Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
6341	9.9	緊急 Network	マイクロソフト	Azure IOT Central	Azure IoT Central の特権昇格の脆弱性	CWE-200 情報漏えい	CVE-2026-21515	2026-04-30 12:14	2026-04-24	Show	GitHub Exploit DB Packet Storm

6342	4.8	警告 Network	GFI	GFI HelpDesk	GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-23752	2026-04-30 12:14	2026-04-20	Show	GitHub Exploit DB Packet Storm

6343	4.8	警告 Network	GFI	GFI HelpDesk	GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-23753	2026-04-30 12:14	2026-04-20	Show	GitHub Exploit DB Packet Storm

6344	5.4	警告 Network	GFI	GFI HelpDesk	GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-23756	2026-04-30 12:13	2026-04-20	Show	GitHub Exploit DB Packet Storm

6345	5.4	警告 Network	GFI	GFI HelpDesk	GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-23757	2026-04-30 12:13	2026-04-20	Show	GitHub Exploit DB Packet Storm

6346	5.4	警告 Network	GFI	GFI HelpDesk	GFIのGFI HelpDeskにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-23758	2026-04-30 12:13	2026-04-20	Show	GitHub Exploit DB Packet Storm

6347	6.5	警告 Network	Mattermost, Inc.	Focalboard	Mattermost, Inc.のFocalboardにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-25773	2026-04-30 12:13	2026-04-3	Show	GitHub Exploit DB Packet Storm

6348	4.3	警告 Network	Mattermost, Inc.	Focalboard	Mattermost, Inc.のFocalboardにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-28736	2026-04-30 12:13	2026-04-3	Show	GitHub Exploit DB Packet Storm

6349	7.8	重要 Local	DeepCool	DeepCreative	DeepCoolのDeepCreativeにおける安全でない継承されたパーミッションに関する脆弱性	CWE-277 安全でない継承されたパーミッション	CVE-2026-30266	2026-04-30 12:13	2026-04-20	Show	GitHub Exploit DB Packet Storm

6350	7.5	重要 Network	Angeet	ES3 KVM Firmware	AngeetのES3 KVM Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-32297	2026-04-30 12:13	2026-03-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
356951	-	allaire	forums	Allaire Forums 2.0.5 allows remote attackers to bypass access restrictions to secure conferences via the rightAccessAllForums or rightModerateAllForums variables.	NVD-CWE-Other	CVE-2000-0297	2008-09-11 04:04	2000-04-3	Show	GitHub Exploit DB Packet Storm

356952	-	apple	webobjects	Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote attackers to cause a denial of service via an HTTP request with long headers such as Accept.	NVD-CWE-Other	CVE-2000-0299	2008-09-11 04:04	2000-04-4	Show	GitHub Exploit DB Packet Storm

356953	-	id_software	quake_3_arena	Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (..) attack.	NVD-CWE-Other	CVE-2000-0303	2008-09-11 04:04	2000-05-3	Show	GitHub Exploit DB Packet Storm

356954	-	openbsd	openbsd	The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service.	NVD-CWE-Other	CVE-2000-0309	2008-09-11 04:04	2001-03-12	Show	GitHub Exploit DB Packet Storm

356955	-	openbsd	openbsd	IP fragment assembly in OpenBSD 2.4 allows a remote attacker to cause a denial of service by sending a large number of fragmented packets.	NVD-CWE-Other	CVE-2000-0310	2008-09-11 04:04	2001-03-12	Show	GitHub Exploit DB Packet Storm

356956	-	openbsd	openbsd	Vulnerability in OpenBSD 2.6 allows a local user to change interface media configurations.	NVD-CWE-Other	CVE-2000-0313	2008-09-11 04:04	2001-03-12	Show	GitHub Exploit DB Packet Storm

356957	-	atrium_software	mercur_mailserver	Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot (..) attack.	NVD-CWE-Other	CVE-2000-0318	2008-09-11 04:04	2000-04-21	Show	GitHub Exploit DB Packet Storm

356958	-	icradius	icradius	Buffer overflow in IC Radius package allows a remote attacker to cause a denial of service via a long user name.	NVD-CWE-Other	CVE-2000-0321	2008-09-11 04:04	2000-04-24	Show	GitHub Exploit DB Packet Storm

356959	-	on_technology	meeting_maker	Meeting Maker uses weak encryption (a polyalphabetic substitution cipher) for passwords, which allows remote attackers to sniff and decrypt passwords for Meeting Maker accounts.	NVD-CWE-Other	CVE-2000-0326	2008-09-11 04:04	2000-04-25	Show	GitHub Exploit DB Packet Storm

356960	-	allaire	spectra	The Allaire Spectra container editor preview tool does not properly enforce object security, which allows an attacker to conduct unauthorized activities via an object-method that is added to the cont…	NVD-CWE-Other	CVE-2000-0334	2008-09-11 04:04	2000-04-24	Show	GitHub Exploit DB Packet Storm