Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256921	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0195	2010-04-28 15:57	2010-04-13	Show	GitHub Exploit DB Packet Storm

256922	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0194	2010-04-28 15:57	2010-04-13	Show	GitHub Exploit DB Packet Storm

256923	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-0193	2010-04-28 15:57	2010-04-13	Show	GitHub Exploit DB Packet Storm

256924	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-0192	2010-04-28 15:57	2010-04-13	Show	GitHub Exploit DB Packet Storm

256925	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0191	2010-04-28 15:56	2010-04-13	Show	GitHub Exploit DB Packet Storm

256926	4.3	警告	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0190	2010-04-28 15:56	2010-04-13	Show	GitHub Exploit DB Packet Storm

256927	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の r8169 ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-4537	2010-04-28 15:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

256928	4.3	警告	IBM Apache Software Foundation アップルサイバートラスト株式会社ヒューレット・パッカードターボリナックスレッドハット	-	Apache の mod_proxy_ftp における UTF-7 エンコードに関するクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0005	2010-04-28 15:18	2008-01-11	Show	GitHub Exploit DB Packet Storm

256929	10	危険	IntelliCom Innovation AB	-	IntelliCom NetBiter デバイスにおけるデフォルトパスワードの問題	CWE-255 証明書・パスワード管理	CVE-2009-4463	2010-04-27 16:10	2010-04-7	Show	GitHub Exploit DB Packet Storm

256930	9.3	危険	Foxit Software Inc	-	Foxit Reader に任意のコード実行が可能な脆弱性	CWE-94 コード・インジェクション	CVE-2010-1239	2010-04-27 16:10	2010-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
5991	6.1	MEDIUM Network	-	-	Admidio is an open-source user management solution. Prior to version 5.0.9, an unauthenticated attacker can execute arbitrary JavaScript in any Admidio user's browser through a reflected XSS in syste…	CWE-79 Cross-site Scripting	CVE-2026-41661	2026-05-8 01:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

5992	6.5	MEDIUM Network	-	-	Admidio is an open-source user management solution. Prior to version 5.0.9, the ecard_preview.php endpoint does not validate that the ecard_template POST parameter is a safe filename before passing i…	CWE-22 Path Traversal	CVE-2026-41655	2026-05-8 01:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

5993	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: u_ether: Fix race between gether_disconnect and eth_stop A race condition between gether_disconnect() and eth_stop()…	CWE-362 Race Condition	CVE-2026-31728	2026-05-8 01:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

5994	-		-	-	Incus is a system container and virtual machine manager. Prior to version 7.0.0, user provided image and backup tarballs would be unpacked and YAML files parsed without any size restrictions. This wa…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-41648	2026-05-8 01:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

5995	9.6	CRITICAL Network	-	-	Wish is an SSH server with defaults and a collection of middlewares. From version 2.0.0 to before version 2.0.1, the SCP middleware in charm.land/wish/v2 is vulnerable to path traversal attacks. A ma…	CWE-22 Path Traversal	CVE-2026-41589	2026-05-8 01:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

5996	-		-	-	Hyperledger Fabric is an enterprise-grade permissioned distributed ledger framework for developing solutions and applications. From versions 1.0.0 to 2.2.26, Channel.java implements readObject() and …	CWE-502 Deserialization of Untrusted Data	CVE-2026-41586	2026-05-8 01:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

5997	5.3	MEDIUM Network	openclaw	openclaw	OpenClaw versions 2026.4.10 before 2026.4.14 contain a missing authorization vulnerability in the Microsoft Teams SSO invoke handler that fails to apply sender allowlist checks. Attackers can bypass …	CWE-862 Missing Authorization	CVE-2026-43572	2026-05-8 01:03	2026-05-5	Show	GitHub Exploit DB Packet Storm

5998	8.8	HIGH Network	openclaw	openclaw	OpenClaw before 2026.4.10 contains a plugin trust bypass vulnerability that allows channel setup catalog lookups to resolve workspace plugin shadows before bundled channel plugins. Attackers can expl…	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2026-43571	2026-05-8 01:03	2026-05-5	Show	GitHub Exploit DB Packet Storm

5999	6.5	MEDIUM Network	openclaw	openclaw	OpenClaw versions 2026.3.22 before 2026.4.5 contain a symlink traversal vulnerability in remote marketplace repository path handling that allows attackers to escape the expected repository root. Atta…	CWE-61 UNIX Symbolic Link (Symlink) Following	CVE-2026-43570	2026-05-8 01:03	2026-05-5	Show	GitHub Exploit DB Packet Storm

6000	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: validate connector number in ucsi_notify_common() The connector number extracted from CCI via UCSI_CCI_CONNECTO…	CWE-129 Improper Validation of Array Index	CVE-2026-31729	2026-05-8 01:02	2026-05-2	Show	GitHub Exploit DB Packet Storm