Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5591	8.8	重要 Network	Coze	Coze Studio	CozeのCoze Studioにおける複数の脆弱性	CWE-74 CWE-89	CVE-2026-7023	2026-05-7 12:00	2026-04-26	Show	GitHub Exploit DB Packet Storm

5592	7.3	重要 Network	ShadowCloneLabs	Glutamate MCP Servers	ShadowCloneLabsのGlutamate MCP Serversにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-7094	2026-05-7 12:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

5593	5.4	警告 Network	helpy.io	helpy	helpy.ioのhelpyにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40229	2026-05-7 12:00	2026-04-29	Show	GitHub Exploit DB Packet Storm

5594	5.4	警告 Network	helpy.io	helpy	helpy.ioのhelpyにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40230	2026-05-7 12:00	2026-04-29	Show	GitHub Exploit DB Packet Storm

5595	7.5	重要 Network	Exim Development	Exim	Exim DevelopmentのEximにおける指定された機能の不適切な提供に関する脆弱性	CWE-684 指定された機能の不適切な提供	CVE-2026-40684	2026-05-7 12:00	2026-04-30	Show	GitHub Exploit DB Packet Storm

5596	9.8	緊急 Network	Exim Development	Exim	Exim DevelopmentのEximにおける複数の脆弱性	CWE-684 CWE-787	CVE-2026-40685	2026-05-7 12:00	2026-04-30	Show	GitHub Exploit DB Packet Storm

5597	5.3	警告 Network	Exim Development	Exim	Exim DevelopmentのEximにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-40686	2026-05-7 12:00	2026-04-30	Show	GitHub Exploit DB Packet Storm

5598	9.1	緊急 Network	Exim Development	Exim	Exim DevelopmentのEximにおけるリソースの初期化の不備に関する脆弱性	CWE-909 リソースの初期化の不備	CVE-2026-40687	2026-05-7 12:00	2026-04-30	Show	GitHub Exploit DB Packet Storm

5599	6.5	警告 Network	The Prosody Team	Prosody	The Prosody TeamのProsodyにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-43504	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

5600	6.5	警告 Network	The Prosody Team	Prosody	The Prosody TeamのProsodyにおける保護されていない代替チャネルに関する脆弱性	CWE-420 保護されていない代替チャネル	CVE-2026-43505	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351151	-	freeform_interactive monolith_productions	purge_jihad alien_versus_predator blood contract_jack global_operations kiss_psycho_circus legends_of_might_and_magic no_one_lives_forever sanity shogo tron	Format string vulnerability in the Lithtech engine, as used in multiple games, allows remote authenticated users to cause a denial of service (application crash) via format string specifiers in (1) a…	NVD-CWE-Other	CVE-2004-1500	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

351152	-	software602	602lan_suite	The webmail service in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) by sending a POST request with a large Content-Length…	NVD-CWE-Other	CVE-2004-1501	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

351153	-	software602	602lan_suite	The Telnet proxy in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (socket exhaustion) via a Telnet request to an IP address of the proxy's network inte…	NVD-CWE-Other	CVE-2004-1502	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

351154	-	sun	jre	Integer overflow in the InitialDirContext in Java Runtime Environment (JRE) 1.4.2, 1.5.0 and possibly other versions allows remote attackers to cause a denial of service (Java exception and failed DN…	NVD-CWE-Other	CVE-2004-1503	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

351155	-	salims_softhouse	jaf_cms	The displaycontent function in config.php for Just Another Flat file (JAF) CMS 3.0RC allows remote attackers to gain sensitive information via a blank show parameter, which reveals the installation p…	NVD-CWE-Other	CVE-2004-1504	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

351156	-	salims_softhouse	jaf_cms	Directory traversal vulnerability in index.php in Just Another Flat file (JAF) CMS 3.0RC allows remote attackers to read arbitrary files and possibly execute PHP code via a .. (dot dot) in the show p…	NVD-CWE-Other	CVE-2004-1505	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

351157	-	webcalendar	webcalendar	Multiple cross-site scripting (XSS) vulnerabilities in WebCalendar allow remote attackers to inject arbitrary web script via (1) view_entry.php, (2) view_d.php, (3) usersel.php, (4) datesel.php, (5) …	NVD-CWE-Other	CVE-2004-1506	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

351158	-	webcalendar	webcalendar	CRLF injection vulnerability in login.php in WebCalendar allows remote attackers to inject CRLF sequences via the return_path parameter and perform HTTP Response Splitting attacks to modify expected …	NVD-CWE-Other	CVE-2004-1507	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

351159	-	webcalendar	webcalendar	init.php in WebCalendar allows remote attackers to execute arbitrary local PHP scripts via the user_inc parameter.	NVD-CWE-Other	CVE-2004-1508	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

351160	-	-	-	validate.php in WebCalendar allows remote attackers to gain sensitive information via an invalid encoded_login parameter, which reveals the full path in an error message.	NVD-CWE-Other	CVE-2004-1509	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm