Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5611	9.1	緊急 Network	Fatedier	FRP	FatedierのFRPにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-40910	2026-05-1 10:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

5612	8.8	重要 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおける隔離または分類に関する脆弱性	CWE-653 不適切な隔離または分類	CVE-2026-40968	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

5613	5.3	警告 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2026-40969	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

5614	7.5	重要 Network	Frappe	Press	FrappeのPressにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-41317	2026-05-1 10:38	2026-04-24	Show	GitHub Exploit DB Packet Storm

5615	6.1	警告 Network	Frappe	Press	FrappeのPressにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41430	2026-05-1 10:38	2026-04-24	Show	GitHub Exploit DB Packet Storm

5616	8.8	重要 Network	D-Link Systems, Inc.	DHP-1320 Firmware	D-Link CorporationのDHP-1320 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-4529	2026-05-1 10:38	2026-03-21	Show	GitHub Exploit DB Packet Storm

5617	7	重要 Local	flos-freeware (Florian Balmer)	Notepad2	flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性	CWE-426 CWE-427	CVE-2026-4545	2026-05-1 10:38	2026-03-22	Show	GitHub Exploit DB Packet Storm

5618	7	重要 Local	flos-freeware (Florian Balmer)	Notepad2	flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性	CWE-426 CWE-427	CVE-2026-4546	2026-05-1 10:38	2026-03-22	Show	GitHub Exploit DB Packet Storm

5619	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	4G03 Pro Firmware	Shenzhen Tenda Technology Co.,Ltd.の4G03 Pro Firmwareにおける複数の脆弱性	CWE-266 CWE-284	CVE-2026-5526	2026-05-1 10:38	2026-04-4	Show	GitHub Exploit DB Packet Storm

5620	5.3	警告 Network	Shenzhen Tenda Technology Co.,Ltd.	4G03 Pro Firmware	Shenzhen Tenda Technology Co.,Ltd.の4G03 Pro Firmwareにおける複数の脆弱性	CWE-320 CWE-321	CVE-2026-5527	2026-05-1 10:38	2026-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
352801	-	phpadsnew phppgads	phpadsnew phppgads	HTTP response splitting vulnerability in phpAdsNew and phpPgAds 2.0.6 and earlier allows remote attackers to inject arbitrary HTML headers via adclick.php and possibly other unspecified vectors.	NVD-CWE-Other	CVE-2005-3791	2016-10-18 12:37	2005-11-24	Show	GitHub Exploit DB Packet Storm

352802	-	phpbb_group	phpbb	phpBB 2.0.18 allows remote attackers to obtain sensitive information via a large SQL query, which generates an error message that reveals SQL syntax or the full installation path.	NVD-CWE-Other	CVE-2005-3799	2016-10-18 12:37	2005-11-24	Show	GitHub Exploit DB Packet Storm

352803	-	counterpane	passwordsafe	CounterPane PasswordSafe 1.x and 2.x allows local users to test possible encryption keys against a subset of the stored key data without performing the more expensive key derivation function (KDF) fu…	NVD-CWE-Other	CVE-2005-3801	2016-10-18 12:37	2005-11-24	Show	GitHub Exploit DB Packet Storm

352804	-	linux	linux_kernel	The nfattr_to_tcp function in ip_conntrack_proto_tcp.c in ctnetlink in Linux kernel 2.6.14 up to 2.6.14.3 allows attackers to cause a denial of service (kernel oops) via an update message without pri…	NVD-CWE-Other	CVE-2005-3809	2016-10-18 12:37	2005-11-26	Show	GitHub Exploit DB Packet Storm

352805	-	linux	linux_kernel	ip_conntrack_proto_icmp.c in ctnetlink in Linux kernel 2.6.14 up to 2.6.14.3 allows attackers to cause a denial of service (kernel oops) via a message without ICMP ID (ICMP_ID) information, which lea…	NVD-CWE-Other	CVE-2005-3810	2016-10-18 12:37	2005-11-26	Show	GitHub Exploit DB Packet Storm

352806	-	gadu-gadu	gadu-gadu_instant_messenger	Gadu-Gadu 7.20 allows remote attackers to eavesdrop on a user via a web page that accesses the EasycallLite.oce ActiveX control, which can initiate an outgoing phone call and listen to the microphone.	NVD-CWE-Other	CVE-2005-3892	2016-10-18 12:37	2005-11-30	Show	GitHub Exploit DB Packet Storm

352807	-	mozilla	mozilla	Mozilla allows remote attackers to cause a denial of service (CPU consumption) via a Javascript BODY onload event that calls the window function.	NVD-CWE-Other	CVE-2005-3896	2016-10-18 12:37	2005-11-30	Show	GitHub Exploit DB Packet Storm

352808	-	apple	safari	Apple Safari 2.0.2 allows remote attackers to cause a denial of service (system slowdown) via a Javascript BODY onload event that calls the window function.	NVD-CWE-Other	CVE-2005-3897	2016-10-18 12:37	2005-11-30	Show	GitHub Exploit DB Packet Storm

352809	-	phorum	phorum	SQL injection vulnerability in search.php in Phorum 5.0.0alpha through 5.0.20, when register_globals is enabled, allows remote attackers to execute arbitrary SQL commands via the forum_ids parameter.	CWE-89 SQL Injection	CVE-2005-3543	2016-10-18 12:36	2005-11-16	Show	GitHub Exploit DB Packet Storm

352810	-	codegrrl	phpcalendar phpclique phpcurrently phpfanbase phpquotes	PHP file inclusion vulnerability in protection.php in CodeGrrl (a) PHPCalendar 1.0, (b) PHPClique 1.0, (c) PHPCurrently 2.0, (d) PHPFanBase 2.1, and (e) PHPQuotes 1.0 allows remote attackers to inclu…	CWE-94 Code Injection	CVE-2005-3571	2016-10-18 12:36	2005-11-16	Show	GitHub Exploit DB Packet Storm