Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
951	4.3	警告 Network	PgBouncer	PgBouncer	PgBouncerにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-6667	2026-05-18 12:09	2026-05-9	Show	GitHub Exploit DB Packet Storm

952	5.3	警告 Network	Haxx	cURL	HaxxのcURLにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-7009	2026-05-18 12:09	2026-05-13	Show	GitHub Exploit DB Packet Storm

953	5.3	警告 Network	Haxx	cURL	HaxxのcURLにおけるCapture-replay による認証回避に関する脆弱性	CWE-294 Capture-replayによる認証回避	CVE-2026-7168	2026-05-18 12:09	2026-05-13	Show	GitHub Exploit DB Packet Storm

954	3.5	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-7471	2026-05-18 12:09	2026-05-14	Show	GitHub Exploit DB Packet Storm

955	5.4	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-7481	2026-05-18 12:09	2026-05-14	Show	GitHub Exploit DB Packet Storm

956	5.5	警告 Local	GPAC	GPAC	GPACにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-8124	2026-05-18 12:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

957	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-8144	2026-05-18 12:09	2026-05-14	Show	GitHub Exploit DB Packet Storm

958	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-8280	2026-05-18 12:09	2026-05-14	Show	GitHub Exploit DB Packet Storm

959	6.5	警告 Network	Open5GS	Open5GS	Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-8291	2026-05-18 12:09	2026-05-11	Show	GitHub Exploit DB Packet Storm

960	6.5	警告 Network	Open5GS	Open5GS	Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-8292	2026-05-18 12:09	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345631	-	virtual_programming	vp-asp	SQL injection vulnerability in VP-ASP Shopping Cart 4.0 through 5.0 allows remote attackers to execute arbitrary SQL commands via the (1) Processed0 and (2) Processed1 parameters in a POST request to…	NVD-CWE-Other	CVE-2004-2413	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

345632	-	novell	netware	Novell NetWare 6.5 SP 1.1, when installing or upgrading using the Overlay CDs and performing a custom installation with OpenSSH, includes sensitive password information in the (1) NIOUTPUT.TXT and (2…	NVD-CWE-Other	CVE-2004-2414	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

345633	-	davenport	davenport	Davenport before 0.9.10 allows attackers to cause a denial of service (resource consumption) via (1) a very large XML file or (2) entity expansion attacks.	NVD-CWE-Other	CVE-2004-2415	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

345634	-	youngzsoft	ccproxy	Buffer overflow in the logging component of CCProxy allows remote attackers to execute arbitrary code via a long HTTP GET request.	NVD-CWE-Other	CVE-2004-2416	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

345635	-	smtp.proxy	smtp.proxy	Format string vulnerability in smtp.c for smtp.proxy 1.1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the (1) client hostname or (2) message-id, whi…	NVD-CWE-Other	CVE-2004-2417	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

345636	-	-	-	Keene Digital Media Server 1.0.2 allows local users to obtain usernames and passwords by reading the dmscore.db file on the local system.	NVD-CWE-Other	CVE-2004-2419	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

345637	-	hitachi	jp1_p-1b41-9461 jp1_p-1b41-9471 jp1_p-1j41-9471	Hitachi Job Management Partner (JP1) JP1/File Transmission Server/FTP 6 and 7 allows remote attackers to cause a denial of service (daemon halt) via a port scan involving reset packets.	NVD-CWE-Other	CVE-2004-2420	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

345638	-	hitachi	jp1_p-1b41-9461 jp1_p-1b41-9471 jp1_p-1j41-9471	Unknown vulnerability in Hitachi Job Management Partner (JP1) JP1/File Transmission Server/FTP 6 and 7, when running on HP-UX in trusted mode, allows attackers to bypass authentication and gain admin…	NVD-CWE-Other	CVE-2004-2421	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

345639	-	ipswitch	imail	Multiple features in Ipswitch IMail Server before 8.13 allow remote attackers to cause a denial of service (crash) via (1) a long sender field to the Queue Manager or (2) a long To field to the Web M…	NVD-CWE-Other	CVE-2004-2422	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

345640	-	ipswitch	imail	Unknown vulnerability in the Web calendaring component of Ipswitch IMail Server before 8.13 allows remote attackers to cause a denial of service (crash) via "specific content."	NVD-CWE-Other	CVE-2004-2423	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm