Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 4:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5451 6.1 警告
Network 		angular Angular CLI angularのAngular CLIにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-33397 2026-05-1 10:38 2026-03-26 Show GitHub Exploit DB Packet Storm
5452 9.1 緊急
Network 		Fatedier FRP FatedierのFRPにおける認証に関する脆弱性 CWE-287
CWE-noinfo
CVE-2026-40910 2026-05-1 10:38 2026-04-21 Show GitHub Exploit DB Packet Storm
5453 8.8 重要
Network 		VMware Spring gRPC VMwareのSpring gRPCにおける隔離または分類に関する脆弱性 CWE-653
不適切な隔離または分類 		CVE-2026-40968 2026-05-1 10:38 2026-04-28 Show GitHub Exploit DB Packet Storm
5454 5.3 警告
Network 		VMware Spring gRPC VMwareのSpring gRPCにおけるエラーメッセージによる情報漏えいに関する脆弱性 CWE-209
エラーメッセージによる情報漏えい 		CVE-2026-40969 2026-05-1 10:38 2026-04-28 Show GitHub Exploit DB Packet Storm
5455 7.5 重要
Network 		Frappe Press FrappeのPressにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-41317 2026-05-1 10:38 2026-04-24 Show GitHub Exploit DB Packet Storm
5456 6.1 警告
Network 		Frappe Press FrappeのPressにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41430 2026-05-1 10:38 2026-04-24 Show GitHub Exploit DB Packet Storm
5457 8.8 重要
Network 		D-Link Systems, Inc. DHP-1320 Firmware D-Link CorporationのDHP-1320 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-4529 2026-05-1 10:38 2026-03-21 Show GitHub Exploit DB Packet Storm
5458 7 重要
Local 		flos-freeware (Florian Balmer) Notepad2 flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性 CWE-426
CWE-427
CVE-2026-4545 2026-05-1 10:38 2026-03-22 Show GitHub Exploit DB Packet Storm
5459 7 重要
Local 		flos-freeware (Florian Balmer) Notepad2 flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性 CWE-426
CWE-427
CVE-2026-4546 2026-05-1 10:38 2026-03-22 Show GitHub Exploit DB Packet Storm
5460 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. 4G03 Pro Firmware Shenzhen Tenda Technology Co.,Ltd.の4G03 Pro Firmwareにおける複数の脆弱性 CWE-266
CWE-284
CVE-2026-5526 2026-05-1 10:38 2026-04-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
357501 - dnrd dnrd The DNS implementation of DNRD before 2.10 allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an i… NVD-CWE-Other
CVE-2005-0037 2008-09-6 05:45 2005-12-31 Show GitHub Exploit DB Packet Storm
357502 - dnrd dnrd This vulnerability is addressed in the following product release: dnrd, dnrd, 2.10 NVD-CWE-Other
CVE-2005-0037 2008-09-6 05:45 2005-12-31 Show GitHub Exploit DB Packet Storm
357503 - powerdns powerdns The DNS implementation of PowerDNS 2.9.16 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could t… NVD-CWE-Other
CVE-2005-0038 2008-09-6 05:45 2005-12-31 Show GitHub Exploit DB Packet Storm
357504 - synaesthesia synaesthesia Synaesthesia 2.1 and earlier, and possibly other versions, when installed setuid root, does not drop privileges before processing configuration and mixer files, which allows local users to read arbit… NVD-CWE-Other
CVE-2005-0070 2008-09-6 05:45 2005-05-2 Show GitHub Exploit DB Packet Storm
357505 - tcp tcp The original design of TCP does not check that the TCP sequence number in an ICMP error message is within the range of sequence numbers for data that has been sent but not acknowledged (aka "TCP sequ… NVD-CWE-Other
CVE-2005-0065 2008-09-6 05:45 2005-05-2 Show GitHub Exploit DB Packet Storm
357506 - tcp tcp The original design of TCP does not check that the TCP Acknowledgement number in an ICMP error message generated by an intermediate router is within the range of possible values for data that has alr… NVD-CWE-Other
CVE-2005-0066 2008-09-6 05:45 2004-12-22 Show GitHub Exploit DB Packet Storm
357507 - tcp tcp The original design of TCP does not require that port numbers be assigned randomly (aka "Port randomization"), which makes it easier for attackers to forge ICMP error messages for specific TCP connec… NVD-CWE-Other
CVE-2005-0067 2008-09-6 05:45 2004-12-22 Show GitHub Exploit DB Packet Storm
357508 - tcp tcp The original design of ICMP does not require authentication for host-generated ICMP error messages, which makes it easier for attackers to forge ICMP error messages for specific TCP connections and c… NVD-CWE-Other
CVE-2005-0068 2008-09-6 05:45 2004-12-22 Show GitHub Exploit DB Packet Storm
357509 - debian sympa Buffer overflow in queue.c in a support script for sympa 3.3.3, when running setuid, allows local users to execute arbitrary code. NVD-CWE-Other
CVE-2005-0073 2008-09-6 05:45 2005-05-2 Show GitHub Exploit DB Packet Storm
357510 - xpcd xpcd Buffer overflow in pcdsvgaview in xpcd 2.08 allows local users to execute arbitrary code. NVD-CWE-Other
CVE-2005-0074 2008-09-6 05:45 2005-02-11 Show GitHub Exploit DB Packet Storm