Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199081 5.5 警告
Local 		ヒューレット・パッカード・エンタープライズ - HPE RESTful Interface Tool における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-2023 2016-06-2 14:03 2016-05-17 Show GitHub Exploit DB Packet Storm
199082 5.9 警告
Network 		DELL EMC (旧 EMC Corporation) - EMC Isilon OneFS および IsilonSD Edge OneFS における SMB クライアントになりすまされる脆弱性 CWE-Other
その他 		CVE-2016-0907 2016-06-2 13:49 2016-05-26 Show GitHub Exploit DB Packet Storm
199083 8 重要
Network 		Resource Data Management Ltd - Resource Data Management Intuitive 650 TDB Controller デバイスにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-4506 2016-06-2 12:26 2016-05-19 Show GitHub Exploit DB Packet Storm
199084 8.8 重要
Network 		Resource Data Management Ltd - Resource Data Management Intuitive 650 TDB Controller デバイスにおける任意のパスワードを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4505 2016-06-2 12:26 2016-05-19 Show GitHub Exploit DB Packet Storm
199085 3.1
Network 		FileMaker, Inc - FileMaker Server において PHP ソースコードが閲覧可能な問題 CWE-20
不適切な入力確認 		CVE-2016-1208 2016-06-2 09:42 2016-05-13 Show GitHub Exploit DB Packet Storm
199086 8.2 重要
Network 		The PHP Group
アップル		 - PHP の PHAR エクステンションの zip.c 内の phar_parse_zipfile 関数における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-3142 2016-06-1 17:18 2016-03-3 Show GitHub Exploit DB Packet Storm
199087 9.8 緊急
Network 		The PHP Group
アップル		 - PHP の WDDX エクステンションの wddx.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-3141 2016-06-1 17:18 2016-03-3 Show GitHub Exploit DB Packet Storm
199088 6.8 警告
Network 		Dell SecureWorks - Apple iOS 用 Dell SecureWorks モバイルアプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2016-2268 2016-06-1 17:08 2016-02-2 Show GitHub Exploit DB Packet Storm
199089 5.6 警告
Network 		WP Ninjas, LLC. - WordPress 用プラグイン「Ninja Forms」における PHP オブジェクトインジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1209 2016-06-1 17:01 2016-05-13 Show GitHub Exploit DB Packet Storm
199090 4.3 警告
Adjacent 		株式会社アイ・オー・データ機器 - WN-GDN/R3 シリーズにおいて認証試行回数が制限されていない脆弱性 CWE-287
不適切な認証 		CVE-2016-1206 2016-06-1 16:50 2016-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311 9.8 CRITICAL
Network 		- - SocialEngine versions 7.8.0 and prior contain a SQL injection vulnerability in the /activity/index/get-memberall endpoint where user-supplied input passed via the text parameter is not sanitized befo… New CWE-89
SQL Injection 		CVE-2026-41460 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm
312 8.5 HIGH
Network 		- - SocialEngine versions 7.8.0 and prior contain a blind server-side request forgery vulnerability in the /core/link/preview endpoint where user-supplied input passed via the uri request parameter is no… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-41461 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm
313 - - - Jizhicms v2.5.4 is vulnerable to SQL injection in the product editing module. New - CVE-2025-50229 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm
314 9.8 CRITICAL
Network 		- - Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. Versions 0.0.41 through 0.0.93 have a vulnerability in `LivekitFrameSerializer` – an opti… New CWE-502
 Deserialization of Untrusted Data 		CVE-2025-62373 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm
315 9.8 CRITICAL
Network 		- - Kofax Capture, now referred to as Tungsten Capture, version 6.0.0.0 (other versions may be affected) exposes a deprecated .NET Remoting HTTP channel on port 2424 via the Ascent Capture Service that i… New CWE-306
CWE-441
Missing Authentication for Critical Function
Confused Deputy 		CVE-2026-23751 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm
316 - - - This vulnerability allows an attacker to create a junction, enabling the deletion of arbitrary files with SYSTEM privileges. As a result, this condition potentially facilitates arbitrary code executi… New CWE-59
Link Following 		CVE-2026-33694 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm
317 7.7 HIGH
Network 		- - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. From 3.6.5 to 4.0.4, an unchecked array index in the pod informer's podGCFromPod() fun… New CWE-129
 Improper Validation of Array Index 		CVE-2026-40886 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm
318 5.3 MEDIUM
Network 		- - OpenTelemetry dotnet is a dotnet telemetry framework. In OpenTelemetry.Api 0.5.0-beta.2 to 1.15.2 and OpenTelemetry.Extensions.Propagators 1.3.1 to 1.15.2, The implementation details of the baggage, … New CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2026-40894 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm
319 5.9 MEDIUM
Network 		- - OpenTelemetry dotnet is a dotnet telemetry framework. In 1.6.0-rc.1 and earlier, OpenTelemetry.Exporter.Jaeger may allow sustained memory pressure when the internal pooled-list sizing grows based on … New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-41078 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm
320 5.9 MEDIUM
Network 		- - The AWS X-Ray Remote Sampler package provides a sampler which can get sampling configurations from AWS X-Ray. Prior to 0.1.0-alpha.8, OpenTelemetry.Sampler.AWS reads unbounded HTTP response bodies fr… New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-41173 2026-04-24 23:50 2026-04-24 Show GitHub Exploit DB Packet Storm