Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1171	7.1	重要 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2026-35341	2026-04-27 11:18	2026-04-22	Show	GitHub Exploit DB Packet Storm

1172	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるキャッチされない例外に関する脆弱性	CWE-248 キャッチされない例外	CVE-2026-35348	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

1173	6.6	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるパーミッションの不適切な保持に関する脆弱性	CWE-281 パーミッションの不適切な保持	CVE-2026-35350	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

1174	7	重要 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35352	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

1175	4.7	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35354	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

1176	4.7	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35357	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

1177	4.7	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける複数の脆弱性	CWE-367 CWE-59	CVE-2026-35359	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

1178	6.3	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35360	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

1179	5.6	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35363	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

1180	6.3	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35364	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347711	-	woltlab	burning_board	Cross-site scripting (XSS) vulnerability in pms.php for Woltlab Burning Board 2.3.1 PL2 and earlier allows remote attackers to inject arbitrary web script or HTML via the folderid parameter.	NVD-CWE-Other	CVE-2005-1327	2008-09-6 05:48	2005-05-2	Show	GitHub Exploit DB Packet Storm

347712	-	apple	mac_os_x mac_os_x_server	AppKit in Mac OS X 10.3.9 allows attackers to cause a denial of service (Cocoa application crash) via a malformed TIFF image that causes the NXSeek to use an incorrect offset, leading to an unhandled…	CWE-20 Improper Input Validation	CVE-2005-1330	2008-09-6 05:48	2005-05-4	Show	GitHub Exploit DB Packet Storm

347713	-	apple	mac_os_x mac_os_x_server	Bluetooth-enabled systems in Mac OS X 10.3.9 enables the Bluetooth file exchange service by default, which allows remote attackers to access files without the user being notified, and local users to …	NVD-CWE-Other	CVE-2005-1332	2008-09-6 05:48	2005-05-4	Show	GitHub Exploit DB Packet Storm

347714	-	apple	mac_os_x	Directory traversal vulnerability in the Bluetooth file and object exchange (OBEX) services in Mac OS X 10.3.9 allows remote attackers to read arbitrary files.	NVD-CWE-Other	CVE-2005-1333	2008-09-6 05:48	2005-05-4	Show	GitHub Exploit DB Packet Storm

347715	-	apple	mac_os_x mac_os_x_server	Unknown vulnerability in Mac OS X 10.3.9 allows local users to gain privileges via (1) chfn, (2) chpass, and (3) chsh, which "use external helper programs in an insecure manner."	NVD-CWE-Other	CVE-2005-1335	2008-09-6 05:48	2005-05-4	Show	GitHub Exploit DB Packet Storm

347716	-	apple	mac_os_x	Buffer overflow in the Foundation framework for Mac OS X 10.3.9 allows local users to execute arbitrary code via a long environment variable.	NVD-CWE-Other	CVE-2005-1336	2008-09-6 05:48	2005-05-4	Show	GitHub Exploit DB Packet Storm

347717	-	apple	mac_os_x mac_os_x_server	Apple Help Viewer 2.0.7 and 3.0.0 in Mac OS X 10.3.9 allows remote attackers to read and execute arbitrary scrpts with less restrictive privileges via a help:// URI.	NVD-CWE-Other	CVE-2005-1337	2008-09-6 05:48	2005-05-4	Show	GitHub Exploit DB Packet Storm

347718	-	apple	mac_os_x	Mac OS X 10.3.9, when using an LDAP server that does not use ldap_extended_operation, may store initial LDAP passwords for new accounts in plaintext.	NVD-CWE-Other	CVE-2005-1338	2008-09-6 05:48	2005-05-4	Show	GitHub Exploit DB Packet Storm

347719	-	apple	mac_os_x mac_os_x_server	lukemftpd in Mac OS X 10.3.9 allows remote authenticated users to escape the chroot environment by logging in with their full name.	NVD-CWE-Other	CVE-2005-1339	2008-09-6 05:48	2005-05-4	Show	GitHub Exploit DB Packet Storm

347720	-	apple	mac_os_x	The HTTP proxy service in Server Admin for Mac OS X 10.3.9 does not restrict access when it is enabled, which allows remote attackers to use the proxy.	NVD-CWE-Other	CVE-2005-1340	2008-09-6 05:48	2005-05-4	Show	GitHub Exploit DB Packet Storm