Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5761 9.8 緊急
Network 		Frappe ERPNext FrappeのERPNextにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-38431 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
5762 6.1 警告
Network 		Frappe ERPNext FrappeのERPNextにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-38432 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
5763 9.1 緊急
Network 		CHORNY Apache::Session CHORNYのApache::Sessionにおける有効期限後または解放後のリソースの操作に関する脆弱性 CWE-672
有効期限後または解放後のリソースの操作 		CVE-2013-10075 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5764 9.8 緊急
Network 		PHPOffice PhpSpreadsheet PHPOfficeのPhpSpreadsheetにおける複数の脆弱性 CWE-502
CWE-918
CVE-2026-34084 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
5765 5.4 警告
Network 		PHPOffice PhpSpreadsheet PHPOfficeのPhpSpreadsheetにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-35453 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
5766 9.1 緊急
Network 		Zcash Foundation Zebra-script
Zebrad 		Zcash FoundationのZebra-script等の複数製品における呼び出し元による仕様の不適切な準拠に関する脆弱性 CWE-573
呼び出し元による仕様の不適切な準拠 		CVE-2026-41583 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5767 6.5 警告
Network 		Zcash Foundation zebra-rpc
Zebrad 		Zcash Foundationのzebra-rpc等の複数製品における複数の脆弱性 CWE-248
CWE-617
CVE-2026-41585 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5768 9.1 緊急
Network 		Zcash Foundation Zebra-script
Zebrad 		Zcash FoundationのZebra-script等の複数製品におけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-44497 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5769 5.3 警告
Network 		Apache Software Foundation CloudStack Apache Software FoundationのCloudStackにおける複数の脆弱性 CWE-367
CWE-770
CVE-2025-69233 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5770 8.4 重要
Local 		デル data domain operating system
PowerProtect DP Series Appliance 		デルのdata domain operating system等の複数製品における弱い認証情報の使用に関する脆弱性 CWE-1391
脆弱な認証情報の使用 		CVE-2026-23853 2026-05-11 11:12 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346421 - microsoft word
works 		Microsoft Word 97, 98(J), 2000, and 2002, and Microsoft Works Suites 2001 through 2004, do not properly check the length of the "Macro names" data value, which could allow remote attackers to execute… NVD-CWE-Other
CVE-2003-0820 2018-10-13 06:33 2003-12-15 Show GitHub Exploit DB Packet Storm
346422 - microsoft word
works 		Microsoft Excel 97, 2000, and 2002 allows remote attackers to execute arbitrary code via a spreadsheet with a malicious XLM (Excel 4) macro that bypasses the macro security model. NVD-CWE-Other
CVE-2003-0821 2018-10-13 06:33 2003-12-15 Show GitHub Exploit DB Packet Storm
346423 - microsoft data_access_components Buffer overflow in a component of Microsoft Data Access Components (MDAC) 2.5 through 2.8 allows remote attackers to execute arbitrary code via a malformed UDP response to a broadcast request. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2003-0903 2018-10-13 06:33 2004-02-17 Show GitHub Exploit DB Packet Storm
346424 - microsoft windows_media_services Unknown vulnerability in Windows Media Station Service and Windows Media Monitor Service components of Windows Media Services 4.1 allows remote attackers to cause a denial of service (disallowing new… NVD-CWE-Other
CVE-2003-0905 2018-10-13 06:33 2004-04-15 Show GitHub Exploit DB Packet Storm
346425 - microsoft windows_2000
windows_nt
windows_xp 		Buffer overflow in the rendering for (1) Windows Metafile (WMF) or (2) Enhanced Metafile (EMF) image formats in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, and XP SP1 allows remote attackers… NVD-CWE-Other
CVE-2003-0906 2018-10-13 06:33 2004-06-1 Show GitHub Exploit DB Packet Storm
346426 - microsoft windows_2000 The Utility Manager in Microsoft Windows 2000 executes winhlp32.exe with system privileges, which allows local users to execute arbitrary code via a "Shatter" style attack using a Windows message tha… NVD-CWE-Other
CVE-2003-0908 2018-10-13 06:33 2004-06-1 Show GitHub Exploit DB Packet Storm
346427 - microsoft windows_xp Windows XP allows local users to execute arbitrary programs by creating a task at an elevated privilege level through the eventtriggers.exe command-line tool or the Task Scheduler service, aka "Windo… NVD-CWE-Other
CVE-2003-0909 2018-10-13 06:33 2004-06-1 Show GitHub Exploit DB Packet Storm
346428 - microsoft windows_2000
windows_nt 		The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4.0 and Windows 2000 allows local attackers to gain access to kernel memory and execute ar… NVD-CWE-Other
CVE-2003-0910 2018-10-13 06:33 2004-06-1 Show GitHub Exploit DB Packet Storm
346429 - microsoft content_management_server Cross-site scripting vulnerability (XSS) in ManualLogin.asp script for Microsoft Content Management Server (MCMS) 2001 allows remote attackers to execute arbitrary script via the REASONTXT parameter. NVD-CWE-Other
CVE-2003-0002 2018-10-13 06:32 2003-02-7 Show GitHub Exploit DB Packet Storm
346430 - microsoft windows_xp Buffer overflow in the Windows Redirector function in Microsoft Windows XP allows local users to execute arbitrary code via a long parameter. NVD-CWE-Other
CVE-2003-0004 2018-10-13 06:32 2003-02-19 Show GitHub Exploit DB Packet Storm