Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198201	6.5	警告 Network	NTP Project	-	NTP の ntpd の制御モード機能における trap を設定される脆弱性	CWE-400 リソースの枯渇	CVE-2016-9310	2017-01-26 11:44	2016-11-21	Show	GitHub Exploit DB Packet Storm

198202	7.5	重要 Network	NTP Project	-	NTP の read_mru_list 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-7434	2017-01-26 11:44	2016-11-21	Show	GitHub Exploit DB Packet Storm

198203	3.7	低 Network	NTP Project	-	NTP におけるサービス運用妨害 (DoS) の脆弱性	CWE-18 CWE-605	CVE-2016-7429	2017-01-26 11:44	2016-11-21	Show	GitHub Exploit DB Packet Storm

198204	4.3	警告 Adjacent	NTP Project	-	NTP の ntpd におけるサービス運用妨害 (DoS) の脆弱性	CWE-400 リソースの枯渇	CVE-2016-7428	2017-01-26 11:43	2016-11-21	Show	GitHub Exploit DB Packet Storm

198205	4.3	警告 Adjacent	NTP Project	-	NTP の ntpd のブロードキャストモードのリプレイ制限機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-400 リソースの枯渇	CVE-2016-7427	2017-01-26 11:43	2016-11-21	Show	GitHub Exploit DB Packet Storm

198206	5.3	警告 Network	NTP Project	-	NTP におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 CWE-410	CVE-2016-7426	2017-01-26 11:43	2016-11-21	Show	GitHub Exploit DB Packet Storm

198207	7.5	重要 Network	WordPress.org	-	WordPress のマルチサイト WordPress API の wp-includes/ms-functions.php におけるアクセス制限を回避される脆弱性	CWE-310 暗号の問題	CVE-2017-5493	2017-01-26 10:13	2017-01-11	Show	GitHub Exploit DB Packet Storm

198208	8.8	重要 Network	WordPress.org	-	WordPress のウィジェット編集のアクセシビリティモード機能におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2017-5492	2017-01-26 10:13	2017-01-11	Show	GitHub Exploit DB Packet Storm

198209	5.3	警告 Network	WordPress.org	-	WordPress の wp-mail.php における投稿の制限を回避される脆弱性	CWE-254 セキュリティ機能	CVE-2017-5491	2017-01-26 10:13	2017-01-11	Show	GitHub Exploit DB Packet Storm

198210	6.1	警告 Network	WordPress.org	-	WordPress の wp-includes/class-wp-theme.php のテーマ名のフォールバック機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-5490	2017-01-26 10:13	2017-01-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1431	-		-	-	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, the extractArchive and compressFiles endpoints in file-manager.ts… Update	CWE-77 Command Injection	CVE-2026-42453	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

1432	9.9	CRITICAL Network	-	-	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, all Docker container management endpoints in Termix interpolate t… Update	CWE-78 OS Command	CVE-2026-42454	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

1433	9.8	CRITICAL Network	-	-	FastGPT is an AI Agent building platform. From version 4.14.10 to before version 4.14.13, the agent-sandbox component of FastGPT is vulnerable to unauthenticated Remote Code Execution (RCE). The star… Update	CWE-306 Missing Authentication for Critical Function	CVE-2026-42302	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

1434	6.3	MEDIUM Network	-	-	FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress() function in packages/service/common/system/utils.ts is vulnerable to DNS rebinding (TOCTOU — Tim… Update	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-42344	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

1435	-		-	-	FastGPT is an AI Agent building platform. Prior to version 4.14.17, an unauthenticated Server-Side Request Forgery (SSRF) vulnerability allows attackers (or authenticated users with App editing privi… Update	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44286	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

1436	7.7	HIGH Network	-	-	FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress() function in packages/service/common/system/utils.ts blocks cloud metadata endpoints using a full… Update	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-42345	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

1437	6.3	MEDIUM Network	-	-	FastGPT is an AI Agent building platform. Prior to version 4.14.17, FastGPT had an inconsistent SSRF protection gap in MCP tool URL handling. The direct MCP preview/run endpoints already rejected int… Update	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44284	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

1438	-		-	-	Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. In versions 2.14.0 and prior, the archive upload endpoint (POST /api/v1/archives/[li… Update	CWE-79 Cross-site Scripting	CVE-2026-42455	2026-05-13 01:39	2026-05-9	Show	GitHub Exploit DB Packet Storm

1439	9.1	CRITICAL Network	-	-	Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. Prior to version 2.13.0, a Server-Side Request Forgery (SSRF) vulnerability in the f… Update	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44313	2026-05-13 01:39	2026-05-9	Show	GitHub Exploit DB Packet Storm

1440	7.3	HIGH Network	-	-	A vulnerability was detected in inkeep agents 0.58.14. This vulnerability affects the function createDevContext of the file agents-api/src/middleware/runAuth.ts of the component runAuth Middleware. P… New	CWE-287 CWE-288 Improper Authentication Authentication Bypass Using an Alternate Path or Channel	CVE-2026-8321	2026-05-13 01:38	2026-05-12	Show	GitHub Exploit DB Packet Storm