Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5921 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-31503 2026-04-30 12:15 2026-04-22 Show GitHub Exploit DB Packet Storm
5922 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-31504 2026-04-30 12:15 2026-04-22 Show GitHub Exploit DB Packet Storm
5923 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-31505 2026-04-30 12:15 2026-04-22 Show GitHub Exploit DB Packet Storm
5924 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-31506 2026-04-30 12:15 2026-04-22 Show GitHub Exploit DB Packet Storm
5925 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-31507 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
5926 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-31508 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
5927 8.8 重要
Network 		BMC Software Control-M Managed File Transfer BMC SoftwareのControl-M Managed File TransferにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-23780 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
5928 9.8 緊急
Network 		BMC Software Control-M Managed File Transfer BMC SoftwareのControl-M Managed File Transferにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-23781 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
5929 7.5 重要
Network 		BMC Software Control-M Managed File Transfer BMC SoftwareのControl-M Managed File Transferにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-23782 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
5930 9.9 緊急
Network 		Doorman Doorman Doormanにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-30269 2026-04-30 12:14 2026-04-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350201 - maxwebportal maxwebportal Cross-site scripting (XSS) vulnerability in links_add_form.asp for MaxWebPortal 1.33 and earlier allows remote attackers to inject arbitrary web script or HTML via a Javascript URL in a banner URL. NVD-CWE-Other
CVE-2005-1016 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
350202 - maxwebportal maxwebportal SQL injection vulnerability in the Update_Events function in events_functions.asp in MaxWebPortal 1.33 and earlier allows remote attackers to execute arbitrary SQL commands via the EVENT_ID parameter… CWE-89
SQL Injection 		CVE-2005-1017 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
350203 - aeon aeon Buffer overflow in the getConfig function in Aeon 0.2a and earlier allows local users to gain privileges via a long HOME environment variable. NVD-CWE-Other
CVE-2005-1019 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
350204 - francisco_burzi php-nuke Multiple cross-site scripting (XSS) vulnerabilities in PHP-Nuke 6.x to 7.6 allow remote attackers to inject arbitrary web script or HTML via the (1) min parameter to the Search module, (2) the catego… NVD-CWE-Other
CVE-2005-1023 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
350205 - francisco_burzi php-nuke modules.php in PHP-Nuke 6.x to 7.6 allows remote attackers to obtain sensitive information via a direct request to (1) my_headlines, (2) userinfo, or (3) search, which reveals the path in a PHP error… NVD-CWE-Other
CVE-2005-1024 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
350206 - francisco_burzi php-nuke Multiple cross-site scripting (XSS) vulnerabilities in PHP-Nuke 6.x through 7.6 allow remote attackers to inject arbitrary web script or HTML via the (1) username parameter in the Your_Account module… NVD-CWE-Other
CVE-2005-1027 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
350207 - active_web_softwares active_auction_house Multiple SQL injection vulnerabilities in Active Auction House allow remote attackers to execute arbitrary SQL commands via the (1) catid, (2) SortDir, or (3) Sortby parameter to default.asp, (4) ite… NVD-CWE-Other
CVE-2005-1029 2017-07-11 10:32 2005-04-6 Show GitHub Exploit DB Packet Storm
350208 - active_web_softwares active_auction_house Multiple cross-site scripting (XSS) vulnerabilities in Active Auction House allow remote attackers to inject arbitrary web script or HTML via the (1) ReturnURL, (2) password, (3) username parameter, … NVD-CWE-Other
CVE-2005-1030 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
350209 - e-xoops
runcms 		e-xoops
runcms 		RUNCMS 1.1A, and possibly other products based on e-Xoops (exoops), when "Allow custom avatar upload" is enabled, does not properly verify uploaded files, which allows remote attackers to upload arbi… NVD-CWE-Other
CVE-2005-1031 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
350210 - netwin surgeftp SurgeFTP 2.2m1 allows remote attackers to cause a denial of service (application hang) via the LEAK command. NVD-CWE-Other
CVE-2005-1034 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm