Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198981 9.4 緊急
Network 		OTRS プロジェクト - Open Ticket Request System の FAQ パッケージにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-5843 2016-09-21 17:00 2016-06-25 Show GitHub Exploit DB Packet Storm
198982 5.3 警告
Network 		DELL EMC (旧 EMC Corporation) - EMC Documentum D2 における任意の Docbase ドキュメントを読まれる脆弱性 CWE-200
CWE-264
CVE-2016-6644 2016-09-21 16:57 2016-09-13 Show GitHub Exploit DB Packet Storm
198983 6.1 警告
Network 		DELL EMC (旧 EMC Corporation) - EMC ViPR SRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6643 2016-09-21 16:57 2016-09-13 Show GitHub Exploit DB Packet Storm
198984 6.1 警告
Network 		DELL EMC (旧 EMC Corporation) - EMC ViPR SRM におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-6642 2016-09-21 16:57 2016-09-13 Show GitHub Exploit DB Packet Storm
198985 7.6 重要
Network 		DELL EMC (旧 EMC Corporation) - EMC ViPR SRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6641 2016-09-21 16:57 2016-09-13 Show GitHub Exploit DB Packet Storm
198986 9.8 緊急
Network 		DELL EMC (旧 EMC Corporation) - EMC ViPR SRM におけるアクセス権を取得される脆弱性 CWE-Other
その他 		CVE-2016-0922 2016-09-21 16:57 2016-09-13 Show GitHub Exploit DB Packet Storm
198987 5.3 警告
Adjacent 		シスコシステムズ - Cisco CRS-1 および CRS-3 デバイス用 CRS Carrier Grade サービスで使用される Carrier Routing System におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-6401 2016-09-21 16:45 2016-09-14 Show GitHub Exploit DB Packet Storm
198988 7.5 重要
Network 		シスコシステムズ - 複数の Cisco 製品のサーバの IKEv1 の実装におけるデバイスメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-6415 2016-09-21 14:48 2016-09-16 Show GitHub Exploit DB Packet Storm
198989 7.5 重要
Network 		シスコシステムズ - Cisco Web セキュリティ アプライアンスデバイス上で稼動する AsyncOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-6407 2016-09-21 14:48 2016-09-14 Show GitHub Exploit DB Packet Storm
198990 6.5 警告
Network 		シスコシステムズ - Cisco IOx の Fog Director におけるアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6405 2016-09-21 14:47 2016-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
301 7.3 HIGH
Network 		- - A security vulnerability has been detected in edvardlindelof notes-mcp up to 0.1.4. This affects an unknown function of the file notes_mcp.py. The manipulation of the argument root_dir/path leads to … New CWE-22
Path Traversal 		CVE-2026-7212 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
302 7.3 HIGH
Network 		- - A vulnerability was detected in ef10007 MLOps_MCP 1.0.0. This impacts an unknown function of the file fastmcp_server.py of the component save_file Tool. The manipulation of the argument filename/dest… New CWE-22
Path Traversal 		CVE-2026-7213 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
303 7.3 HIGH
Network 		- - A vulnerability was identified in eghuzefa engineer-your-data up to 0.1.3. This vulnerability affects the function read_file/write_file/list_files/file_inf of the file src/server.py. The manipulation… New CWE-22
Path Traversal 		CVE-2026-7214 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
304 7.3 HIGH
Network 		- - A security flaw has been discovered in egtai gmx-vmd-mcp up to 0.1.0. This issue affects the function launch_vmd_gui_tool of the file mcp_server.py of the component VMD Launch Handler. The manipulati… New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7215 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
305 7.3 HIGH
Network 		- - A weakness has been identified in donchelo processing-claude-mcp-bridge up to e017b20a4b592a45531a6392f494007f04e661bd. Impacted is an unknown function of the file processing_server.py of the compone… New CWE-22
Path Traversal 		CVE-2026-7216 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
306 7.3 HIGH
Network 		- - A vulnerability has been found in jackwrichards FastlyMCP up to 6f3d0b0e654fc51076badc7fa16c03c461f95620. This impacts an unknown function of the file fastly-mcp.mjs of the component fastly_cli Tool.… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7220 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
307 7.3 HIGH
Network 		- - A vulnerability was found in TencentCloudBase CloudBase-MCP up to 2.17.0. Affected is the function openUrl of the file mcp/src/interactive-server.ts of the component open-url API Endpoint. The manipu… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-7221 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
308 3.5 LOW
Network 		- - A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the compo… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-7222 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
309 7.3 HIGH
Network 		- - A vulnerability was identified in BigSweetPotatoStudio HyperChat up to 2.0.0-alpha.63. Affected by this issue is the function fetch of the file packages/core/src/http/aiProxyMiddleware.mts of the com… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-7223 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
310 7.3 HIGH
Network 		- - A security flaw has been discovered in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function delete_cart of the file /admin/ajax.php?action=delete_cart. Performing a manipulation of … New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7224 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm