE-2026-31221 2026-05-18 12:18 2026-05-12 Show GitHub Exploit DB Packet Storm
5354 7.5 重要
Adjacent
マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind…
Windows ネイティブ WiFi ミニポート ドライバーのリモートでコードが実行される脆弱性 CWE-362
CWE-416
CVE-2026-32161 2026-05-18 12:18 2026-05-12 Show GitHub Exploit DB Packet Storm
5355 6.7 警告
Local
マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind…
Windows リッチ テキスト エディットの特権昇格の脆弱性 CWE-415
二重解放
CVE-2026-32170 2026-05-18 12:18 2026-05-12 Show GitHub Exploit DB Packet Storm
5356 4.4 警告
Local
マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind…
Windows フィルタリング プラットフォーム (WFP) のセキュリティ機能のバイパスの脆弱性 CWE-284
不適切なアクセス制御
CVE-2026-32209 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
5357 7.8 重要
Local
マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind…
Windows Event Logging Service の特権の昇格の脆弱性 CWE-284
不適切なアクセス制御
CVE-2026-33834 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
5358 7.8 重要
Local
マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Wind…
Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性 CWE-416
解放済みメモリの使用
CVE-2026-33835 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
5359 7.8 重要
Local
マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind…
Windows TCP/IP Local の特権昇格の脆弱性 CWE-122
ヒープオーバーフロー
CVE-2026-33837 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
5360 7.8 重要
Local
マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind…
Windows メッセージ キュー (MSMQ) の特権昇格の脆弱性 CWE-415
二重解放
CVE-2026-33838 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354171 - phprofession phprofession phProfession 2.5 allows remote attackers to gain sensitive information via a direct HTTP request to upload.php, which reveals the path in a PHP error message. NVD-CWE-Other
CVE-2004-1953 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354172 - phprofession phprofession Cross-site scripting (XSS) vulnerability in modules.php in phProfession 2.5 allows remote attackers to inject arbitrary web script or HTML via the jcode parameter. NVD-CWE-Other
CVE-2004-1954 2017-07-11 10:31 2004-04-21 Show GitHub Exploit DB Packet Storm
354173 - phprofession phprofession SQL injection vulnerability in modules.php in phProfession 2.5 allows remote attackers to execute arbitrary SQL code via the offset parameter. NVD-CWE-Other
CVE-2004-1955 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354174 - postnuke_software_foundation postnuke PostNuke 0.7.2.6 allows remote attackers to gain information via a direct HTTP request to files in the (1) includes/blocks directory, (2) pnadodb directory, (3) NS-NewUser module, (4) NS-Your_Account… NVD-CWE-Other
CVE-2004-1956 2017-07-11 10:31 2004-04-21 Show GitHub Exploit DB Packet Storm
354175 - - - Multiple cross-site scripting (XSS) vulnerabilities in PostNuke 0.726 allows remote attackers to inject arbitrary web script or HTML via the (1) lid and query parameters to the Downloads module, (2) … NVD-CWE-Other
CVE-2004-1957 2017-07-11 10:31 2004-04-21 Show GitHub Exploit DB Packet Storm
354176 - epic_games unreal_engine
unreal_tournament
unreal_tournament_2003
Directory traversal vulnerability in manifest.ini in Unreal engine allows remote attackers to overwrite arbitrary files via .. (dot dot) sequences in a UMOD (Unreal MOD) file. NVD-CWE-Other
CVE-2004-1958 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354177 - protector_system protector_system blocker_query.php in Protector System 1.15b1 for PHP-Nuke allows remote attackers to gain sensitive information via a string in the portNum parameter, which reveals the full path in an error message. NVD-CWE-Other
CVE-2004-1959 2017-07-11 10:31 2004-04-23 Show GitHub Exploit DB Packet Storm
354178 - protector_system protector_system Cross-site scripting (XSS) vulnerability in blocker_query.php in Protector System 1.15b1 allows remote attackers to inject arbitrary web script or HTML via the (1) target or (2) portNum parameters. NVD-CWE-Other
CVE-2004-1960 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354179 - protector_system protector_system SQL injection vulnerability in index.php in Protector System 1.15b1 allows remote attackers to bypass SQL injection filters by using "/**/" sequences in the targeted fields. NVD-CWE-Other
CVE-2004-1962 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354180 - - - nqt.php in Network Query Tool (NQT) 1.6 allows remote attackers to obtain sensitive information via a string in the portNum parameter, which reveals the full path in an error message. NVD-CWE-Other
CVE-2004-1963 2017-07-11 10:31 2004-04-23 Show GitHub Exploit DB Packet Storm