Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5661 6.5 警告
Network 		jqlang jq jqlangのjqにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-39979 2026-04-27 11:21 2026-04-13 Show GitHub Exploit DB Packet Storm
5662 5.5 警告
Local 		Linux Foundation Sigstore Timestamp Authority Linux FoundationのSigstore Timestamp Authorityにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-39984 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
5663 7.1 重要
Network 		lfprojects Zarf lfprojectsのZarfにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40090 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
5664 4.4 警告
Local 		Authzed, Inc. SpiceDB Authzed, Inc.のSpiceDBにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-40091 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
5665 5.4 警告
Network 		OpenMage Magento OpenMageのMagentoにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40098 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
5666 7.5 重要
Network 		free5gc free5gc free5GCにおける複数の脆弱性 CWE-285
CWE-636
CVE-2026-40248 2026-04-27 11:21 2026-04-16 Show GitHub Exploit DB Packet Storm
5667 5.8 警告
Network 		free5gc free5gc
udr 		free5GCのfree5GC等の複数製品における例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-40343 2026-04-27 11:21 2026-04-22 Show GitHub Exploit DB Packet Storm
5668 8.8 重要
Network 		OpenMage Magento OpenMageのMagentoにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-40488 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
5669 9.1 緊急
Network 		FreeScout FreeScout FreeScoutにおける複数の脆弱性 CWE-330
CWE-340
CVE-2026-40496 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
5670 8.1 重要
Network 		FreeScout FreeScout FreeScoutにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40497 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352461 - microsoft asp.net Multiple cross-site scripting (XSS) vulnerabilities in Microsoft ASP.NET (.Net) 1.0 and 1.1 to SP1 allow remote attackers to inject arbitrary HTML or web script via Unicode representations for ASCII … NVD-CWE-Other
CVE-2005-0452 2016-10-18 12:11 2005-02-16 Show GitHub Exploit DB Packet Storm
352462 - oscommerce oscommerce Cross-site scripting (XSS) vulnerability in contact_us.php in osCommerce 2.2-MS2 allows remote attackers to inject arbitrary web script or HTML via the enquiry parameter. NVD-CWE-Other
CVE-2005-0458 2016-10-18 12:11 2005-05-2 Show GitHub Exploit DB Packet Storm
352463 - alt-n webadmin useredit_account.wdm in Alt-N WebAdmin 3.0.4 does not properly validate account edits by the logged in user, which allows remote authenticated users to edit other users' account information via a mod… NVD-CWE-Other
CVE-2005-0318 2016-10-18 12:10 2005-01-28 Show GitHub Exploit DB Packet Storm
352464 - oracle database_server SQL injection vulnerability in Oracle Database 9i and 10g allows remote attackers to execute arbitrary SQL commands and gain privileges. NVD-CWE-Other
CVE-2005-0297 2016-10-18 12:09 2005-01-18 Show GitHub Exploit DB Packet Storm
352465 - squid squid Squid 2.5, when processing the configuration file, parses empty Access Control Lists (ACLs), including proxy_auth ACLs without defined auth schemes, in a way that effectively removes arguments, which… NVD-CWE-Other
CVE-2005-0194 2016-10-18 12:08 2005-05-2 Show GitHub Exploit DB Packet Storm
352466 - sun
compaq 		rte
sdk
tru64 		The Software Development Kit (SDK) and Run Time Environment (RTE) 1.4.1 and 1.4.2 for Tru64 UNIX allows remote attackers to cause a denial of service (Java Virtual Machine hang) via object deserializ… NVD-CWE-Other
CVE-2005-0223 2016-10-18 12:08 2005-05-2 Show GitHub Exploit DB Packet Storm
352467 - hp virtualvault Unknown vulnerability in HP-UX B.11.04 running Virtualvault 4.5 through 4.7, when running the TGA daemon, allows remote attackers to cause a denial of service via certain network traffic. NVD-CWE-Other
CVE-2005-0224 2016-10-18 12:08 2005-01-31 Show GitHub Exploit DB Packet Storm
352468 - ngircd ngircd Format string vulnerability in the Log_Resolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute… NVD-CWE-Other
CVE-2005-0226 2016-10-18 12:08 2005-02-3 Show GitHub Exploit DB Packet Storm
352469 - nissc ipsec Certain configurations of IPsec, when using Encapsulating Security Payload (ESP) in tunnel mode, integrity protection at a higher layer, or Authentication Header (AH), allow remote attackers to decry… NVD-CWE-Other
CVE-2005-0039 2016-10-18 12:07 2005-05-10 Show GitHub Exploit DB Packet Storm
352470 - gnu
ubuntu 		mailman
ubuntu_linux 		The 55_options_traceback.dpatch patch for mailman 2.1.5 in Ubuntu 4.10 displays a different error message depending on whether the e-mail address is subscribed to a private list, which allows remote … NVD-CWE-Other
CVE-2005-0080 2016-10-18 12:07 2005-05-2 Show GitHub Exploit DB Packet Storm