Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
6521	5.3	警告 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-33857	2026-05-7 11:27	2026-05-4	Show	GitHub Exploit DB Packet Storm

6522	5.3	警告 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおける複数の脆弱性	CWE-125 CWE-170	CVE-2026-34032	2026-05-7 11:27	2026-05-4	Show	GitHub Exploit DB Packet Storm

6523	7.5	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるバッファオーバーリードの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-34059	2026-05-7 11:27	2026-05-4	Show	GitHub Exploit DB Packet Storm

6524	6.5	警告 Network	SAP	human capital management	SAPのhuman capital managementにおけるリクエストに対するレスポンス内容の違いに起因する情報漏えいに関する脆弱性	CWE-204 リクエストに対するレスポンス内容の違いに起因する情報漏えい	CVE-2026-34264	2026-05-7 11:27	2026-04-14	Show	GitHub Exploit DB Packet Storm

6525	7.5	重要 Network	Go JOSE project	Go JOSE	Go JOSE projectのGo JOSEにおけるキャッチされない例外に関する脆弱性	CWE-248 キャッチされない例外	CVE-2026-34986	2026-05-7 11:27	2026-04-6	Show	GitHub Exploit DB Packet Storm

6526	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける関数の戻り値に対する不適切なチェックに関する脆弱性	CWE-253 関数の戻り値に対する不適切なチェック	CVE-2026-35339	2026-05-7 11:27	2026-04-22	Show	GitHub Exploit DB Packet Storm

6527	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける関数の戻り値に対する不適切なチェックに関する脆弱性	CWE-253 関数の戻り値に対する不適切なチェック	CVE-2026-35340	2026-05-7 11:27	2026-04-22	Show	GitHub Exploit DB Packet Storm

6528	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける安全でない一時ファイルに関する脆弱性	CWE-377 安全でない一時ファイル	CVE-2026-35342	2026-05-7 11:27	2026-04-22	Show	GitHub Exploit DB Packet Storm

6529	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける常に不適切な制御フローの実装に関する脆弱性	CWE-670 常に不適切な制御フローの実装	CVE-2026-35343	2026-05-7 11:27	2026-04-22	Show	GitHub Exploit DB Packet Storm

6530	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける未チェックの戻り値に関する脆弱性	CWE-252 未チェックの戻り値	CVE-2026-35344	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349951	-	day	communique	Cross-site scripting (XSS) vulnerability in Day Communique 4 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search.	NVD-CWE-Other	CVE-2005-4580	2017-07-20 10:29	2005-12-29	Show	GitHub Exploit DB Packet Storm

349952	-	dream4	koobi	Cross-site scripting (XSS) vulnerability in Koobi 5 allows remote attackers to inject arbitrary web script or HTML via nested, malformed url BBCode tags. NOTE: the provenance of this information is …	NVD-CWE-Other	CVE-2005-4588	2017-07-20 10:29	2005-12-30	Show	GitHub Exploit DB Packet Storm

349953	-	bogofilter	email_filter	Heap-based buffer overflow in bogofilter and bogolexer 0.96.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via words that are longer than the input…	NVD-CWE-Other	CVE-2005-4592	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

349954	-	gentoo	nview xnview	Untrusted search path vulnerability (RPATH) in XnView 1.70 and NView 4.51 on Gentoo Linux allows local users to execute arbitrary code via a malicious library in the current working directory.	NVD-CWE-Other	CVE-2005-4595	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

349955	-	ades_design	adesguestbook	Cross-site scripting (XSS) vulnerability in read.php in AdesGuestbook 2.0 allows remote attackers to inject arbitrary web script or HTML via the totalRows_rsRead parameter.	NVD-CWE-Other	CVE-2005-4596	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

349956	-	epistream	ipei_guestbook	Cross-site scripting (XSS) vulnerability in index.php in iPei Guestbook 1.7 allows remote attackers to inject arbitrary web script or HTML via the email parameter, as used by the email field, when si…	NVD-CWE-Other	CVE-2005-4597	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

349957	-	incogen	bugport	Cross-site scripting (XSS) vulnerability in index.php in BugPort 1.147 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) ids[0], (2) action, (3) report_id, (4) de…	NVD-CWE-Other	CVE-2005-4607	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

349958	-	incogen	bugport	SQL injection vulnerability in index.php in BugPort 1.147 allows remote attackers to execute arbitrary SQL commands via the (1) devWherePair[0], (2) orderBy, and (3) where parameters.	NVD-CWE-Other	CVE-2005-4608	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

349959	-	incogen	bugport	index.php in BugPort 1.147 and earlier allows remote attackers to obtain sensitive information such as full path and system configuration via an invalid action parameter.	NVD-CWE-Other	CVE-2005-4609	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

349960	-	phpfreebies.com	free_clickbank	SQL injection vulnerability in search.php in Free ClickBank 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the keywords parameter.	NVD-CWE-Other	CVE-2005-4611	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm