Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1101 5.4 警告
Network 		レッドハット build of keycloak レッドハットのbuild of keycloakにおけるリクエストの直接送信に関する脆弱性 CWE-425
CWE-noinfo
CVE-2026-7500 2026-05-7 11:25 2026-04-30 Show GitHub Exploit DB Packet Storm
1102 8.8 重要
Network 		HKUDS OpenHarness HKUDSのOpenHarnessにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-7551 2026-05-7 11:25 2026-04-30 Show GitHub Exploit DB Packet Storm
1103 9.8 緊急
Network 		Synway SMG Gateway Management Software SynwayのSMG Gateway Management SoftwareにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-71284 2026-05-7 10:53 2026-04-30 Show GitHub Exploit DB Packet Storm
1104 7.8 重要
Local 		KDE project KCoreAddons KDE projectのKCoreAddonsにおけるエスケープ、メタ、またはコントロールシーケンスの不適切な無効化に関する脆弱性 CWE-150
エスケープ、メタ、またはコントロールシーケンスの不適切な無効化 		CVE-2026-41526 2026-05-7 10:53 2026-04-28 Show GitHub Exploit DB Packet Storm
1105 8.8 重要
Network 		SailPoint Technologies Holdings, Inc. IdentityIQ SailPoint Technologies Holdings, Inc.のIdentityIQにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-5712 2026-05-7 10:53 2026-04-29 Show GitHub Exploit DB Packet Storm
1106 5.5 警告
Local 		Canonical pdfunite Canonicalのpdfuniteにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2018-25306 2026-05-7 10:53 2026-04-29 Show GitHub Exploit DB Packet Storm
1107 9.8 緊急
Network 		Kvcache-ai Ktransformers Kvcache-aiのKtransformersにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-26210 2026-05-7 10:53 2026-04-23 Show GitHub Exploit DB Packet Storm
1108 7.1 重要
Local 		デル Dell/Alienware Purchased Apps デルのDell/Alienware Purchased Appsにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-27105 2026-05-7 10:53 2026-04-29 Show GitHub Exploit DB Packet Storm
1109 7.8 重要
Local 		entechtaiwan TViPort entechtaiwanのTViPortにおける複数の脆弱性 CWE-20
CWE-269
CVE-2026-30769 2026-05-7 10:53 2026-04-29 Show GitHub Exploit DB Packet Storm
1110 5.9 警告
Network 		Elasticsearch B.V. Elastic Package Registry Elasticsearch B.V.のElastic Package Registryにおけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-33467 2026-05-7 10:53 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350921 - anthill anthill Cross-site scripting vulnerabilities in Anthill allow remote attackers to execute script as other Anthill users. NVD-CWE-Other
CVE-2002-0549 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm
350922 - gcf dynamic_guestbook Dynamic Guestbook 3.0 allows remote attackers to execute arbitrary code via shell metacharacters in the gbdaten parameter. NVD-CWE-Other
CVE-2002-0550 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm
350923 - gcf dynamic_guestbook Cross-site scripting vulnerability in Dynamic Guestbook 3.0 allows remote attackers to execute code in clients who access guestbook pages via the parameters (1) name, (2) mail, or (3) kommentar. NVD-CWE-Other
CVE-2002-0551 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm
350924 - melange melange_chat_system Multiple buffer overflows in Melange Chat server 2.02 allow remote or local attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long argument in the /yell com… NVD-CWE-Other
CVE-2002-0552 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm
350925 - turnkey_solutions sunshop_shopping_cart Cross-site scripting vulnerability in SunShop 2.5 and earlier allows remote attackers to gain administrative privileges to SunShop by injecting the script into fields during new customer registration. NVD-CWE-Other
CVE-2002-0553 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm
350926 - ibm informix_web_datablade webdriver in IBM Informix Web DataBlade 4.12 allows remote attackers to bypass user access levels or read arbitrary files via a SQL injection attack in an HTTP request. NVD-CWE-Other
CVE-2002-0554 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm
350927 - ibm informix_web_datablade IBM Informix Web DataBlade 4.12 unescapes user input even if an application has escaped it, which could allow remote attackers to execute SQL code in a web form even when the developer has attempted … NVD-CWE-Other
CVE-2002-0555 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm
350928 - deep_forest_software quik-serv_webserver Directory traversal vulnerability in Quik-Serv HTTP server 1.1B allows remote attackers to read arbitrary files via a .. (dot dot) in a URL. NVD-CWE-Other
CVE-2002-0556 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm
350929 - openbsd openbsd Vulnerability in OpenBSD 3.0, when using YP with netgroups in the password database, causes (1) rexec or (2) rsh to run another user's shell, or (3) atrun to change to a different user's directory, p… NVD-CWE-Other
CVE-2002-0557 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm
350930 - typsoft typsoft_ftp_server Directory traversal vulnerability in TYPSoft FTP server 0.97.1 and earlier allows a remote authenticated user (possibly anonymous) to list arbitrary directories via a .. in a LIST (ls) command ending… NVD-CWE-Other
CVE-2002-0558 2008-09-6 05:28 2002-07-3 Show GitHub Exploit DB Packet Storm