Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220361	7.5	危険	SAP	-	SAP CCMS エージェントの不特定の RFC 機能における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-7362	2014-04-15 12:18	2013-02-21	Show	GitHub Exploit DB Packet Storm

220362	5	警告	SAP	-	SAP CMS および CM Services におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-7361	2014-04-15 12:18	2013-05-11	Show	GitHub Exploit DB Packet Storm

220363	7.5	危険	SAP	-	SAP adminadapter における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2013-7360	2014-04-15 12:17	2013-03-27	Show	GitHub Exploit DB Packet Storm

220364	5	警告	SAP	-	SAP モバイルインフラストラクチャにおける重要なポート情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-7359	2014-04-15 12:16	2013-06-5	Show	GitHub Exploit DB Packet Storm

220365	5	警告	SAP	-	SAP Guided Procedures Archive Monitor におけるユーザ名などの情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-7358	2014-04-15 12:16	2013-07-2	Show	GitHub Exploit DB Packet Storm

220366	5	警告	SAP	-	SAP J2EE Engine の設定サービスにおける認証情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-7357	2014-04-15 12:15	2013-07-2	Show	GitHub Exploit DB Packet Storm

220367	5	警告	SAP	-	Oracle 用 SAP CCMS / Database Monitors におけるデータベースパスワードを取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-7356	2014-04-15 12:15	2013-08-8	Show	GitHub Exploit DB Packet Storm

220368	7.5	危険	SAP	-	SAP BI Universal Data Integration における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-7355	2014-04-15 12:14	2013-11-8	Show	GitHub Exploit DB Packet Storm

220369	-	-	The Prosody Team	-	削除 Prosody におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2014-2750	2014-04-14 18:40	2014-04-2	Show	GitHub Exploit DB Packet Storm

220370	5.8	警告	デル	-	Dell OpenManage Server Administrator におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2013-0740	2014-04-14 18:36	2013-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3071	7.8	HIGH Local	protobufjs_project	protobufjs-cli	protobufjs-cli is the command line add-on for protobuf.js. Prior to 1.2.1 and 2.0.2, pbts invoked JSDoc by building a shell command string from input file paths and executing it through child_process…	CWE-78 OS Command	CVE-2026-42290	2026-05-20 05:56	2026-05-14	Show	GitHub Exploit DB Packet Storm

3072	5.3	MEDIUM Network	protobufjs_project	protobufjs	protobufjs compiles protobuf definitions into JavaScript (JS) functions. Prior to 7.5.6 and 8.0.2, protobufjs includes a minimal UTF-8 decoder that accepted overlong UTF-8 byte sequences and decoded …	CWE-176 Improper Handling of Unicode Encoding	CVE-2026-44288	2026-05-20 05:46	2026-05-14	Show	GitHub Exploit DB Packet Storm

3073	8.7	HIGH Network	protobufjs_project	protobufjs-cli	protobufjs-cli is the command line add-on for protobuf.js. Prior to 1.2.1 and 2.0.2, pbjs static code generation could emit unsafe JavaScript identifiers derived from schema-controlled names. When ge…	CWE-94 Code Injection	CVE-2026-44295	2026-05-20 05:37	2026-05-14	Show	GitHub Exploit DB Packet Storm

3074	7.2	HIGH Network	dkfz	nnu-net	nnU-Net is a semantic segmentation framework that automatically adapts its pipeline to a dataset. Prior to 2.4.1, the nnU-Net Issue Triage workflow in .github/workflows/issue-triage.yml is vulnerable…	CWE-74 Injection	CVE-2026-44246	2026-05-20 05:10	2026-05-13	Show	GitHub Exploit DB Packet Storm

3075	6.1	MEDIUM Network	beaugunderson	ip-address	ip-address is a library for parsing and manipulating IPv4 and IPv6 addresses in JavaScript. Prior to 10.1.1, Address6.group() and Address6.link() do not HTML-escape attacker-controlled content before…	CWE-79 Cross-site Scripting	CVE-2026-42338	2026-05-20 05:04	2026-05-13	Show	GitHub Exploit DB Packet Storm

3076	8.8	HIGH Network	tabby	tabby	Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1.0.233, Tabby registers itself as the handler for the tabby:// URL scheme on all platforms. The URL scheme handler supp…	CWE-78 OS Command	CVE-2026-45035	2026-05-20 04:41	2026-05-16	Show	GitHub Exploit DB Packet Storm

3077	4.3	MEDIUM Network	google	chrome	Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: …	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-8567	2026-05-20 04:28	2026-05-15	Show	GitHub Exploit DB Packet Storm

3078	7.1	HIGH Network	tabby	tabby	Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1.0.232, Tabby's terminal linkifier passes any detected URI directly to the operating system's protocol handler without …	CWE-184 CWE-601 Incomplete Blacklist Open Redirect	CVE-2026-45037	2026-05-20 04:27	2026-05-16	Show	GitHub Exploit DB Packet Storm

3079	8.3	HIGH Network	google	chrome	Integer overflow in Codecs in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity:…	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-8573	2026-05-20 04:27	2026-05-15	Show	GitHub Exploit DB Packet Storm

3080	8.3	HIGH Network	google	chrome	Use after free in Core in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTM…	CWE-416 Use After Free	CVE-2026-8574	2026-05-20 04:27	2026-05-15	Show	GitHub Exploit DB Packet Storm