Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207441 9 危険 シトリックス・システムズ - Citrix NetScaler Application Delivery Controller および NetScaler Gateway の Management Interface における任意の shell コマンドを実行される脆弱性 CWE-Other
その他 		CVE-2015-5080 2015-07-23 17:29 2015-06-3 Show GitHub Exploit DB Packet Storm
207442 4.3 警告 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアなどの製品に同梱されている Cavium 暗号モジュールのファームウェアの TLS の実装における TLS コンテンツになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2015-4458 2015-07-23 17:07 2015-07-14 Show GitHub Exploit DB Packet Storm
207443 5 警告 シスコシステムズ - ASR 9000 デバイス上で稼働する Cisco IOS XR の Concurrent Data Management Replication プロセスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-4284 2015-07-23 17:07 2015-07-21 Show GitHub Exploit DB Packet Storm
207444 6.8 警告 シスコシステムズ - Cisco WebEx Meetings Server におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-4281 2015-07-23 17:06 2015-07-21 Show GitHub Exploit DB Packet Storm
207445 5 警告 シスコシステムズ - Cisco Prime Collaboration Assurance におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-4280 2015-07-23 17:06 2015-07-16 Show GitHub Exploit DB Packet Storm
207446 7.2 危険 シスコシステムズ - Cisco UCS B シリーズ Blade Server デバイス上で稼働する Cisco Unified Computing System の Manager コンポーネントにおける権限を取得される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2015-4279 2015-07-23 17:06 2015-07-20 Show GitHub Exploit DB Packet Storm
207447 - - シスコシステムズ - ** 削除 ** Cisco WebEx Meeting Center におけるクロスサイトスクリプティングの脆弱性 - CVE-2015-4246 2015-07-23 17:06 2015-07-20 Show GitHub Exploit DB Packet Storm
207448 6.8 警告 NetIQ - NetIQ Security Solutions for iSeries の NetIQExec.dll の NetIQExecObject.NetIQExec.1 ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-0795 2015-07-23 16:38 2015-07-7 Show GitHub Exploit DB Packet Storm
207449 7.2 危険 NVIDIA - FreeBSD 用 NVIDIA GPU ドライバにおける任意のカーネルメモリを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-3625 2015-07-23 16:20 2015-06-16 Show GitHub Exploit DB Packet Storm
207450 4.3 警告 F5 Networks - 複数の F5 BIG-IQ シリーズ製品の REST API における任意のユーザの認証トークンを取得される脆弱性 CWE-310
CWE-Other
CVE-2015-4637 2015-07-23 15:58 2015-07-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
21 9.1 CRITICAL
Network 		- - An issue was discovered in Gambio 4.9.2.0 (patched in 2024-02 v1.0.0 for GX4 v4.0.0.0 to v4.9.2.0). The password reset function can be bypassed to set arbitrary passwords for arbitrary accounts if th… New CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2026-34408 2026-05-7 03:16 2026-05-5 Show GitHub Exploit DB Packet Storm
22 - - - In versions 3.0.0a1 through 3.2.0 of Mistune, there is a ReDoS (Regular Expression Denial of Service) vulnerability in `LINK_TITLE_RE` that allows an attacker who can supply Markdown for parsing to c… New CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2026-33079 2026-05-7 03:16 2026-05-7 Show GitHub Exploit DB Packet Storm
23 - - - ### Summary A SQL injection vulnerability exists in Rucio versions 1.30.0 and later before 35.8.5, 38.5.5, 39.4.2, and 40.1.1, in `FilterEngine.create_postgres_query()`. This allows any authenticate… New CWE-89
SQL Injection 		CVE-2026-29090 2026-05-7 03:16 2026-05-7 Show GitHub Exploit DB Packet Storm
24 7.5 HIGH
Network 		- - An issue was discovered in MM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Mod… New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2025-66369 2026-05-7 03:16 2026-05-6 Show GitHub Exploit DB Packet Storm
25 8.1 HIGH
Network 		dlink m60_firmware A vulnerability was determined in D-Link M60 up to 1.20B02. Affected by this issue is some unknown functionality of the file /usr/bin/httpd. This manipulation causes weak password recovery. The attac… Update CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2026-7554 2026-05-7 03:10 2026-05-1 Show GitHub Exploit DB Packet Storm
26 7.5 HIGH
Network 		apache opennlp OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP AbstractModelReader  Versions Affected:  before 2.5.9 before 3.0.0-M3  Description: The AbstractModelReader methods getOut… New CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2026-42440 2026-05-7 03:09 2026-05-5 Show GitHub Exploit DB Packet Storm
27 7.5 HIGH
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to versions 1.123.33 and 2.17.5, the dynamic-node-parameters endpoints did not verify whether the authenticated caller was authorized to use … New CWE-862
 Missing Authorization 		CVE-2026-42226 2026-05-7 03:09 2026-05-5 Show GitHub Exploit DB Packet Storm
28 6.5 MEDIUM
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user with a valid API key scoped to variable:list could read variables from projec… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-42227 2026-05-7 03:08 2026-05-5 Show GitHub Exploit DB Packet Storm
29 6.5 MEDIUM
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /chat WebSocket endpoint used by the Chat Trigger node's Hosted Chat feature did not verify tha… New CWE-862
 Missing Authorization 		CVE-2026-42228 2026-05-7 03:08 2026-05-5 Show GitHub Exploit DB Packet Storm
30 9.8 CRITICAL
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the Oracle Database node's select operation allowed user-controlled input passed into the… New CWE-89
SQL Injection 		CVE-2026-42233 2026-05-7 03:07 2026-05-5 Show GitHub Exploit DB Packet Storm