Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
6111 4.3 警告
Network 		xibosignage xibo xibosignageのxiboにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-31956 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
6112 8.8 重要
Network 		マイクロソフト Azure Logic Apps Azure Logic Apps の特権昇格の脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-32171 2026-04-30 12:31 2026-04-14 Show GitHub Exploit DB Packet Storm
6113 7.5 重要
Network 		getkirby kirby getkirbyのkirbyにおけるブラインド XPath インジェクションの脆弱性 CWE-91
ブラインド XPath インジェクション 		CVE-2026-32870 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
6114 9.8 緊急
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-33076 2026-04-30 12:31 2026-04-24 Show GitHub Exploit DB Packet Storm
6115 7.5 重要
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-33077 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
6116 9.8 緊急
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-33078 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
6117 8.8 重要
Network 		Roxy-WI Roxy-WI Roxy-WIにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-33208 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
6118 7.5 重要
Network 		PowerDNS dnsdist PowerDNSのdnsdistにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33254 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
6119 7.5 重要
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS Recursorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33256 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
6120 7.5 重要
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS Recursorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33258 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351301 - logicnow perldesk pdesk.cgi in PerlDesk allows remote attackers to gain sensitive information via an invalid lang parameter, which includes pathname information in an error message. NVD-CWE-Other
CVE-2004-1677 2017-07-11 10:31 2004-09-12 Show GitHub Exploit DB Packet Storm
351302 - logicnow perldesk Directory traversal vulnerability in pdesk.cgi in PerlDesk allows remote attackers to read portions of arbitrary files and possibly execute arbitrary Perl modules via ".." sequences terminated by a %… NVD-CWE-Other
CVE-2004-1678 2017-07-11 10:31 2004-09-13 Show GitHub Exploit DB Packet Storm
351303 - pingtel xpressa application.cgi in the Pingtel Xpressa handset running firmware 2.1.11.24 allows remote authenticated users to cause a denial of service (VxWorks OS crash) via a long HTTP GET request, possibly trigg… NVD-CWE-Other
CVE-2004-1680 2017-07-11 10:31 2004-09-13 Show GitHub Exploit DB Packet Storm
351304 - qnx photon_microgui
rtp 		Multiple buffer overflows in (1) phrelay-cfg, (2) phlocale, (3) pkg-installer, or (4) input-cfg in QNX Photon microGUI for QNX RTP 6.1 allow local users to gain privileges via a long -s (server) comm… NVD-CWE-Other
CVE-2004-1681 2017-07-11 10:31 2004-08-26 Show GitHub Exploit DB Packet Storm
351305 - qnx rtp Format string vulnerability in QNX 6.1 FTP client allows remote authenticated users to gain group bin privileges via format string specifiers in the QUOTE command. NVD-CWE-Other
CVE-2004-1682 2017-07-11 10:31 2004-08-15 Show GitHub Exploit DB Packet Storm
351306 - - - A race condition in crrtrap for QNX RTP 6.1 allows local users to gain privileges by modifying the PATH environment variable to reference a malicious io-graphics program before is executed by crrtrap. NVD-CWE-Other
CVE-2004-1683 2017-07-11 10:31 2004-09-13 Show GitHub Exploit DB Packet Storm
351307 - zyxel prestige
zynos 		Zyxel P681 running ZyNOS Vt020225a contains portions of memory in an ARP request, which allows remote attackers to obtain sensitive information by sniffing the network. NVD-CWE-Other
CVE-2004-1684 2017-07-11 10:31 2004-09-13 Show GitHub Exploit DB Packet Storm
351308 - smc_networks smc7004vwbr
smc7008abr 		SMC routers SMC7004VWBR running firmware 1.00.014 and SMC7008ABR EU running firmware 1.42.003 allow remote attackers to bypass authentication by connecting to it from the same IP address as the admin… NVD-CWE-Other
CVE-2004-1685 2017-07-11 10:31 2004-09-15 Show GitHub Exploit DB Packet Storm
351309 - microsoft ie Internet Explorer 6.0 in Windows XP SP2 allows remote attackers to bypass the Information Bar prompt for ActiveX and Javascript via an XHTML page that contains an Internet Explorer formatted comment … NVD-CWE-Other
CVE-2004-1686 2017-07-11 10:31 2004-09-15 Show GitHub Exploit DB Packet Storm
351310 - snitz_communications snitz_forums_2000 CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the locati… NVD-CWE-Other
CVE-2004-1687 2017-07-11 10:31 2004-09-16 Show GitHub Exploit DB Packet Storm