Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5591 7.5 重要
Network 		NLTK NLTK NLTKにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-0847 2026-04-30 12:11 2026-03-4 Show GitHub Exploit DB Packet Storm
5592 9.8 緊急
Network 		lollms lollms lollmsにおけるアクセス制御に関する脆弱性 CWE-284
CWE-Other
CVE-2026-1114 2026-04-30 12:11 2026-04-7 Show GitHub Exploit DB Packet Storm
5593 4.3 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-1272 2026-04-30 12:11 2026-04-23 Show GitHub Exploit DB Packet Storm
5594 4.9 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるビジネスロジックエラーに関する脆弱性 CWE-840
ビジネスロジックエラー 		CVE-2026-1274 2026-04-30 12:11 2026-04-23 Show GitHub Exploit DB Packet Storm
5595 6.5 警告
Network 		IBM IBM DB2 IBMのIBM DB2における入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2026-1352 2026-04-30 12:11 2026-04-23 Show GitHub Exploit DB Packet Storm
5596 9.8 緊急
Network 		エリクソン CodeChecker エリクソンのCodeCheckerにおける複数の脆弱性 CWE-290
CWE-863
CVE-2026-25660 2026-04-30 12:11 2026-04-24 Show GitHub Exploit DB Packet Storm
5597 7.8 重要
Local 		マイクロソフト PowerShell Microsoft PowerShell セキュリティ機能のバイパスの脆弱性 CWE-20
不適切な入力確認 		CVE-2026-26143 2026-04-30 12:11 2026-04-14 Show GitHub Exploit DB Packet Storm
5598 9.8 緊急
Network 		デル PowerProtect DP Series Appliance
data domain operating system 		デルのdata domain operating system等の複数製品における複数の脆弱性 CWE-121
CWE-787
CVE-2026-26354 2026-04-30 12:11 2026-04-22 Show GitHub Exploit DB Packet Storm
5599 6.2 警告
Local 		アップル iPadOS
iOS 		アップルのiPadOS等の複数製品における認可されていない行為者への個人情報の漏えいに関する脆弱性 CWE-359
認可されていないアクターへの個人情報の漏えい 		CVE-2026-28950 2026-04-30 12:11 2026-04-22 Show GitHub Exploit DB Packet Storm
5600 6.1 警告
Local 		Chainguard Melange ChainguardのMelangeにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-29050 2026-04-30 12:11 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349721 - freebsd freebsd The SIOCGIFCONF ioctl (ifconf function) in FreeBSD 4.x through 4.11 and 5.x through 5.4 does not properly clear a buffer before using it, which allows local users to obtain portions of sensitive kern… CWE-399
 Resource Management Errors 		CVE-2005-1126 2017-07-11 10:32 2005-04-15 Show GitHub Exploit DB Packet Storm
349722 - postgrey postgrey Format string vulnerability in the log function in Net::Server 0.87 and earlier, as used in Postfix Greylisting Policy Server (Postgrey) 1.18 and earlier, and possibly other products, allows remote a… NVD-CWE-Other
CVE-2005-1127 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
349723 - - - eGroupWare 1.0.6 and earlier, when an e-mail is composed with an attachment but not sent, will send that attachment in the next e-mail, which may cause sensitive information to be sent to the wrong r… NVD-CWE-Other
CVE-2005-1129 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
349724 - desert_dog_software pinnacle_cart Cross-site scripting (XSS) vulnerability in index.php in Pinnacle Cart allows remote attackers to inject arbitrary web script or HTML via the pg parameter. NVD-CWE-Other
CVE-2005-1130 2017-07-11 10:32 2005-04-12 Show GitHub Exploit DB Packet Storm
349725 - lg_electronics lg_mobile_phone LG U8120 mobile phone allows remote attackers to cause a denial of service (device crash) via a malformed MIDI file. NVD-CWE-Other
CVE-2005-1132 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
349726 - s9y serendipity SQL injection vulnerability in exit.php for Serendipity 0.8 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) url_id or (2) entry_id parameters. NVD-CWE-Other
CVE-2005-1134 2017-07-11 10:32 2005-04-13 Show GitHub Exploit DB Packet Storm
349727 - - - calendar.pl in CalendarScript 3.20 allows remote attackers to obtain sensitive information via invalid (1) calendar or (2) template parameters, which leaks the full pathname and debug information. NVD-CWE-Other
CVE-2005-1147 2017-07-11 10:32 2005-04-12 Show GitHub Exploit DB Packet Storm
349728 - calendarscript calendarscript calendar.pl in CalendarScript 3.21 allows remote attackers to obtain sensitive information via invalid (1) year or (2) month parameters, which leaks the full pathname and debug information. NVD-CWE-Other
CVE-2005-1148 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
349729 - yager_development yager_game Yager 5.24 and earlier allows remote attackers to cause a denial of service (application hang) via a packet with a game header that provides less data than indicated by the length. NVD-CWE-Other
CVE-2005-1164 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
349730 - - - Yager 5.24 and earlier allows remote attackers to cause a denial of service (application crash) via certain malformed data. NVD-CWE-Other
CVE-2005-1165 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm