Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249861 2.6 注意 OTRS プロジェクト - OTRS の AgentTicketZoom におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4071 2012-03-27 18:42 2011-01-20 Show GitHub Exploit DB Packet Storm
249862 6.8 警告 ヒューレット・パッカード - HP HP-UX におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4108 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
249863 7.8 危険 ヒューレット・パッカード - 複数の HP プリンタ製品で使用される File System External Access 設定の PJL Access 値 のデフォルト設定における任意のファイルを読まれる脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4107 2012-03-27 18:42 2010-11-15 Show GitHub Exploit DB Packet Storm
249864 6.8 警告 ヒューレット・パッカード - HP Insight Control におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-4106 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
249865 6.4 警告 ヒューレット・パッカード - HP Insight Orchestration におけるアクセス制限を回避する脆弱性 CWE-noinfo
情報不足 		CVE-2010-4105 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
249866 5 警告 ヒューレット・パッカード - HP Insight Orchestration における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-4104 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
249867 5 警告 ヒューレット・パッカード - HP Insight Managed System Setup Wizard における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-4103 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
249868 5 警告 ヒューレット・パッカード - HP Insight Recovery における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-4102 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
249869 4.3 警告 ヒューレット・パッカード - HP Insight Recovery におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4101 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
249870 5 警告 ヒューレット・パッカード - HP Insight Control Performance Management における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-4100 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1611 9.1 CRITICAL
Network 		- - The nexent v1.7.5.2 backend service contains an unauthorized arbitrary storage file deletion vulnerability in its file management API. The DELETE /storage/{object_name:path} endpoint lacks authentica… CWE-552
 Files or Directories Accessible to External Parties 		CVE-2026-31216 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1612 9.8 CRITICAL
Network 		- - The _load_model() function in the neural_magic_training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f (2024-07-21) allows arbitrary code execution. When a user … CWE-94
Code Injection 		CVE-2026-31217 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1613 8.8 HIGH
Network 		- - The superduper project thru v0.10.0 contains a critical remote code execution vulnerability in its query parsing component. The _parse_op_part() function in query.py uses the unsafe eval() function t… CWE-94
Code Injection 		CVE-2026-31225 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1614 9.8 CRITICAL
Network 		- - The TinyZero project thru commit 6652a63c57fa7e5ccde3fc9c598c7176ff15b839 (2025-58-24) contains a critical command injection vulnerability (CWE-78) in its HDFS file operation utilities. The vulnerabi… CWE-78
OS Command  		CVE-2026-31226 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1615 9.8 CRITICAL
Network 		- - The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kubeflow component. The robustness evaluation function for PyTorch models uses the unsafe ev… CWE-94
Code Injection 		CVE-2026-31228 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1616 9.8 CRITICAL
Network 		- - Exim before 4.99.3, in certain GnuTLS configurations, has a remotely reachable use-after-free in the BDAT body parsing path. It is triggered when a client sends a TLS close_notify mid-body during a C… CWE-416
 Use After Free 		CVE-2026-45185 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1617 9.8 CRITICAL
Network 		- - The torch-checkpoint-shrink.py script in the ml-engineering project in commit 0099885db36a8f06556efe1faf552518852cb1e0 (2025-20-27) contains an insecure deserialization vulnerability (CWE-502). The s… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-31214 2026-05-14 00:51 2026-05-13 Show GitHub Exploit DB Packet Storm
1618 8.0 HIGH
Network 		- - An arbitrary file upload vulnerability in MK-Auth 23.01K4.9 allows attackers to execute arbitrary code via uploading a crafted PHP file. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2023-27753 2026-05-14 00:48 2026-05-13 Show GitHub Exploit DB Packet Storm
1619 5.4 MEDIUM
Network 		- - An insecure direct object reference in MK-Auth 23.01K4.9 allows attackers to access and send support calls for other users via manipulation of the chamado parameter through a crafted GET request. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2023-30059 2026-05-14 00:48 2026-05-13 Show GitHub Exploit DB Packet Storm
1620 6.5 MEDIUM
Network 		- - GPT-Pilot thru commit 0819827ce20346ef5f25b3fe29293cb448840565 (2025-09-03) contains a command injection vulnerability (CWE-78) in the Executor.run() method. During project execution, when the system… CWE-78
OS Command  		CVE-2026-31246 2026-05-14 00:47 2026-05-12 Show GitHub Exploit DB Packet Storm