Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
531 9.8 緊急
Network 		マイクロソフト Microsoft Entra ID Microsoft Azure Active Directory B2C Elevation of Privilege Vulnerability CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-33843 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
532 4.3 警告
Network 		Joomla! Joomla! Joomla!におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-35220 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
533 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-35221 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
534 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-35222 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
535 8.8 重要
Network 		FreeRDP FreeRDP FreeRDPにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40033 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
536 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40383 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
537 7.2 重要
Network 		IBM Engineering Lifecycle Management IBMのEngineering Lifecycle Managementにおける危険なメソッドや機能の公開に関する脆弱性 CWE-749
危険なメソッドや機能の公開 		CVE-2026-4051 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
538 6.5 警告
Network 		struktur AG libheif struktur AGのlibheifにおける複数の脆弱性 CWE-125
CWE-476
CVE-2026-41069 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
539 8.1 重要
Network 		struktur AG libheif struktur AGのlibheifにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-41071 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
540 9.3 緊急
Network 		マイクロソフト Microsoft 365 Copilot Microsoft Copilot Tampering Vulnerability CWE-77
コマンドインジェクション 		CVE-2026-41090 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355721 - sitepanel sitepanel PHP remote file inclusion vulnerability in main.php in SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to execute arbitrary PHP code via the p parameter. NVD-CWE-Other
CVE-2005-1447 2008-09-6 05:49 2005-05-3 Show GitHub Exploit DB Packet Storm
355722 - s9y serendipity Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NVD-CWE-Other
CVE-2005-1448 2008-09-6 05:49 2005-05-3 Show GitHub Exploit DB Packet Storm
355723 - s9y serendipity Unknown vulnerability in serendipity_config_local.inc.php for Serendipity before 0.8 has unknown impact. NVD-CWE-Other
CVE-2005-1449 2008-09-6 05:49 2005-05-3 Show GitHub Exploit DB Packet Storm
355724 - s9y serendipity Unknown vulnerability in "the function used to validate path-names for uploading media" in Serendipity before 0.8 has unknown impact. NVD-CWE-Other
CVE-2005-1450 2008-09-6 05:49 2005-05-3 Show GitHub Exploit DB Packet Storm
355725 - s9y serendipity The media manager in Serendipity before 0.8 allows remote attackers to upload and execute arbitrary (1) .php or (2) .shtml files. NVD-CWE-Other
CVE-2005-1451 2008-09-6 05:49 2005-05-3 Show GitHub Exploit DB Packet Storm
355726 - s9y serendipity Serendipity before 0.8 allows Chief users to "hide plugins installed by other users." NVD-CWE-Other
CVE-2005-1452 2008-09-6 05:49 2005-05-3 Show GitHub Exploit DB Packet Storm
355727 - apple mac_os_x Certain system calls in Apple Mac OS X 10.4.1 do not properly enforce the permissions of certain directories without the POSIX read bit set, but with the execute bits set for group or other, which al… NVD-CWE-Other
CVE-2005-1472 2008-09-6 05:49 2005-05-19 Show GitHub Exploit DB Packet Storm
355728 - apple mac_os_x SecurityAgent in Apple Mac OS X 10.4.1 allows attackers with physical access to bypass the locked screensaver and launch background applications by opening a URL from a text input field. NVD-CWE-Other
CVE-2005-1473 2008-09-6 05:49 2005-06-13 Show GitHub Exploit DB Packet Storm
355729 - apple mac_os_x
mac_os_x_server 		Dashboard in Apple Mac OS X 10.4.1 allows remote attackers to install widgets via Safari without prompting the user, a different vulnerability than CVE-2005-1933. NVD-CWE-Other
CVE-2005-1474 2008-09-6 05:49 2005-06-13 Show GitHub Exploit DB Packet Storm
355730 - gnu mailutils Buffer overflow in the header_get_field_name function in header.c for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a crafted e-ma… NVD-CWE-Other
CVE-2005-1520 2008-09-6 05:49 2005-05-26 Show GitHub Exploit DB Packet Storm