Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193901	5.4	警告 Network	Apache Software Foundation	-	Guacamole のファイルブラウザにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1566	2017-02-10 14:42	2016-02-1	Show	GitHub Exploit DB Packet Storm

193902	7.8	重要 Local	シマンテック	-	Norton Download Manager における任意の DLL 読み込みに関する脆弱性	CWE-Other その他	CVE-2016-6592	2017-02-10 14:02	2017-02-10	Show	GitHub Exploit DB Packet Storm

193903	9.8	緊急 Network	The Tcpdump Group	-	tcpdump の ISO CLNS パーサの print-isoclns.c:clnp_print() におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-5486	2017-02-10 12:16	2017-01-26	Show	GitHub Exploit DB Packet Storm

193904	9.8	緊急 Network	The Tcpdump Group	-	tcpdump の ISO CLNS パーサの addrtoname.c:lookup_nsap() におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-5485	2017-02-10 12:16	2017-01-26	Show	GitHub Exploit DB Packet Storm

193905	9.8	緊急 Network	The Tcpdump Group	-	tcpdump の ATM パーサの print-atm.c:sig_print() におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-5484	2017-02-10 12:16	2017-01-26	Show	GitHub Exploit DB Packet Storm

193906	9.8	緊急 Network	The Tcpdump Group	-	tcpdump の SNMP パーサの print-snmp.c:asn1_parse() におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-5483	2017-02-10 12:16	2017-01-26	Show	GitHub Exploit DB Packet Storm

193907	9.8	緊急 Network	The Tcpdump Group	-	tcpdump の Q.933 パーサの print-fr.c:q933_print() におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-5482	2017-02-10 12:16	2017-01-26	Show	GitHub Exploit DB Packet Storm

193908	9.8	緊急 Network	The Tcpdump Group	-	tcpdump の複数のプロトコルパーサの print-ether.c:ether_print() におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-5342	2017-02-10 12:16	2017-01-26	Show	GitHub Exploit DB Packet Storm

193909	9.8	緊急 Network	The Tcpdump Group	-	tcpdump の OTV パーサの print-otv.c:otv_print() におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-5341	2017-02-10 12:16	2017-01-26	Show	GitHub Exploit DB Packet Storm

193910	9.8	緊急 Network	The Tcpdump Group	-	tcpdump の ISAKMP パーサの print-isakmp.c:ikev2_e_print() におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-5205	2017-02-10 12:16	2017-01-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
271	7.7	HIGH Network	-	-	In OpenStack Keystone before 28.0.1, the LDAP identity backend does not convert the user enabled attribute to a boolean when the user_enabled_invert configuration option is False (the default). The _… Update	CWE-843 Type Confusion	CVE-2026-40683	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm

272	8.8	HIGH Network	-	-	openITCOCKPIT is an open source monitoring tool built for different monitoring engines. openITCOCKPIT Community Edition prior to version 5.5.2 contains a command injection vulnerability that allows a… Update	CWE-20 CWE-78 Improper Input Validation OS Command	CVE-2026-24893	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm

273	-		-	-	Chamilo is an open-source learning management system (LMS). Version 2.0.0-RC.2 contains a SQL Injection vulnerability in the statistics AJAX endpoint, which is an incomplete fix for CVE-2026-30881. W… Update	CWE-89 SQL Injection	CVE-2026-33714	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm

274	4.3	MEDIUM Network	-	-	Docmost is open-source collaborative wiki and documentation software. An authorization bypass vulnerability in versions 0.70.0 through 0.70.2 exposes restricted child page titles and text snippets th… Update	CWE-285 Improper Authorization	CVE-2026-33146	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm

275	4.6	MEDIUM Network	-	-	Docmost is open-source collaborative wiki and documentation software. Versions prior to 0.70.0 are vulnerable to a stored cross-site scripting (XSS) attack due to improper handling of MIME type spoof… Update	CWE-79 Cross-site Scripting	CVE-2026-33193	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm

276	4.9	MEDIUM Network	-	-	October is a Content Management System (CMS) and web platform. Versions prior to 3.7.14 and 4.1.10 contain a server-side information disclosure vulnerability in the INI settings parser. Because PHP's… Update	CWE-94 CWE-200 Code Injection Information Exposure	CVE-2026-25125	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm

277	-		-	-	October is a Content Management System (CMS) and web platform. Versions prior to 3.7.14 and 4.1.10 contain a stored cross-site scripting (XSS) vulnerability in the SVG sanitization logic. The regex p… Update	CWE-79 Cross-site Scripting	CVE-2026-25133	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm

278	7.2	HIGH Network	-	-	Chamilo LMS is an open-source learning management system. In version 2.0-RC.2, the file public/main/inc/ajax/install.ajax.php is accessible without authentication on fully installed instances because… Update	CWE-306 CWE-918 Missing Authentication for Critical Function Server-Side Request Forgery (SSRF)	CVE-2026-33715	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm

279	8.6	HIGH Network	-	-	Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, the PENS (Package Exchange Notification Services) plugin endpoint at public/plugin/Pens/pens.php is accessib… Update	CWE-306 CWE-918 Missing Authentication for Critical Function Server-Side Request Forgery (SSRF)	CVE-2026-34160	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm

280	-		-	-	Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, a Stored Cross-Site Scripting (XSS) vulnerability exists in the social post attachment upload functionality,… Update	CWE-79 Cross-site Scripting	CVE-2026-34161	2026-04-18 00:38	2026-04-15	Show	GitHub Exploit DB Packet Storm