Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5741	4.4	警告 Local	Mercurycom	MIPC252W Firmware	MercurycomのMIPC252W Firmwareにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-35901	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

5742	6.2	警告 Local	Mercurycom	MIPC252W Firmware	MercurycomのMIPC252W Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-35902	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

5743	9.8	緊急 Network	Mercurycom	MIPC252W Firmware	MercurycomのMIPC252W Firmwareにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2026-35903	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

5744	4.8	警告 Network	Apache Software Foundation	Apache Storm Prometheus Reporter	Apache Software FoundationのApache Storm Prometheus Reporterにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-40557	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

5745	8.8	重要 Network	minerva	minerva	Agilonhealth (MphRx)のMinervaにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-5779	2026-05-7 10:53	2026-04-28	Show	GitHub Exploit DB Packet Storm

5746	8.1	重要 Network	minerva	minerva	Agilonhealth (MphRx)のMinervaにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-5780	2026-05-7 10:52	2026-04-28	Show	GitHub Exploit DB Packet Storm

5747	8.8	重要 Network	Frappe	ERPNext	FrappeのERPNextにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2023-54345	2026-05-7 10:52	2026-05-5	Show	GitHub Exploit DB Packet Storm

5748	7.5	重要 Network	OpenEMR	OpenEMR	OpenEMRにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2023-54347	2026-05-7 10:52	2026-05-5	Show	GitHub Exploit DB Packet Storm

5749	7.2	重要 Network	デル	data domain operating system	デルのdata domain operating systemにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2025-46607	2026-05-7 10:52	2026-04-17	Show	GitHub Exploit DB Packet Storm

5750	6.6	警告 Network	デル	data domain operating system	デルのdata domain operating systemにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2025-46641	2026-05-7 10:52	2026-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350441	-	emotion	mediapartner_web_server	Cross-site scripting (XSS) vulnerability in EMotion MediaPartner Web Server 5.0 allows remote attackers to inject arbitrary HTML or web script, as demonstrated using a URL containing .. sequences and…	NVD-CWE-Other	CVE-2005-0336	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350442	-	savant	savant_webserver	Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request.	NVD-CWE-Other	CVE-2005-0338	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350443	-	foxmail	foxmail_email_server	Buffer overflow in Foxmail 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long MAIL FROM command.	NVD-CWE-Other	CVE-2005-0339	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350444	-	apple	afp_server	Integer signedness error in Apple File Service (AFP Server) allows remote attackers to cause a denial of service (application crash) via a negative UAM string length in a FPLoginExt packet.	NVD-CWE-Other	CVE-2005-0340	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350445	-	apple	safari	Apple Safari 1.2.4 does not obey the Content-type field in the HTTP header and renders text as HTML, which allows remote attackers to inject arbitrary web script or HTML and perform cross-site script…	NVD-CWE-Other	CVE-2005-0341	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350446	-	apple	mac_os_x mac_os_x_server	The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain privileges by creating a hard link from the .DS_Store file to an arbitrary file.	NVD-CWE-Other	CVE-2005-0342	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350447	-	logicnow	perldesk	SQL injection vulnerability in PerlDesk 1.x allows remote attackers to inject arbitrary SQL commands via the view parameter.	NVD-CWE-Other	CVE-2005-0343	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350448	-	software602	602lan_suite	Directory traversal vulnerability in 602LAN SUITE 2004.0.04.1221 allows remote authenticated users to upload and execute arbitrary files via a .. (dot dot) in the filename parameter.	NVD-CWE-Other	CVE-2005-0344	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350449	-	php_fusion	php_fusion	viewthread.php in php-fusion 4.x does not check the (1) forum_id or (2) forum_cat parameters, which allows remote attackers to view protected forums via the thread_id parameter.	NVD-CWE-Other	CVE-2005-0345	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

350450	-	safenet	softremote_vpn_client	SafeNet SoftRemote VPN Client stores the VPN password (pre-shared key) in cleartext in memory of the IreIKE.exe process, which allows local users to gain sensitive information if they have access to …	NVD-CWE-Other	CVE-2005-0346	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm