Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5751	7.3	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	w30e ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-38834	2026-04-30 12:29	2026-04-21	Show	GitHub Exploit DB Packet Storm

5752	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	w30e ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-38835	2026-04-30 12:29	2026-04-21	Show	GitHub Exploit DB Packet Storm

5753	5.4	警告 Network	pyLoad	pyLoad	pyLoadにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40071	2026-04-30 12:29	2026-04-9	Show	GitHub Exploit DB Packet Storm

5754	6.5	警告 Network	getkirby	kirby	getkirbyのkirbyにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40099	2026-04-30 12:29	2026-04-24	Show	GitHub Exploit DB Packet Storm

5755	5.4	警告 Network	Auth0 Inc.	nextjs-auth0	Auth0 Inc.のnextjs-auth0における複数の脆弱性	CWE-362 CWE-863	CVE-2026-40155	2026-04-30 12:29	2026-04-17	Show	GitHub Exploit DB Packet Storm

5756	5.5	警告 Local	systemd project	systemd	systemd projectのsystemdにおける不適切な動作順序に関する脆弱性	CWE-696 不適切な動作順序	CVE-2026-40223	2026-04-30 12:29	2026-04-10	Show	GitHub Exploit DB Packet Storm

5757	7.3	重要 Local	systemd project	systemd	systemd projectのsystemdにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40224	2026-04-30 12:29	2026-04-10	Show	GitHub Exploit DB Packet Storm

5758	6.4	警告 Physics	systemd project	systemd	systemd projectのsystemdにおける領域間での誤ったリソース移動に関する脆弱性	CWE-669 領域間での誤ったリソース移動	CVE-2026-40225	2026-04-30 12:28	2026-04-10	Show	GitHub Exploit DB Packet Storm

5759	6.1	警告 Network	FreeRDP	FreeRDP	FreeRDPにおける境界条件の判定に関する脆弱性	CWE-193 境界条件の判定	CVE-2026-40254	2026-04-30 12:28	2026-04-24	Show	GitHub Exploit DB Packet Storm

5760	3.7	低 Network	BACnet Stack	BACnet Stack	BACnet Stackにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性	CWE-758 未定義、未指定、または実装定義の動作への依存	CVE-2026-40279	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349541	-	francisco_burzi	php-nuke	Multiple cross-site scripting (XSS) vulnerabilities in Php-Nuke 6.x through 7.3 allow remote attackers to inject arbitrary HTML or web script into the (1) optionbox parameter in the News module, (2) …	NVD-CWE-Other	CVE-2004-2020	2017-07-19 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

349542	-	nucleus_group	nucleus_cms	SQL injection vulnerability in action.php in Nucleus CMS 3.01 allows remote attackers to execute arbitrary SQL statements via the itemid parameter.	NVD-CWE-Other	CVE-2004-2056	2017-07-19 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

349543	-	xlinesoft	asprunner	Multiple cross-site scripting vulnerabilities in ASPRunner 2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) SearchFor parameter in [TABLE-NAME]_search.asp, (2) SQL parame…	NVD-CWE-Other	CVE-2004-2059	2017-07-19 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

349544	-	freshmeat	network_query_tool network_query_tool_phpnuke	network_query.php in Network Query Tool 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the target parameter.	NVD-CWE-Other	CVE-2001-1495	2017-07-19 10:29	2001-12-31	Show	GitHub Exploit DB Packet Storm

349545	-	talentsoft	web\+_server	Buffer overflow in webpsvc.exe for Talentsoft Web+ 5.0 and earlier allows remote attackers to execute arbitrary code via a long argument to webplus.exe program, which triggers the overflow in webpsvc…	NVD-CWE-Other	CVE-2002-0449	2017-07-19 10:29	2002-07-26	Show	GitHub Exploit DB Packet Storm

349546	-	hp	instant_support	Unknown vulnerability in HP Instant Support Enterprise Edition (ISEE) product U2512A for HP-UX 11.00 and 11.11 may allow authenticated users to access restricted files.	NVD-CWE-Other	CVE-2002-0993	2017-07-19 10:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

349547	-	berlios	konversation	Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the us…	NVD-CWE-Other	CVE-2005-0130	2017-07-12 10:29	2005-04-14	Show	GitHub Exploit DB Packet Storm

349548	-	-	-	Cross-site scripting (XSS) vulnerability in formmail.php in Woltlab Burning Board Lite 1.0.0, 1.0.1e, and possibly other versions, allows remote attackers to inject arbitrary web script and HTML via …	NVD-CWE-Other	CVE-2005-0216	2017-07-12 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

349549	-	digipen_institute_of_technology	bontago	Buffer overflow in Bontago 1.1 and earlier allows remote attackers to execute arbitrary code via a long nickname.	NVD-CWE-Other	CVE-2005-0501	2017-07-12 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

349550	-	working_resources_inc.	badblue	Buffer overflow in ext.dll in BadBlue 2.55 allows remote attackers to execute arbitrary code via a long mfcisapicommand parameter.	NVD-CWE-Other	CVE-2005-0595	2017-07-12 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm