Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5551	6.5	警告 Network	マイクロソフト	Microsoft Teams	Microsoft Team Events Portal Information Disclosure Vulnerability	CWE-285 不適切な認可	CVE-2026-33823	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

5552	9	緊急 Network	マイクロソフト	Azure Managed Instance for Apache Cassandra	Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability	CWE-20 不適切な入力確認	CVE-2026-33844	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

5553	8.2	重要 Network	マイクロソフト	Microsoft Partner Center	Microsoft Partner Center Spoofing Vulnerability	CWE-610 別領域リソースに対する外部からの制御可能な参照	CVE-2026-34327	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

5554	5.3	警告 Network	sandboxie-plus	Sandboxie	sandboxie-plusのSandboxieにおける弱いハッシュの使用に関する脆弱性	CWE-328 脆弱なハッシュの使用	CVE-2026-34527	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

5555	6.7	警告 Local	デル	data domain operating system PowerProtect DP Series Appliance	デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35072	2026-05-11 11:10	2026-04-17	Show	GitHub Exploit DB Packet Storm

5556	6.7	警告 Local	デル	data domain operating system	デルのdata domain operating systemにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35073	2026-05-11 11:10	2026-04-17	Show	GitHub Exploit DB Packet Storm

5557	6.7	警告 Local	デル	data domain operating system PowerProtect DP Series Appliance	デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35074	2026-05-11 11:10	2026-04-17	Show	GitHub Exploit DB Packet Storm

5558	6.7	警告 Local	デル	data domain operating system PowerProtect DP Series Appliance	デルのdata domain operating system等の複数製品における引数の挿入または変更に関する脆弱性	CWE-88 引数の挿入または変更	CVE-2026-35153	2026-05-11 11:10	2026-04-17	Show	GitHub Exploit DB Packet Storm

5559	8.8	重要 Network	Project Jupyter	Jupyter Server	Project JupyterのJupyter Serverにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35397	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

5560	9.6	緊急 Network	マイクロソフト	Azure Cloud Shell	Azure Cloud Shell Spoofing Vulnerability	CWE-77 コマンドインジェクション	CVE-2026-35428	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346351	-	apache-ssl	apache-ssl	Apache-SSL 1.3.28+1.52 and earlier, with SSLVerifyClient set to 1 or 3 and SSLFakeBasicAuth enabled, allows remote attackers to forge a client certificate by using basic authentication with the "one-…	NVD-CWE-Other	CVE-2004-0009	2017-10-10 10:30	2004-03-3	Show	GitHub Exploit DB Packet Storm

346352	-	debian	fsp	Buffer overflow in fsp before 2.81.b18 allows remote users to execute arbitrary code.	NVD-CWE-Other	CVE-2004-0011	2017-10-10 10:30	2004-01-20	Show	GitHub Exploit DB Packet Storm

346353	-	jabber_software_foundation	jabber_server	jabber 1.4.2, 1.4.2a, and possibly earlier versions, does not properly handle SSL connections, which allows remote attackers to cause a denial of service (crash).	NVD-CWE-Other	CVE-2004-0013	2017-10-10 10:30	2004-02-3	Show	GitHub Exploit DB Packet Storm

346354	-	vbox3	vbox3	vbox3 0.1.8 and earlier does not properly drop privileges before executing a user-provided TCL script, which allows local users to gain privileges.	NVD-CWE-Other	CVE-2004-0015	2017-10-10 10:30	2004-02-3	Show	GitHub Exploit DB Packet Storm

346355	-	phpgroupware	phpgroupware	The calendar module for phpgroupware 0.9.14 does not enforce the "save extension" feature for holiday files, which allows remote attackers to create and execute PHP files.	NVD-CWE-Other	CVE-2004-0016	2017-10-10 10:30	2004-02-3	Show	GitHub Exploit DB Packet Storm

346356	-	samba	jitterbug	jitterbug 1.6.2 does not properly sanitize inputs, which allows remote authenticated users to execute arbitrary commands.	NVD-CWE-Other	CVE-2004-0028	2017-10-10 10:30	2004-02-3	Show	GitHub Exploit DB Packet Storm

346357	-	phpgedview	phpgedview	PHPGEDVIEW 2.61 allows remote attackers to reinstall the software and change the administrator password via a direct HTTP request to editconfig.php.	NVD-CWE-Other	CVE-2004-0031	2017-10-10 10:30	2004-01-20	Show	GitHub Exploit DB Packet Storm

346358	-	phpgedview	phpgedview	Cross-site scripting (XSS) vulnerability in search.php in PHPGEDVIEW 2.61 allows remote attackers to inject arbitrary HTML and web script via the firstname parameter.	NVD-CWE-Other	CVE-2004-0032	2017-10-10 10:30	2004-01-20	Show	GitHub Exploit DB Packet Storm

346359	-	phpgedview	phpgedview	admin.php in PHPGEDVIEW 2.61 allows remote attackers to obtain sensitive information via an action parameter with a phpinfo command.	NVD-CWE-Other	CVE-2004-0033	2017-10-10 10:30	2004-01-20	Show	GitHub Exploit DB Packet Storm

346360	-	phorum	phorum	SQL injection vulnerability in register.php for Phorum 3.4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the hide_email parameter.	NVD-CWE-Other	CVE-2004-0035	2017-10-10 10:30	2004-01-20	Show	GitHub Exploit DB Packet Storm