Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5591	5.3	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-0394	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5592	8.2	重要 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-24031	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5593	5.9	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるCapture-replay による認証回避に関する脆弱性	CWE-294 Capture-replayによる認証回避	CVE-2026-27855	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5594	5.9	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品における認証に関する脆弱性	CWE-287 CWE-Other	CVE-2026-27856	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5595	5.3	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-27860	2026-05-1 10:39	2026-03-27	Show	GitHub Exploit DB Packet Storm

5596	8.4	重要 Local	Anthropic PBC	Claude Code Claude Agent SDK	Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35020	2026-05-1 10:39	2026-04-6	Show	GitHub Exploit DB Packet Storm

5597	7.8	重要 Local	Anthropic PBC	Claude Code Claude Agent SDK	Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35021	2026-05-1 10:39	2026-04-6	Show	GitHub Exploit DB Packet Storm

5598	9.8	緊急 Network	Anthropic PBC	Claude Code Claude Agent SDK	Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35022	2026-05-1 10:39	2026-04-6	Show	GitHub Exploit DB Packet Storm

5599	7.8	重要 Local	MAGIX	MAGIX MP3 deluxe	MAGIXのMAGIX MP3 deluxeにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2018-25260	2026-05-1 10:39	2026-04-22	Show	GitHub Exploit DB Packet Storm

5600	7.8	重要 Local	Enter Srl	Iperius Backup	Enter SrlのIperius Backupにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2018-25261	2026-05-1 10:39	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350831	-	efs_software	efs_web_server	Easy File Sharing (EFS) Webserver 1.25 allows remote attackers to cause a denial of service (CPU consumption or crash) via many large HTTP requests.	NVD-CWE-Other	CVE-2004-1744	2017-07-11 10:31	2004-08-24	Show	GitHub Exploit DB Packet Storm

350832	-	people_can_fly	painkiller	Buffer overflow in Painkiller 1.3.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.	NVD-CWE-Other	CVE-2004-1745	2017-07-11 10:31	2004-08-24	Show	GitHub Exploit DB Packet Storm

350833	-	php_code_snippet_library	php_code_snippet_library	Cross-site scripting (XSS) vulnerability in index.php in PHP Code Snippet Library allows remote attackers to inject arbitrary web script or HTML via the (1) cat_select or (2) show parameters.	NVD-CWE-Other	CVE-2004-1746	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350834	-	network_everywhere	nr041	Cross-site scripting (XSS) vulnerability in NetworkEverywhere NR041 running firmware 1.2 Release 03 allows remote attackers to inject arbitrary web script or HTML via the DHCP HOSTNAME option.	NVD-CWE-Other	CVE-2004-1747	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350835	-	sysinternals	regmon	NtRegmon before 6.12 allows local users to cause a denial of service (crash), while NtRegmon is running, via invalid pointers to hook functions such as ZwSetQueryValue.	NVD-CWE-Other	CVE-2004-1748	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350836	-	toplayer	attack_mitigator	Attack Mitigator IPS 5500 3.11.008, and possibly other versions, when configured in a one-armed routing configuration, allows remote attackers to cause a denial of service (CPU consumption) via a lar…	NVD-CWE-Other	CVE-2004-1749	2017-07-11 10:31	2004-07-22	Show	GitHub Exploit DB Packet Storm

350837	-	vnc	realvnc	RealVNC 4.0 and earlier allows remote attackers to cause a denial of service (crash) via a large number of connections to port 5900.	NVD-CWE-Other	CVE-2004-1750	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350838	-	massive_entertainment	ground_control_ii_operation_exodus	Ground Control II: Operation Exodus 1.0.0.7 and earlier allows remote servers to cause a denial of service (client or server crash) via a large packet, which generates a "Message too long" socket err…	NVD-CWE-Other	CVE-2004-1751	2017-07-11 10:31	2004-08-26	Show	GitHub Exploit DB Packet Storm

350839	-	-	-	Stack-based buffer overflow in Gaucho 1.4 Build 145 allows remote attackers to execute arbitrary code via a POP3 email with a long Content-Type header.	NVD-CWE-Other	CVE-2004-1752	2017-07-11 10:31	2004-08-24	Show	GitHub Exploit DB Packet Storm

350840	-	mozilla netscape	firefox mozilla navigator	The Apple Java plugin, as used in Netscape 7.1 and 7.2, Mozilla 1.7.2, and Firefox 0.9.3 on MacOS X 10.3.5, when tabbed browsing is enabled, does not properly handle SetWindow(NULL) calls, which allo…	NVD-CWE-Other	CVE-2004-1753	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm