Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252121	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0596	2011-03-9 15:51	2011-02-8	Show	GitHub Exploit DB Packet Storm

252122	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0595	2011-03-9 15:49	2011-02-8	Show	GitHub Exploit DB Packet Storm

252123	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0594	2011-03-9 15:47	2011-02-8	Show	GitHub Exploit DB Packet Storm

252124	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0593	2011-03-9 15:44	2011-02-8	Show	GitHub Exploit DB Packet Storm

252125	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0592	2011-03-9 15:42	2011-02-8	Show	GitHub Exploit DB Packet Storm

252126	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0591	2011-03-9 15:38	2011-02-8	Show	GitHub Exploit DB Packet Storm

252127	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0590	2011-03-9 15:16	2011-02-8	Show	GitHub Exploit DB Packet Storm

252128	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0589	2011-03-9 15:14	2011-02-8	Show	GitHub Exploit DB Packet Storm

252129	6.9	警告	アドビシステムズ	-	Adobe Reader および Acrobat における権限昇格の脆弱性	CWE-Other その他	CVE-2011-0588	2011-03-9 15:11	2011-02-8	Show	GitHub Exploit DB Packet Storm

252130	4.3	警告	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0587	2011-03-9 15:09	2011-02-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3531	3.8	LOW Network	-	-	An issue in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to cause a denial of service via the Client Balance component	CWE-400 Uncontrolled Resource Consumption	CVE-2026-31051	2026-04-25 02:55	2026-04-25	Show	GitHub Exploit DB Packet Storm

3532	5.3	MEDIUM Network	-	-	An issue in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to cause a denial of service via the Checkout Authentication Flow component	CWE-400 Uncontrolled Resource Consumption	CVE-2026-31052	2026-04-25 02:55	2026-04-25	Show	GitHub Exploit DB Packet Storm

3533	4.0	MEDIUM Local	-	-	bookserver in KDE Arianna before 26.04.1 allows attackers to read files over a socket connection by guessing a URL.	CWE-306 Missing Authentication for Critical Function	CVE-2026-42095	2026-04-25 02:55	2026-04-25	Show	GitHub Exploit DB Packet Storm

3534	9.8	CRITICAL Network	-	-	BridgeHead FileStore versions prior to 24A (released in early 2024) expose the Apache Axis2 administration module on network-accessible endpoints with default credentials that allows unauthenticated …	CWE-1188 CWE-1391 Insecure Default Initialization of Resource Use of Weak Credentials	CVE-2026-39920	2026-04-25 02:55	2026-04-25	Show	GitHub Exploit DB Packet Storm

3535	6.1	MEDIUM Network	-	-	Mahara before 25.04.2 and 24.04.11 are vulnerable to displaying results that can trigger XSS via a malicious search query string. This occurs in the 'search site' feature when using the Elasticsearch…	CWE-79 Cross-site Scripting	CVE-2025-61872	2026-04-25 02:54	2026-04-25	Show	GitHub Exploit DB Packet Storm

3536	4.7	MEDIUM Network	-	-	In Mahara before 24.04.10 and 25 before 25.04.1, an institution administrator or institution support administrator on a multi-tenanted site can masquerade as an institution member in an institution f…	CWE-284 Improper Access Control	CVE-2025-59308	2026-04-25 02:54	2026-04-25	Show	GitHub Exploit DB Packet Storm

3537	5.4	MEDIUM Network	opensourcepos	open_source_point_of_sale	Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework. Prior to 3.4.3, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Stock Lo…	CWE-79 Cross-site Scripting	CVE-2026-39380	2026-04-25 02:51	2026-04-8	Show	GitHub Exploit DB Packet Storm

3538	10.0	CRITICAL Network	flatpak	flatpak	Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at …	CWE-61 UNIX Symbolic Link (Symlink) Following	CVE-2026-34078	2026-04-25 02:50	2026-04-8	Show	GitHub Exploit DB Packet Storm

3539	4.3	MEDIUM Network	pretix	pretix	A new API endpoint introduced in pretix 2025 that is supposed to return all check-in events of a specific event in fact returns all check-in events belonging to the respective organizer. This allow…	CWE-653 Improper Isolation or Compartmentalization	CVE-2026-5600	2026-04-25 02:46	2026-04-8	Show	GitHub Exploit DB Packet Storm

3540	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ice: fix crash in ethtool offline loopback test Since the conversion of ice to page pool, the ethtool loopback test crashes: BU…	CWE-476 NULL Pointer Dereference	CVE-2026-23353	2026-04-25 02:45	2026-03-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed