Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
6231 9.1 緊急
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 CWE-1321
CWE-915
CVE-2026-42044 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
6232 8.8 重要
Network 		HashiCorp Vault HashiCorpのVaultにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-4525 2026-04-30 12:25 2026-04-17 Show GitHub Exploit DB Packet Storm
6233 4.9 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-4917 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
6234 4.8 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4918 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
6235 4.8 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4919 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
6236 8.6 重要
Network 		HashiCorp Vault HashiCorpのVaultにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-5052 2026-04-30 12:25 2026-04-17 Show GitHub Exploit DB Packet Storm
6237 6.5 警告
Network 		Rapid7 velociraptor Rapid7のvelociraptorにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-5329 2026-04-30 12:25 2026-04-9 Show GitHub Exploit DB Packet Storm
6238 7.5 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-5477 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
6239 5.9 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-5500 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
6240 8.1 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-5501 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
353941 - info-zip unzip Unzip 5.51 and earlier does not properly warn the user when extracting setuid or setgid files, which may allow local users to gain privileges. NVD-CWE-Other
CVE-2005-0602 2016-10-18 12:12 2005-05-2 Show GitHub Exploit DB Packet Storm
353942 - argosoft argosoft_mail_server Multiple directory traversal vulnerabilities in ArGoSoft Mail Server 1.8.7.3 allow remote authenticated users to read, delete, or upload arbitrary files via a .. (dot dot) in (1) the filename of an e… NVD-CWE-Other
CVE-2005-0367 2016-10-18 12:11 2005-02-9 Show GitHub Exploit DB Packet Storm
353943 - armagetron armagetron
armagetron_advanced 		Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 and earlier allow remote attackers to cause a denial of service (network disconnection) via an empty UDP packet, which is not properly d… NVD-CWE-Other
CVE-2005-0370 2016-10-18 12:11 2005-05-2 Show GitHub Exploit DB Packet Storm
353944 - armagetron armagetron
armagetron_advanced 		Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 and earlier allow remote attackers to cause a denial of service (freeze) via a large number of player connections that do not send any d… NVD-CWE-Other
CVE-2005-0371 2016-10-18 12:11 2005-05-2 Show GitHub Exploit DB Packet Storm
353945 - ibm db2_universal_database Unknown "high risk" vulnerability in DB2 Universal Database 8.1 and earlier has unknown impact and attack vectors. NOTE: due to the delayed disclosure of details for this issue, this candidate may b… NVD-CWE-Other
CVE-2005-0417 2016-10-18 12:11 2005-04-27 Show GitHub Exploit DB Packet Storm
353946 - jelsoft vbulletin Direct code injection vulnerability in forumdisplay.php in vBulletin 3.0 through 3.0.4, when showforumusers is enabled, allows remote attackers to execute inject arbitrary PHP commands via the comma … NVD-CWE-Other
CVE-2005-0429 2016-10-18 12:11 2005-05-2 Show GitHub Exploit DB Packet Storm
353947 - id_software quake_3_engine The Quake 3 engine, as used in multiple game packages, allows remote attackers to cause a denial of service (shutdown game server) and possibly crash the server via a long infostring, possibly trigge… NVD-CWE-Other
CVE-2005-0430 2016-10-18 12:11 2005-02-12 Show GitHub Exploit DB Packet Storm
353948 - microsoft asp.net Multiple cross-site scripting (XSS) vulnerabilities in Microsoft ASP.NET (.Net) 1.0 and 1.1 to SP1 allow remote attackers to inject arbitrary HTML or web script via Unicode representations for ASCII … NVD-CWE-Other
CVE-2005-0452 2016-10-18 12:11 2005-02-16 Show GitHub Exploit DB Packet Storm
353949 - oscommerce oscommerce Cross-site scripting (XSS) vulnerability in contact_us.php in osCommerce 2.2-MS2 allows remote attackers to inject arbitrary web script or HTML via the enquiry parameter. NVD-CWE-Other
CVE-2005-0458 2016-10-18 12:11 2005-05-2 Show GitHub Exploit DB Packet Storm
353950 - alt-n webadmin useredit_account.wdm in Alt-N WebAdmin 3.0.4 does not properly validate account edits by the logged in user, which allows remote authenticated users to edit other users' account information via a mod… NVD-CWE-Other
CVE-2005-0318 2016-10-18 12:10 2005-01-28 Show GitHub Exploit DB Packet Storm