Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203741 5 警告 オラクル - Oracle Enterprise Manager Grid Control の Oracle Application Testing Suite における Test Manager for Web Apps に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0480 2016-06-27 13:41 2016-01-19 Show GitHub Exploit DB Packet Storm
203742 4.4 警告
Local 		Alertus Technologies, LLC. - OS X 向け Alertus Desktop Notification に不適切な権限設定の問題 CWE-Other
その他 		CVE-2016-5087 2016-06-27 11:38 2016-06-23 Show GitHub Exploit DB Packet Storm
203743 8.1 重要
Network 		山田巧 - DXライブラリにおいて任意のコードが実行可能な脆弱性 CWE-134
書式文字列の問題 		CVE-2016-4819 2016-06-27 11:30 2016-06-8 Show GitHub Exploit DB Packet Storm
203744 3.7
Network 		株式会社エヌ・ティ・ティ・データ - TERASOLUNA Server Framework for Java(WEB) の拡張子直接アクセス禁止機能における制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1183 2016-06-27 11:30 2016-06-7 Show GitHub Exploit DB Packet Storm
203745 8.2 重要
Network 		OpenStack - OpenStack Neutron の IPTables ファイアウォールにおける ICMPv6 偽造保護メカニズムを回避される脆弱性 CWE-Other
その他 		CVE-2015-8914 2016-06-27 10:38 2015-10-5 Show GitHub Exploit DB Packet Storm
203746 7.8 重要
Local 		Linux - MSM デバイス用 QuIC Android コントリビューションなどで使用される Linux Kernel 用 Adreno GPU ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
CWE-20
CVE-2016-2062 2016-06-24 17:45 2016-04-28 Show GitHub Exploit DB Packet Storm
203747 5.9 警告
Network 		Samba Project - Samba におけるプロトコルダウングレード攻撃を実行される脆弱性 CWE-noinfo
情報不足 		CVE-2015-5370 2016-06-24 17:42 2015-07-6 Show GitHub Exploit DB Packet Storm
203748 6.8 警告 Apache Software Foundation - Apache Tomcat の Manager および Host Manager アプリケーションにおける CSRF 保護メカニズムを回避される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-5351 2016-06-24 17:03 2015-12-17 Show GitHub Exploit DB Packet Storm
203749 6.1 警告
Network 		シスコシステムズ - Cisco Unified Contact Center Enterprise の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1439 2016-06-24 14:57 2016-06-22 Show GitHub Exploit DB Packet Storm
203750 7.5 重要
Network 		シスコシステムズ - Cisco E メール セキュリティ アプライアンス デバイス上で稼動する AsyncOS におけるスパムのフィルタリングを回避される脆弱性 CWE-20
CWE-Other
CVE-2016-1438 2016-06-24 14:57 2016-06-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1331 5.3 MEDIUM
Network 		misp misp MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, MISP Collections did not enforce RFC 4122 UUID validation on the uuid field. As a result, a user able to create or mo… CWE-20
NVD-CWE-noinfo
 Improper Input Validation  		CVE-2026-44379 2026-05-16 02:57 2026-05-14 Show GitHub Exploit DB Packet Storm
1332 7.1 HIGH
Local 		saitoha libsixel libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-boun… CWE-190
CWE-787
 Integer Overflow or Wraparound
 Out-of-bounds Write 		CVE-2026-44637 2026-05-16 02:55 2026-05-15 Show GitHub Exploit DB Packet Storm
1333 2.5 LOW
Local 		saitoha libsixel libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixel_decode_raw and sixel_decode causes a NULL pointe… CWE-476
CWE-690
 NULL Pointer Dereference
 Unchecked Return Value to NULL Pointer Dereference 		CVE-2026-44638 2026-05-16 02:54 2026-05-15 Show GitHub Exploit DB Packet Storm
1334 5.4 MEDIUM
Network 		lfprojects mcp_registry The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. Prior to 1.7.7, the public catalogue UI served at GET / (file internal/api/handlers/v0/ui_index.ht… CWE-79
CWE-116
Cross-site Scripting
 Improper Encoding or Escaping of Output 		CVE-2026-44429 2026-05-16 02:52 2026-05-15 Show GitHub Exploit DB Packet Storm
1335 7.2 HIGH
Network 		misp misp MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, an improper access control vulnerability in the authentication key reset functionality allowed an authenticated organ… CWE-863
 Incorrect Authorization 		CVE-2026-44380 2026-05-16 02:42 2026-05-14 Show GitHub Exploit DB Packet Storm
1336 5.3 MEDIUM
Network 		misp misp MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, a SQL injection vulnerability existed in the handling of user-controlled ordering parameters in the event and shadow … CWE-89
SQL Injection 		CVE-2026-44381 2026-05-16 02:37 2026-05-14 Show GitHub Exploit DB Packet Storm
1337 8.1 HIGH
Network 		fit2cloud sqlbot SQLBot is an intelligent Text-to-SQL system based on large language models and RAG. Prior to 1.8.0, SQLBot contains a Cross-Workspace IDOR (Insecure Direct Object Reference) and Authorization Bypass … CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-42463 2026-05-16 02:34 2026-05-14 Show GitHub Exploit DB Packet Storm
1338 9.1 CRITICAL
Network 		opnsense opnsense OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.7, the XMLRPC method opnsense.restore_config_section fails to sanitize user supplied input leading to Remote Code Execution. T… CWE-88
Argument Injection 		CVE-2026-44193 2026-05-16 02:30 2026-05-14 Show GitHub Exploit DB Packet Storm
1339 4.7 MEDIUM
Network 		lfprojects mcp_registry The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. Prior to 1.7.6, the client-side and server-side GitHub OIDC flow is bound only to a global audienc… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-44428 2026-05-16 02:23 2026-05-15 Show GitHub Exploit DB Packet Storm
1340 9.1 CRITICAL
Network 		opnsense opnsense OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.8, an authenticated Remote Code Execution (RCE) vulnerability in the OPNsense core allows a user with user-management privileg… CWE-78
OS Command  		CVE-2026-44194 2026-05-16 02:19 2026-05-14 Show GitHub Exploit DB Packet Storm