Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193161	5.5	警告 Local	Google	-	Mediaserver における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-0644	2017-07-6 17:10	2017-06-5	Show	GitHub Exploit DB Packet Storm

193162	5.5	警告 Local	Google	-	Mediaserver における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-0643	2017-07-6 17:10	2017-06-5	Show	GitHub Exploit DB Packet Storm

193163	5.5	警告 Local	Google	-	Mediaserver における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-0642	2017-07-6 17:10	2017-04-17	Show	GitHub Exploit DB Packet Storm

193164	5.5	警告 Local	Google	-	Mediaserver における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-0641	2017-07-6 17:10	2017-04-17	Show	GitHub Exploit DB Packet Storm

193165	5.5	警告 Local	Google	-	Mediaserver における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-0640	2017-07-6 17:10	2017-06-5	Show	GitHub Exploit DB Packet Storm

193166	7.5	重要 Network	Apache Software Foundation	-	Apache NiFi における同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2017-7667	2017-07-6 16:43	2017-06-11	Show	GitHub Exploit DB Packet Storm

193167	6.1	警告 Network	Apache Software Foundation	-	Apache NiFi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-7665	2017-07-6 16:43	2017-06-11	Show	GitHub Exploit DB Packet Storm

193168	9.8	緊急 Network	レッドハット	-	複数の Red Hat Enterprise Linux 製品の RESTEasy の SerializableProvider における任意のコードを実行される脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2016-7050	2017-07-6 16:41	2016-11-3	Show	GitHub Exploit DB Packet Storm

193169	7.5	重要 Network	レッドハット	-	複数の Red Hat Enterprise Linux 製品の 389 ディレクトリサーバにおけるデフォルトのアクセス制御命令を読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-5416	2017-07-6 16:41	2016-11-3	Show	GitHub Exploit DB Packet Storm

193170	9.8	緊急 Network	レッドハット	-	複数の Red Hat Enterprise Linux 製品の 389 ディレクトリサーバにおけるユーザパスワードを取得される脆弱性	CWE-199 情報管理の問題	CVE-2016-5405	2017-07-6 16:41	2016-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2191	8.1	HIGH Network	-	-	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, /users/login issues a temporary JWT (temp_token) for TOTP-enabled…	CWE-304 Missing Critical Step in Authentication	CVE-2026-42452	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

2192	-		-	-	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, the extractArchive and compressFiles endpoints in file-manager.ts…	CWE-77 Command Injection	CVE-2026-42453	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

2193	9.9	CRITICAL Network	-	-	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, all Docker container management endpoints in Termix interpolate t…	CWE-78 OS Command	CVE-2026-42454	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

2194	9.8	CRITICAL Network	-	-	FastGPT is an AI Agent building platform. From version 4.14.10 to before version 4.14.13, the agent-sandbox component of FastGPT is vulnerable to unauthenticated Remote Code Execution (RCE). The star…	CWE-306 Missing Authentication for Critical Function	CVE-2026-42302	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

2195	6.3	MEDIUM Network	-	-	FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress() function in packages/service/common/system/utils.ts is vulnerable to DNS rebinding (TOCTOU — Tim…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-42344	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

2196	-		-	-	FastGPT is an AI Agent building platform. Prior to version 4.14.17, an unauthenticated Server-Side Request Forgery (SSRF) vulnerability allows attackers (or authenticated users with App editing privi…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44286	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

2197	7.7	HIGH Network	-	-	FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress() function in packages/service/common/system/utils.ts blocks cloud metadata endpoints using a full…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-42345	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

2198	6.3	MEDIUM Network	-	-	FastGPT is an AI Agent building platform. Prior to version 4.14.17, FastGPT had an inconsistent SSRF protection gap in MCP tool URL handling. The direct MCP preview/run endpoints already rejected int…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44284	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

2199	-		-	-	Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. In versions 2.14.0 and prior, the archive upload endpoint (POST /api/v1/archives/[li…	CWE-79 Cross-site Scripting	CVE-2026-42455	2026-05-13 01:39	2026-05-9	Show	GitHub Exploit DB Packet Storm

2200	9.1	CRITICAL Network	-	-	Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. Prior to version 2.13.0, a Server-Side Request Forgery (SSRF) vulnerability in the f…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44313	2026-05-13 01:39	2026-05-9	Show	GitHub Exploit DB Packet Storm