Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5381 5.4 警告
Network 		authlib authlib authlibにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-41425 2026-04-30 10:59 2026-04-24 Show GitHub Exploit DB Packet Storm
5382 6.1 警告
Network 		pretalx pretalx pretalxにおける複数の脆弱性 CWE-116
CWE-79
CVE-2026-41426 2026-04-30 10:59 2026-04-24 Show GitHub Exploit DB Packet Storm
5383 9.1 緊急
Network 		budibase budibase budibaseにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-41428 2026-04-30 10:59 2026-04-24 Show GitHub Exploit DB Packet Storm
5384 9.1 緊急
Network 		BACnet Stack BACnet Stack BACnet Stackにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-41475 2026-04-30 10:59 2026-04-24 Show GitHub Exploit DB Packet Storm
5385 9.9 緊急
Network 		Saltcorn Saltcorn SaltcornにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41478 2026-04-30 10:59 2026-04-24 Show GitHub Exploit DB Packet Storm
5386 9.8 緊急
Network 		dgraph dgraph dgraphにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-41492 2026-04-30 10:59 2026-04-24 Show GitHub Exploit DB Packet Storm
5387 7.5 重要
Network 		BACnet Stack BACnet Stack BACnet Stackにおける複数の脆弱性 CWE-125
CWE-193
CVE-2026-41502 2026-04-30 10:59 2026-04-24 Show GitHub Exploit DB Packet Storm
5388 7.5 重要
Network 		BACnet Stack BACnet Stack BACnet Stackにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-41503 2026-04-30 10:59 2026-04-24 Show GitHub Exploit DB Packet Storm
5389 7.5 重要
Network 		Apache Software Foundation Apache Thrift Apache Software FoundationのApache Thriftにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-41602 2026-04-30 10:59 2026-04-28 Show GitHub Exploit DB Packet Storm
5390 7.4 重要
Network 		Apache Software Foundation Apache Thrift Apache Software FoundationのApache Thriftにおける複数の脆弱性 CWE-297
CWE-306
CVE-2026-41603 2026-04-30 10:59 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350621 - jftpgw jftpgw Format string vulnerability in the log function for jftpgw 0.13.4 and earlier allows remote authenticated users to execute arbitrary code via format string specifiers in certain syslog messages. NVD-CWE-Other
CVE-2004-0448 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
350622 - log2mail log2mail Format string vulnerability in the printlog function in log2mail before 0.2.5.2 allows local users or remote attackers to execute arbitrary code via format string specifiers in a logfile monitored by… NVD-CWE-Other
CVE-2004-0450 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
350623 - sup
debian 		sup
debian_linux 		Multiple format string vulnerabilities in the (1) logquit, (2) logerr, or (3) loginfo functions in Software Upgrade Protocol (SUP) allows remote attackers to execute arbitrary code via format string … NVD-CWE-Other
CVE-2004-0451 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
350624 - vice vice Format string vulnerability in the monitor "memory dump" command in VICE 1.6 to 1.14 allows local users to cause a denial of service (emulator crash) and possibly execute arbitrary code via format st… NVD-CWE-Other
CVE-2004-0453 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
350625 - rlpr rlpr Buffer overflow in the msg function for rlpr daemon (rlprd) 2.04 allows local users to execute arbitrary code. NVD-CWE-Other
CVE-2004-0454 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
350626 - pavuk
debian
gentoo 		pavuk
debian_linux
linux 		Stack-based buffer overflow in pavuk 0.9pl28, 0.9pl27, and possibly other versions allows remote web sites to execute arbitrary code via a long HTTP Location header. NVD-CWE-Other
CVE-2004-0456 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
350627 - ieee 802.11_wireless_protocol The Clear Channel Assessment (CCA) algorithm in the IEEE 802.11 wireless protocol, when using DSSS transmission encoding, allows remote attackers to cause a denial of service via a certain RF signal … NVD-CWE-Other
CVE-2004-0459 2017-07-11 10:30 2004-07-7 Show GitHub Exploit DB Packet Storm
350628 - - - The built-in web servers for multiple networking devices do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext o… NVD-CWE-Other
CVE-2004-0462 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
350629 - openconnect webconnect Directory traversal vulnerability in jretest.html in WebConnect 6.5 and 6.4.4, and possibly earlier versions, allows remote attackers to read keys within arbitrary INI formatted files via "..//" sequ… NVD-CWE-Other
CVE-2004-0465 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
350630 - openconnect webconnect WebConnect 6.5, 6.4.4, and possibly earlier versions allows remote attackers to cause a denial of service (hang) via a URL containing an MS-DOS device name such as (1) AUX, (2) CON, (3) PRN, (4) COM1… NVD-CWE-Other
CVE-2004-0466 2017-07-11 10:30 2004-02-21 Show GitHub Exploit DB Packet Storm