Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251131	4.3	警告	xmlsoft.org アップルサイバートラスト株式会社サン・マイクロシステムズ OpenOffice.org Project レッドハット	-	libxml2 および libxml における DTD 内の要素宣言の処理に関するサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-2414	2010-07-13 16:26	2009-08-11	Show	GitHub Exploit DB Packet Storm

251132	4.3	警告	アップル	-	Apple Mac OS の CFNetwork における任意の HTTPS Web サイトを訪問しているように偽装可能な脆弱性	CWE-Other その他	CVE-2009-1723	2010-07-13 16:25	2009-08-5	Show	GitHub Exploit DB Packet Storm

251133	3.5	注意	アップル	-	Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1382	2010-07-12 18:12	2010-06-15	Show	GitHub Exploit DB Packet Storm

251134	3.5	注意	アップル	-	Apple Mac OS X の SMB ファイルサーバにおける任意のファイルにアクセスされる脆弱性	CWE-16 環境設定	CVE-2010-1381	2010-07-12 18:12	2010-06-15	Show	GitHub Exploit DB Packet Storm

251135	7.5	危険	アップル	-	Apple Mac OS X の cgtexttops CUPS フィルタにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1380	2010-07-12 18:11	2010-06-15	Show	GitHub Exploit DB Packet Storm

251136	5	警告	アップル	-	Apple Mac OS X のプリンタ設定におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1379	2010-07-12 18:11	2010-06-15	Show	GitHub Exploit DB Packet Storm

251137	5	警告	IBM	-	IBM WebSphere Application Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 CWE-noinfo	CVE-2010-0775	2010-07-12 16:43	2010-05-8	Show	GitHub Exploit DB Packet Storm

251138	4.3	警告	IBM	-	IBM WebSphere Application Server におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0774	2010-07-12 16:43	2010-05-8	Show	GitHub Exploit DB Packet Storm

251139	5	警告	アップルサイバートラスト株式会社レッドハットターボリナックス CUPS	-	CUPS の cupsd におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3553	2010-07-12 16:41	2009-11-20	Show	GitHub Exploit DB Packet Storm

251140	9.3	危険	アップル	-	Apple Mac OS X の Open Directory における任意のコードを実行される脆弱性	CWE-310 暗号の問題	CVE-2010-1377	2010-07-9 16:27	2010-06-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2021	10.0	CRITICAL Network	zimaspace	zimaos	ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI. Prior to version 1.5.3, a proxy endpoint (/v1/sys/proxy) exposed by ZimaOS's web interface can be abused…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-28798	2026-04-14 03:27	2026-04-4	Show	GitHub Exploit DB Packet Storm

2022	8.1	HIGH Network	fka	prompts.chat	prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attackers to write arbitrary files to the client system by crafting malicious ZIP archi…	CWE-22 Path Traversal	CVE-2026-22661	2026-04-14 03:23	2026-04-4	Show	GitHub Exploit DB Packet Storm

2023	7.7	HIGH Network	elastic	kibana	Execution with Unnecessary Privileges (CWE-250) in Kibana’s Fleet plugin debug route handlers can lead reading index data beyond their direct Elasticsearch RBAC scope via Privilege Abuse (CAPEC-122).…	CWE-250 Execution with Unnecessary Privileges	CVE-2026-4498	2026-04-14 03:22	2026-04-9	Show	GitHub Exploit DB Packet Storm

2024	6.5	MEDIUM Network	elastic	kibana	Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130). An authenticated user with access to the automatic import feature can submit …	CWE-400 Uncontrolled Resource Consumption	CVE-2026-33459	2026-04-14 03:21	2026-04-9	Show	GitHub Exploit DB Packet Storm

2025	5.5	MEDIUM Local	dell	elastic_cloud_storage objectscale	Dell Elastic Cloud Storage, version 3.8.1.7 and prior, and Dell ObjectScale, versions prior to 4.1.0.3 and version 4.2.0.0, contains an Insertion of Sensitive Information into Log File vulnerability.…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2026-28261	2026-04-14 03:20	2026-04-8	Show	GitHub Exploit DB Packet Storm

2026	6.5	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in WebSockets in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a …	CWE-20 Improper Input Validation	CVE-2026-5919	2026-04-14 03:19	2026-04-9	Show	GitHub Exploit DB Packet Storm

2027	4.3	MEDIUM Network	fka	prompts.chat	prompts.chat prior to commit 1464475 contains a blind server-side request forgery vulnerability in the Wiro media generator that allows authenticated users to perform server-side fetches of user-cont…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-22662	2026-04-14 03:18	2026-04-4	Show	GitHub Exploit DB Packet Storm

2028	8.8	HIGH Network	-	-	A vulnerability was detected in Tenda F456 1.0.0.5. This affects the function fromexeCommand of the file /goform/exeCommand. Performing a manipulation of the argument cmdinput results in stack-based …	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-6196	2026-04-14 03:16	2026-04-14	Show	GitHub Exploit DB Packet Storm

2029	9.8	CRITICAL Network	-	-	A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313_b20191024. Affected by this issue is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handle…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-6195	2026-04-14 03:16	2026-04-14	Show	GitHub Exploit DB Packet Storm

2030	8.8	HIGH Network	-	-	A weakness has been identified in Totolink A3002MU B20211125.1046. Affected by this vulnerability is the function sub_410188 of the file /boafrm/formWlanSetup of the component HTTP Request Handler. T…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-6194	2026-04-14 03:16	2026-04-14	Show	GitHub Exploit DB Packet Storm