Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
571 7.5 重要
Network 		Netty Netty Nettyにおける複数の脆弱性 CWE-770
CWE-789
CVE-2026-42582 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
572 7.5 重要
Network 		Netty Netty Nettyにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-42583 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
573 9.1 緊急
Network 		Netty Netty NettyにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-42584 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
574 7.5 重要
Network 		Netty Netty NettyにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-42585 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
575 7.1 重要
Local 		Netty Netty NettyにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-42586 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
576 7.5 重要
Network 		Netty Netty Nettyにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-42587 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
577 9.8 緊急
Network 		TheCodingMachine Gotenberg TheCodingMachineのGotenbergにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42589 2026-05-20 13:29 2026-05-14 Show GitHub Exploit DB Packet Storm
578 8.2 重要
Network 		TheCodingMachine Gotenberg TheCodingMachineのGotenbergにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-42590 2026-05-20 13:29 2026-05-14 Show GitHub Exploit DB Packet Storm
579 8.2 重要
Network 		TheCodingMachine Gotenberg TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-42591 2026-05-20 13:29 2026-05-14 Show GitHub Exploit DB Packet Storm
580 5.3 警告
Network 		TheCodingMachine Gotenberg TheCodingMachineのGotenbergにおける複数の脆弱性 CWE-367
CWE-918
CVE-2026-42592 2026-05-20 13:29 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345781 - yabb yabb SQL injection vulnerability in post.php for YaBB SE 1.5.4 and 1.5.5 allows remote attackers to obtain hashed passwords via the quote parameter. NVD-CWE-Other
CVE-2004-0291 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
345782 - karjasoft sami_http_server Buffer overflow in KarjaSoft Sami HTTP Server 1.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request. NVD-CWE-Other
CVE-2004-0292 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
345783 - shopcartcgi shopcartcgi Directory traversal vulnerability in ShopCartCGI 2.3 allows remote attackers to retrieve arbitrary files via a .. (dot dot) in a HTTP request to (1) gotopage.cgi or (2) genindexpage.cgi. NVD-CWE-Other
CVE-2004-0293 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
345784 - transsoft broker_ftp_server TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a denial of service (CPU consumption) via an open idle connection. NVD-CWE-Other
CVE-2004-0295 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
345785 - transsoft broker_ftp_server TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a TsFtpSrv.exe to exit with an exception by opening and immediately closing a connection. NVD-CWE-Other
CVE-2004-0296 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
345786 - aclogic cesarftp CesarFTP 0.99e allows remote attackers to cause a denial of service (CPU consumption) via a long RETR parameter. NVD-CWE-Other
CVE-2004-0298 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
345787 - smallftpd smallftpd Buffer overflow in smallftpd 0.99 allows local users to cause a denial of service (crash) via an FTP request with a large number of "/" (slash) characters. NVD-CWE-Other
CVE-2004-0299 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
345788 - ecommerce_corporation_online store_kit SQL injection vulnerability in Online Store Kit 3.0 allows remote attackers to inject arbitrary SQL and gain unauthorized access via (1) the cat parameter in shop.php, (2) the id parameter in more.ph… NVD-CWE-Other
CVE-2004-0300 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
345789 - ecommerce_corporation_online store_kit Cross-site scripting (XSS) vulnerability in more.php for Online Store Kit 3.0 allows remote attackers to inject arbitrary HTML via the id parameter. NVD-CWE-Other
CVE-2004-0301 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
345790 - fools_workshop owls_workshop Directory traversal vulnerability in OWLS 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) file parameter in index.php, (2) editfile in glossary.php, or (3) editfile … NVD-CWE-Other
CVE-2004-0302 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm