Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
6641	7.1	重要 Network	Apache Software Foundation	Apache Atlas	Apache Software FoundationのApache Atlasにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-40563	2026-05-7 10:51	2026-05-4	Show	GitHub Exploit DB Packet Storm

6642	8.8	重要 Adjacent	Espressif Systems	ESP32 Arduino	Espressif SystemsのESP32 Arduinoにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-41429	2026-05-7 10:51	2026-04-24	Show	GitHub Exploit DB Packet Storm

6643	9	緊急 Network	Jenkins プロジェクト	GitHub	JenkinsのGitHubにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42523	2026-05-7 10:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

6644	8	重要 Network	Jenkins プロジェクト	HTML Publisher Plugin	JenkinsのHTML Publisher Pluginにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42524	2026-05-7 10:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

6645	4.3	警告 Network	Jenkins プロジェクト	Azure AD	JenkinsのAzure ADにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-42525	2026-05-7 10:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

6646	8.8	重要 Adjacent	TP-LINK Technologies	TL-WR841N ファームウェア	TP-LINK TechnologiesのTL-WR841N ファームウェアにおけるデフォルトの暗号鍵の使用に関する脆弱性	CWE-1394 デフォルトの暗号鍵の使用	CVE-2026-5039	2026-05-7 10:51	2026-04-23	Show	GitHub Exploit DB Packet Storm

6647	7.3	重要 Network	GNU Project	GNU C Library	GNU ProjectのGNU C Libraryにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-5435	2026-05-7 10:51	2026-04-28	Show	GitHub Exploit DB Packet Storm

6648	7.5	重要 Network	Progress Software Corporation	Telerik UI for ASP.NET AJAX	Progress Software CorporationのTelerik UI for ASP.NET AJAXにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-6022	2026-05-7 10:51	2026-04-22	Show	GitHub Exploit DB Packet Storm

6649	9.8	緊急 Network	Progress Software Corporation	Telerik UI for ASP.NET AJAX	Progress Software CorporationのTelerik UI for ASP.NET AJAXにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-6023	2026-05-7 10:51	2026-04-22	Show	GitHub Exploit DB Packet Storm

6650	2.7	低 Network	Tanium	Tanium Server	TaniumのTanium Serverにおける認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-6408	2026-05-7 10:51	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350161	-	sybari	antigen	Sybari Antigen 8.0 SR2 does not properly filter SMTP messages, which allows remote attackers to bypass custom filter rules and send file attachments of arbitrary file types via a message with a subje…	NVD-CWE-Other	CVE-2005-3027	2017-07-11 10:33	2005-09-22	Show	GitHub Exploit DB Packet Storm

350162	-	mall23	mall23	SQL injection vulnerability in AddItem.asp in Mall23 eCommerce allows remote attackers to execute arbitrary SQL commands via the idOption_Dropdown_2 parameter.	NVD-CWE-Other	CVE-2005-3043	2017-07-11 10:33	2005-09-22	Show	GitHub Exploit DB Packet Storm

350163	-	phpmyfaq	phpmyfaq	PhpMyFaq 1.5.1 stores data files under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain sensitive information via a direct req…	NVD-CWE-Other	CVE-2005-3049	2017-07-11 10:33	2005-09-24	Show	GitHub Exploit DB Packet Storm

350164	-	igor_pavlov	7-zip	Stack-based buffer overflow in the ARJ plugin (arj.dll) 3.9.2.0 for 7-Zip 3.13, 4.23, and 4.26 BETA, as used in products including Turbo Searcher, allows remote attackers to execute arbitrary code vi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2005-3051	2017-07-11 10:33	2005-09-24	Show	GitHub Exploit DB Packet Storm

350165	-	fortinet	fortios fortigate	The FTP component in FortiGate 2.8 running FortiOS 2.8MR10 and v3beta, and other versions before 3.0 MR1, allows remote attackers to bypass the Fortinet FTP anti-virus engine by sending a STOR comman…	NVD-CWE-noinfo	CVE-2005-3057	2017-07-11 10:33	2005-12-31	Show	GitHub Exploit DB Packet Storm

350166	-	ibm	aix	Buffer overflow in getconf in IBM AIX 5.2 to 5.3 allows local users to execute arbitrary code via unknown vectors.	NVD-CWE-Other	CVE-2005-3060	2017-07-11 10:33	2005-10-1	Show	GitHub Exploit DB Packet Storm

350167	-	interchange_development_group	interchange	SQL injection vulnerability in pages/forum/submit.html in Interchange 4.9.3 up to 5.2.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors.	NVD-CWE-Other	CVE-2005-3072	2017-07-11 10:33	2005-09-28	Show	GitHub Exploit DB Packet Storm

350168	-	interchange_development_group	interchange	Unspecified vulnerability in Interchange 5.0.1 allows attackers 4.9.3, 5.0 before 5.0.2, and 5.2, when a catalog has been created using the (1) "mike", (2) "standard", or (3) "foundation" demo, allow…	NVD-CWE-Other	CVE-2005-3073	2017-07-11 10:33	2005-09-28	Show	GitHub Exploit DB Packet Storm

350169	-	-	-	SQL injection vulnerability in admin.php in SEO-Board 1.0.2 allows remote attackers to execute arbitrary SQL commands via the user_pass_sha1 value in a cookie.	NVD-CWE-Other	CVE-2005-3082	2017-07-11 10:33	2005-09-28	Show	GitHub Exploit DB Packet Storm

350170	-	avi_alkalay	man_cgi	Avi Alkalay man-cgi script allows remote attackers to execute arbitrary code via shell metacharacters in the topic parameter.	NVD-CWE-Other	CVE-2005-3094	2017-07-11 10:33	2005-09-29	Show	GitHub Exploit DB Packet Storm