Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5471 9.8 緊急
Network 		Frappe ERPNext FrappeのERPNextにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-38431 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
5472 6.1 警告
Network 		Frappe ERPNext FrappeのERPNextにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-38432 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
5473 9.1 緊急
Network 		CHORNY Apache::Session CHORNYのApache::Sessionにおける有効期限後または解放後のリソースの操作に関する脆弱性 CWE-672
有効期限後または解放後のリソースの操作 		CVE-2013-10075 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5474 9.8 緊急
Network 		PHPOffice PhpSpreadsheet PHPOfficeのPhpSpreadsheetにおける複数の脆弱性 CWE-502
CWE-918
CVE-2026-34084 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
5475 5.4 警告
Network 		PHPOffice PhpSpreadsheet PHPOfficeのPhpSpreadsheetにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-35453 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
5476 9.1 緊急
Network 		Zcash Foundation Zebra-script
Zebrad 		Zcash FoundationのZebra-script等の複数製品における呼び出し元による仕様の不適切な準拠に関する脆弱性 CWE-573
呼び出し元による仕様の不適切な準拠 		CVE-2026-41583 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5477 6.5 警告
Network 		Zcash Foundation zebra-rpc
Zebrad 		Zcash Foundationのzebra-rpc等の複数製品における複数の脆弱性 CWE-248
CWE-617
CVE-2026-41585 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5478 9.1 緊急
Network 		Zcash Foundation Zebra-script
Zebrad 		Zcash FoundationのZebra-script等の複数製品におけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-44497 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5479 5.3 警告
Network 		Apache Software Foundation CloudStack Apache Software FoundationのCloudStackにおける複数の脆弱性 CWE-367
CWE-770
CVE-2025-69233 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5480 8.4 重要
Local 		デル data domain operating system
PowerProtect DP Series Appliance 		デルのdata domain operating system等の複数製品における弱い認証情報の使用に関する脆弱性 CWE-1391
脆弱な認証情報の使用 		CVE-2026-23853 2026-05-11 11:12 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346391 - symantec firewall_vpn_appliance_100
firewall_vpn_appliance_200
firewall_vpn_appliance_200r 		Symantec FireWall/VPN Appliance model 200 records a cleartext password for the password administration page, which may be cached on the administrator's local system or in a proxy, which allows attack… NVD-CWE-Other
CVE-2004-0190 2017-10-10 10:30 2004-03-15 Show GitHub Exploit DB Packet Storm
346392 - mozilla mozilla Mozilla before 1.4.2 executes Javascript events in the context of a new page while it is being loaded, allowing it to interact with the previous page (zombie document) and enable cross-domain and cro… NVD-CWE-Other
CVE-2004-0191 2017-10-10 10:30 2004-03-15 Show GitHub Exploit DB Packet Storm
346393 - iss blackice_agent_server
blackice_pc_protection
blackice_server_protection
realsecure_desktop
realsecure_guard
realsecure_network
realsecure_sentry
realsecure_server_sensor
prove… 		Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0… NVD-CWE-Other
CVE-2004-0193 2017-10-10 10:30 2004-03-15 Show GitHub Exploit DB Packet Storm
346394 - adobe acrobat_reader Stack-based buffer overflow in the OutputDebugString function for Adobe Acrobat Reader 5.1 allows remote attackers to execute arbitrary code via a PDF document with XML Forms Data Format (XFDF) data. NVD-CWE-Other
CVE-2004-0194 2017-10-10 10:30 2004-03-29 Show GitHub Exploit DB Packet Storm
346395 - netbsd
openbsd 		netbsd
openbsd 		OpenBSD 3.4 and NetBSD 1.6 and 1.6.1 allow remote attackers to cause a denial of service (crash) by sending an IPv6 packet with a small MTU to a listening port and then issuing a TCP connect to that … NVD-CWE-Other
CVE-2004-0257 2017-10-10 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
346396 - apache
ibm 		http_server PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow … NVD-CWE-Other
CVE-2004-0263 2017-10-10 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
346397 - clam_anti-virus clamav libclamav in Clam AntiVirus 0.65 allows remote attackers to cause a denial of service (crash) via a uuencoded e-mail message with an invalid line length (e.g., a lowercase character), which causes an… NVD-CWE-Other
CVE-2004-0270 2017-10-10 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
346398 - realnetworks realone_desktop_manager
realone_enterprise_desktop
realone_player 		Directory traversal vulnerability in RealOne Player, RealOne Player 2.0, and RealOne Enterprise Desktop allows remote attackers to upload arbitrary files via an RMP file that contains .. (dot dot) se… CWE-22
Path Traversal 		CVE-2004-0273 2017-10-10 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
346399 - eggheads eggdrop_irc_bot Share.mod in Eggheads Eggdrop IRC bot 1.6.10 through 1.6.15 can mistakenly assign STAT_OFFERED status to a bot that is not a sharebot, which allows remote attackers to use STAT_OFFERED to promote a b… NVD-CWE-Other
CVE-2004-0274 2017-10-10 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
346400 - ipswitch imail Buffer overflow in the Lightweight Directory Access Protocol (LDAP) daemon (iLDAP.exe 3.9.15.10) in Ipswitch IMail Server 8.03 allows remote attackers to cause a denial of service (crash) and execute… NVD-CWE-Other
CVE-2004-0297 2017-10-10 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm