Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200291 9.3 危険 アップル - Apple OS X の AppleRAID における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-119
CWE-20
CVE-2016-1733 2016-03-25 14:59 2016-03-21 Show GitHub Exploit DB Packet Storm
200292 4.3 警告 NetIQ - NetIQ Self Service Password Reset におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1599 2016-03-25 13:42 2016-03-22 Show GitHub Exploit DB Packet Storm
200293 5 警告 Privoxy Developers - Privoxy の filters.c の remove_chunked_transfer_coding 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1982 2016-03-25 10:04 2016-01-21 Show GitHub Exploit DB Packet Storm
200294 8.3 危険 ネットギア - NETGEAR Management System NMS300 における任意の Java コードを実行される脆弱性 CWE-Other
その他 		CVE-2016-1524 2016-03-24 18:08 2016-02-3 Show GitHub Exploit DB Packet Storm
200295 6.8 警告 IBM - IBM Mashup Center の Lotus Mashups コンポーネントにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-7407 2016-03-24 18:04 2015-11-20 Show GitHub Exploit DB Packet Storm
200296 6.8 警告 IBM - IBM Mashup Center の Lotus Mashups コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
CWE-Other
CVE-2015-7400 2016-03-24 18:03 2015-11-20 Show GitHub Exploit DB Packet Storm
200297 4.3 警告 アドビシステムズ
日立		 - Adobe ColdFusion および LiveCycle Data Services で使用される Adobe BlazeDS における HTTP トラフィックをイントラネットサーバへ送信される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-5255 2016-03-24 17:24 2015-11-17 Show GitHub Exploit DB Packet Storm
200298 5 警告 アドビシステムズ
日立		 - Adobe LiveCycle Data Services などの製品の flex-messaging-core.jar で使用される Apache Flex BlazeDS における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2015-3269 2016-03-24 17:23 2015-08-18 Show GitHub Exploit DB Packet Storm
200299 6.8 警告 XZERES Wind Corp - XZERES 442SR Wind Turbines 上で稼働する XZERES 442SR OS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-0985 2016-03-24 17:23 2015-03-17 Show GitHub Exploit DB Packet Storm
200300 5.5 警告 Matt Johnston - Dropbear SSH における CRLF インジェクションの脆弱性 CWE-Other
その他 		CVE-2016-3116 2016-03-24 11:22 2016-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1021 9.8 CRITICAL
Network 		- - ELBA5 5.8.0 contains a remote code execution vulnerability that allows attackers to obtain database credentials and execute arbitrary commands with SYSTEM level permissions. Attackers can connect to … CWE-326
Inadequate Encryption Strength 		CVE-2018-25272 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm
1022 6.5 MEDIUM
Network 		- - DDEV is an open-source tool for running local web development environments for PHP and Node.js. Versions prior to 1.25.2 have unsanitized extraction in both `Untar()` and `Unzip()` functions in `pkg/… CWE-22
Path Traversal 		CVE-2026-32885 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm
1023 7.3 HIGH
Local 		- - A vulnerability in the chmod utility of uutils coreutils allows users to bypass the --preserve-root safety mechanism. The implementation only validates if the target path is literally / and does not … CWE-22
Path Traversal 		CVE-2026-35338 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm
1024 5.5 MEDIUM
Local 		- - The recursive mode (-R) of the chmod utility in uutils coreutils incorrectly handles exit codes when processing multiple files. The final return value is determined solely by the success or failure o… CWE-253
 Incorrect Check of Function Return Value 		CVE-2026-35339 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm
1025 5.5 MEDIUM
Local 		- - A flaw in the ChownExecutor used by uutils coreutils chown and chgrp causes the utilities to return an incorrect exit code during recursive operations. The final exit code is determined only by the l… CWE-253
 Incorrect Check of Function Return Value 		CVE-2026-35340 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm
1026 3.3 LOW
Local 		- - The mktemp utility in uutils coreutils fails to properly handle an empty TMPDIR environment variable. Unlike GNU mktemp, which falls back to /tmp when TMPDIR is an empty string, the uutils implementa… CWE-377
 Insecure Temporary File 		CVE-2026-35342 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm
1027 3.3 LOW
Local 		- - The cut utility in uutils coreutils incorrectly handles the -s (only-delimited) option when a newline character is specified as the delimiter. The implementation fails to verify the only_delimited fl… CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2026-35343 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm
1028 3.3 LOW
Local 		- - The dd utility in uutils coreutils suppresses errors during file truncation operations by unconditionally calling Result::ok() on truncation attempts. While intended to mimic GNU behavior for special… CWE-252
 Unchecked Return Value 		CVE-2026-35344 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm
1029 3.3 LOW
Local 		- - The comm utility in uutils coreutils silently corrupts data by performing lossy UTF-8 conversion on all output lines. The implementation uses String::from_utf8_lossy(), which replaces invalid UTF-8 b… CWE-176
 Improper Handling of Unicode Encoding 		CVE-2026-35346 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm
1030 4.4 MEDIUM
Local 		- - The comm utility in uutils coreutils incorrectly consumes data from non-regular file inputs before performing comparison operations. The are_files_identical function opens and reads from both input p… CWE-20
 Improper Input Validation  		CVE-2026-35347 2026-04-23 06:23 2026-04-23 Show GitHub Exploit DB Packet Storm