Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
6251 5.3 警告
Network 		opentelemetry opentelemetry
OpenTelemetry.Extensions.Propagators
Opentelemetry.api 		opentelemetryのOpentelemetry.api等の複数製品における過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-40894 2026-04-30 12:18 2026-04-23 Show GitHub Exploit DB Packet Storm
6252 10 緊急
Network 		VoidZero Inc. Vite+ VoidZero Inc.のVite+におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41211 2026-04-30 12:18 2026-04-23 Show GitHub Exploit DB Packet Storm
6253 5.4 警告
Network 		Siemvk (siemvk) Openlearn Siemvk (siemvk)のOpenlearnにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41243 2026-04-30 12:18 2026-04-23 Show GitHub Exploit DB Packet Storm
6254 8.8 重要
Network 		Deskflow Deskflow Deskflowにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-41476 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
6255 7.8 重要
Local 		Deskflow Deskflow Deskflowにおける複数の脆弱性 CWE-306
CWE-862
CVE-2026-41477 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
6256 6.5 警告
Network 		langchain Langchain-text-splitters langchainのLangchain-text-splittersにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41481 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
6257 3.1
Network 		langchain Langchain-openai langchainのLangchain-openaiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41488 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
6258 9.8 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおける複数の脆弱性 CWE-131
CWE-787
CVE-2026-41676 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
6259 9.1 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおける複数の脆弱性 CWE-125
CWE-1284
CVE-2026-41677 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
6260 9.8 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-41678 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351811 - - - BugPort before 1.099 stores its configuration file (conf/config.conf) under the web document root with a file extension that is not normally parsed by web servers, which allows remote attackers to ob… NVD-CWE-Other
CVE-2004-2353 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351812 - francisco_burzi
warpspeed 		php-nuke
4nguestbook 		SQL injection vulnerability in 4nGuestbook 0.92 for PHP-Nuke 6.5 through 6.9 allows remote attackers to modify SQL statements via the entry parameter to modules.php, which can also facilitate cross-s… NVD-CWE-Other
CVE-2004-2354 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351813 - crafty_syntax_live_help crafty_syntax_live_help Cross-site scripting (XSS) vulnerability in Crafty Syntax Live Help (CSLH) before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the name field of a livehelp or chat session. NVD-CWE-Other
CVE-2004-2355 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351814 - fizmez fizmez_web_server Early termination vulnerability in Fizmez Web Server 1.0 allows remote attackers to cause a denial of service (crash) by connecting to the server and then disconnecting without sending any data, whic… NVD-CWE-Other
CVE-2004-2356 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351815 - proofpoint proofpoint_protection_server The embedded MySQL 4.0 server for Proofpoint Protection Server does not require a password for the root user of MySQL, which allows remote attackers to read or modify the backend database. NVD-CWE-Other
CVE-2004-2357 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351816 - - - Cross-site scripting (XSS) vulnerability in admin_words.php for phpBB 2.0.6c allows remote attackers to inject arbitrary web script or HTML via the id parameter. NVD-CWE-Other
CVE-2004-2358 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351817 - dell truemobile_1300_wlan_mini-pci_card_util_trayapplet Dell TrueMobile 1300 WLAN Mini-PCI Card Util TrayApplet 3.10.39.0 does not properly drop SYSTEM privileges when started from the systray applet, which allows local users to gain privileges by accessi… NVD-CWE-Other
CVE-2004-2359 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351818 - targem_games battle_mages Targem Battle Mages 1.0 allows remote attackers to cause a denial of service (infinite loop) via a UDP packet with incomplete data, which causes the server to enter an infinite loop while waiting to … NVD-CWE-Other
CVE-2004-2360 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351819 - - - Digital Reality game engine, as used in Haegemonia 1.0 through 1.0.7 and Desert Rats vs. Afrika Korps 1.0, allows remote attackers to cause a denial of service (crash) via a chat message with a large… NVD-CWE-Other
CVE-2004-2361 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351820 - microsoft windows_2003_server
windows_xp 		Memory leak in Microsoft Windows XP and Windows Server 2003 allows local users to cause a denial of service (memory exhaustion) by repeatedly creating and deleting directories using a non-standard to… NVD-CWE-Other
CVE-2004-2365 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm