Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5551 9.8 緊急
Network 		Progress Software Corporation Telerik UI for ASP.NET AJAX Progress Software CorporationのTelerik UI for ASP.NET AJAXにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-6023 2026-05-7 10:51 2026-04-22 Show GitHub Exploit DB Packet Storm
5552 2.7
Network 		Tanium Tanium Server TaniumのTanium Serverにおける認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-6408 2026-05-7 10:51 2026-04-22 Show GitHub Exploit DB Packet Storm
5553 5.5 警告
Local 		Wireshark Wireshark WiresharkにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-6525 2026-05-7 10:51 2026-05-2 Show GitHub Exploit DB Packet Storm
5554 7.5 重要
Network 		TYPO3 Association TYPO3 TYPO3 AssociationのTYPO3における重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2026-6553 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
5555 7.5 重要
Network 		xmlsoft.org
レッドハット		 Red Hat Hardened Images
Red Hat OpenShift Container Platform
libxml2
Red Hat Enterprise Linux
JBoss Core Services 		レッドハット等の複数ベンダの製品における型の取り違えに関する脆弱性 CWE-843
型の取り違え 		CVE-2026-6732 2026-05-7 10:50 2026-04-23 Show GitHub Exploit DB Packet Storm
5556 7.5 重要
Network 		Eclipse Foundation Eclipse OpenJ9 Eclipse FoundationのEclipse OpenJ9における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-6918 2026-05-7 10:50 2026-05-5 Show GitHub Exploit DB Packet Storm
5557 - - IDrive Inc. IDrive Cloud Backup Client for Windows IDrive Cloud Backup Client for Windowsにおける権限昇格の脆弱性 - CVE-2026-1995 2026-05-1 15:13 2026-04-30 Show GitHub Exploit DB Packet Storm
5558 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年04月28日) - - 2026-05-1 14:31 2026-04-30 Show GitHub Exploit DB Packet Storm
5559 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F456 Firmware Shenzhen Tenda Technology Co.,Ltd.のF456 Firmwareにおける複数の脆弱性 CWE-119
CWE-120
CVE-2026-7100 2026-05-1 10:49 2026-04-27 Show GitHub Exploit DB Packet Storm
5560 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F456 Firmware Shenzhen Tenda Technology Co.,Ltd.のF456 Firmwareにおける複数の脆弱性 CWE-74
CWE-77
CVE-2026-7102 2026-05-1 10:49 2026-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348131 - clearswift mailsweeper_business_suite_i
mailsweeper_business_suite_ii
mailsweeper_for_smtp
mimesweeper_for_web 		Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted … CWE-310
Cryptographic Issues 		CVE-2004-2703 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
348132 - phrozensmoke gyach_enhanced Multiple unspecified vulnerabilities in Gyach Enhanced (Gyach-E) before 1.0.5 have unknown impact and attack vectors related to "several security flaws," probably related to buffer overflows in HTTP … NVD-CWE-noinfo
CVE-2004-2707 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
348133 - windowmaker windowmaker Unspecified vulnerability in Window Maker 0.80.2 and earlier allows attackers to perform unknown actions via format string specifiers in a font specification in WMGLOBAL, probably a format string vul… CWE-134
Use of Externally-Controlled Format String 		CVE-2004-2714 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
348134 - php_heaven phpmychat edituser.php3 in PHPMyChat 0.14.5 allow remote attackers to bypass authentication and gain administrative privileges by setting the do_not_login parameter to false. CWE-287
Improper Authentication 		CVE-2004-2715 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
348135 - php_heaven phpmychat Multiple SQL injection vulnerabilities in usersL.php3 in PHPMyChat 0.14.5 allow remote attackers to execute arbitrary SQL commands via the (1) sortBy, (2) sortOrder, (3) startReg, (4) U, (5) LastChec… CWE-89
SQL Injection 		CVE-2004-2716 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
348136 - snitz_communications snitz_forums_2000 Cross-site scripting (XSS) vulnerability in register.asp in Snitz Forums 2000 3.4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via javascript events in the Email para… CWE-79
Cross-site Scripting 		CVE-2004-2720 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
348137 - heiko_stamer openskat The CheckGroup function in openSkat VTMF before 2.1 generates public key pairs in which the "p" variable might not be prime, which allows remote attackers to determine the private key and decrypt mes… CWE-310
Cryptographic Issues 		CVE-2004-2721 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
348138 - nessus nessuswx NessusWX 1.4.4 stores account passwords in plaintext in .session files, which allows local users to obtain passwords. CWE-255
Credentials Management 		CVE-2004-2723 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
348139 - lionmax_software chat_anywhere LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server crash and client CPU consumption) via a username beginning with percent (%) followed by a null charac… CWE-287
Improper Authentication 		CVE-2004-2724 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
348140 - aztek_forum aztek_forum Multiple cross-site scripting (XSS) vulnerabilities in Aztek Forum 4.0 allow remote attackers to inject arbitrary web script or HTML via (1) the search parameter in (a) search.php, (2) the email para… CWE-79
Cross-site Scripting 		CVE-2004-2725 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm