Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203221	6.1	警告 Network	レッドハット	-	Spacewalk および Red Hat Satellite の Web UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-3079	2016-04-20 16:05	2016-04-4	Show	GitHub Exploit DB Packet Storm

203222	5.4	警告 Network	レッドハット	-	Spacewalk および Red Hat Satellite の spacewalk-java におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-0284	2016-04-20 16:05	2016-04-4	Show	GitHub Exploit DB Packet Storm

203223	6.5	警告 Network	Debian Python Software Foundation	-	Pillow の libImaging/FliDecode.c の ImagingFliDecode 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-0775	2016-04-20 15:56	2016-02-4	Show	GitHub Exploit DB Packet Storm

203224	6.5	警告 Network	Debian Python Software Foundation	-	Pillow の libImaging/TiffDecode.c の ImagingLibTiffDecode 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-0740	2016-04-20 15:56	2016-02-4	Show	GitHub Exploit DB Packet Storm

203225	5.9	警告 Network	Debian Canonical Fedora Project libssh レッドハット	-	libssh における SSH セッションを復号される脆弱性	CWE-200 情報漏えい	CVE-2016-0739	2016-04-20 14:42	2016-02-23	Show	GitHub Exploit DB Packet Storm

203226	6.5	警告 Network	Canonical レッドハット	-	libvirt の virStorageVolCreateXML API におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2015-5247	2016-04-20 11:57	2015-09-3	Show	GitHub Exploit DB Packet Storm

203227	5.9	警告 Network	Canonical レッドハット	-	libvirt の network/bridge_driver.c の networkReloadIptablesRules 関数におけるアクセス制限を回避される脆弱性	CWE-Other その他	CVE-2011-4600	2016-04-20 11:57	2011-12-10	Show	GitHub Exploit DB Packet Storm

203228	5.5	警告 Local	Xen プロジェクト	-	Xen および Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-3961	2016-04-20 11:46	2016-04-14	Show	GitHub Exploit DB Packet Storm

203229	8.6	重要 Network	シトリックス・システムズ Xen プロジェクト	-	Xen における他のドメインから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-8555	2016-04-20 11:46	2015-12-17	Show	GitHub Exploit DB Packet Storm

203230	6.5	警告 Local	Xen プロジェクトレッドハット	-	Xen におけるホスト OS のカーネルメモリの初期化されていない領域から重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-8553	2016-04-20 11:46	2015-03-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
481	6.1	MEDIUM Network	-	-	A Cross Site Scripting vulnerability in Alkacon OpenCms before 16 exists via updateModelGroups.jsp. New	CWE-79 Cross-site Scripting	CVE-2023-42345	2026-05-9 00:58	2026-05-8	Show	GitHub Exploit DB Packet Storm

482	-		-	-	Alkacon OpenCms before 16 allows XXE when the <!DOCTYPE> refers to an external host. New	-	CVE-2023-42346	2026-05-9 00:58	2026-05-8	Show	GitHub Exploit DB Packet Storm

483	8.7	HIGH Network	-	-	Brave CMS is an open-source CMS. Prior to commit 6c56603, page and article body content entered through the CKEditor rich-text editor is stored verbatim in the database and subsequently rendered with… New	CWE-79 Cross-site Scripting	CVE-2026-41524	2026-05-9 00:58	2026-05-9	Show	GitHub Exploit DB Packet Storm

484	7.1	HIGH Network	-	-	Brave CMS is an open-source CMS. Prior to commit 6c56603, the contact form is publicly accessible (no authentication required). User-supplied message text is passed through PHP's nl2br() function, wh… New	CWE-79 Cross-site Scripting	CVE-2026-41576	2026-05-9 00:58	2026-05-9	Show	GitHub Exploit DB Packet Storm

485	5.3	MEDIUM Network	-	-	Nuclei is a vulnerability scanner built on a simple YAML-based DSL. From version 3.0.0 to before version 3.8.0, a vulnerability in Nuclei's expression evaluation engine makes it possible for a malici… New	CWE-94 Code Injection	CVE-2026-41645	2026-05-9 00:58	2026-05-8	Show	GitHub Exploit DB Packet Storm

486	5.5	MEDIUM Local	-	-	Nuclei is a vulnerability scanner built on a simple YAML-based DSL. From version 3.0.0 to before version 3.8.0, a vulnerability in Nuclei's JavaScript protocol runtime allows JavaScript templates to … New	CWE-284 Improper Access Control	CVE-2026-41646	2026-05-9 00:58	2026-05-8	Show	GitHub Exploit DB Packet Storm

487	8.5	HIGH Network	-	-	n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. In versions 2.47.4 through 2.47.13, the SDK embedder path (N8NDocumentationMCPServer… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-42449	2026-05-9 00:57	2026-05-8	Show	GitHub Exploit DB Packet Storm

488	9.8	CRITICAL Network	-	-	electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to version 3.3.8, a command injection vulnerability exists in github.com/elcterm/electerm/npm/install.j… New	CWE-77 Command Injection	CVE-2026-41500	2026-05-9 00:54	2026-05-8	Show	GitHub Exploit DB Packet Storm

489	9.8	CRITICAL Network	-	-	electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to version 3.3.8, a command injection vulnerability exists in github.com/elcterm/electerm/npm/install.j… New	CWE-77 Command Injection	CVE-2026-41501	2026-05-9 00:54	2026-05-8	Show	GitHub Exploit DB Packet Storm

490	8.4	HIGH Local	-	-	electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to version 3.7.16, the runWidget function in src/app/widgets/load-widget.js constructs a file path by d… New	CWE-22 CWE-829 Path Traversal Inclusion of Functionality from Untrusted Control Sphere	CVE-2026-43940	2026-05-9 00:54	2026-05-8	Show	GitHub Exploit DB Packet Storm