Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3511	4.8	警告 Network	cryptomator	cryptomator	cryptomatorにおける複数の脆弱性	CWE-305 CWE-319	CVE-2026-33472	2026-04-24 11:30	2026-04-16	Show	GitHub Exploit DB Packet Storm

3512	5.5	警告 Network	Pinchtab	PinchTab	PinchtabのPinchTabにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-33619	2026-04-24 11:30	2026-03-26	Show	GitHub Exploit DB Packet Storm

3513	6.5	警告 Network	Pinchtab	PinchTab	PinchtabのPinchTabにおける複数の脆弱性	CWE-290 CWE-770	CVE-2026-33621	2026-04-24 11:30	2026-03-26	Show	GitHub Exploit DB Packet Storm

3514	7.5	重要 Network	InternLM	LMDeploy	InternLMのLMDeployにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-33626	2026-04-24 11:30	2026-04-20	Show	GitHub Exploit DB Packet Storm

3515	6.1	警告 Network	Project Jupyter	JupyterHub	Project JupyterのJupyterHubにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-33709	2026-04-24 11:30	2026-04-3	Show	GitHub Exploit DB Packet Storm

3516	7.2	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33714	2026-04-24 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

3517	7.2	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおける複数の脆弱性	CWE-306 CWE-918	CVE-2026-33715	2026-04-24 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

3518	9.1	緊急 Network	Open JS Foundation	fastify/middie	Open JS Foundationの@fastify/middieにおける解釈の競合に関する脆弱性	CWE-436 解釈の競合	CVE-2026-33804	2026-04-24 11:30	2026-04-16	Show	GitHub Exploit DB Packet Storm

3519	4.3	警告 Network	LangGenius, Inc.	Dify	LangGenius, Inc.のDifyにおける複数の脆弱性	CWE-284 CWE-863	CVE-2026-34082	2026-04-24 11:30	2026-04-20	Show	GitHub Exploit DB Packet Storm

3520	8.6	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおける複数の脆弱性	CWE-306 CWE-918	CVE-2026-34160	2026-04-24 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347591	-	uiga	business_portal	Multiple SQL injection vulnerabilities in Uiga Business Portal allow remote attackers to execute arbitrary SQL commands via the (1) noentryid parameter to blog/index.php and the (2) p parameter to in…	CWE-89 SQL Injection	CVE-2010-1049	2013-09-12 15:08	2010-03-23	Show	GitHub Exploit DB Packet Storm

347592	-	openedit_inc	openedit	Cross-site scripting (XSS) vulnerability in store/search/results.html in OpenEdit 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) oe-action and (2) page par…	NVD-CWE-Other	CVE-2005-4476	2013-09-12 13:48	2005-12-22	Show	GitHub Exploit DB Packet Storm

347593	-	apple	mac_os_x mac_os_x_server	Directory traversal vulnerability in AFP Server in Apple Mac OS X before 10.6.3 allows remote attackers to list a share root's parent directory, and read and modify files in that directory, via unspe…	CWE-22 Path Traversal	CVE-2010-0533	2013-09-11 02:18	2010-03-31	Show	GitHub Exploit DB Packet Storm

347594	-	ternaria	com_vjdeo	Directory traversal vulnerability in the VJDEO (com_vjdeo) component 1.0 and 1.0.1 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.…	CWE-22 Path Traversal	CVE-2010-1354	2013-09-9 14:58	2010-04-13	Show	GitHub Exploit DB Packet Storm

347595	-	apple	mac_os_x mac_os_x_server	Integer overflow in the mach_msg_send function in the kernel for Mac OS X might allow local users to execute arbitrary code via unknown attack vectors related to a large message header size, which le…	NVD-CWE-Other	CVE-2006-1220	2013-09-6 13:53	2006-03-14	Show	GitHub Exploit DB Packet Storm

347596	-	netbsd	netbsd	The audio_write function in NetBSD 3.0 allows local users to cause a denial of service (kernel crash) by using the audiosetinfo ioctl to change the sample rate of an audio device.	NVD-CWE-Other	CVE-2006-2205	2013-09-5 13:53	2006-05-5	Show	GitHub Exploit DB Packet Storm

347597	-	ossp	mm	OSSP mm library (libmm) before 1.2.0 allows the local Apache user to gain privileges via temporary files, possibly via a symbolic link attack.	NVD-CWE-Other	CVE-2002-0658	2013-09-4 13:18	2002-08-12	Show	GitHub Exploit DB Packet Storm

347598	-	hp	hp-ux	rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory.	NVD-CWE-Other	CVE-1999-0353	2013-09-3 13:01	1999-02-10	Show	GitHub Exploit DB Packet Storm

347599	-	iatek	siteenable	Cross-site scripting (XSS) vulnerability in login.asp in SiteEnable 3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the ret_page parameter.	NVD-CWE-Other	CVE-2005-4483	2013-08-30 13:50	2005-12-22	Show	GitHub Exploit DB Packet Storm

347600	-	sane	sane sane-backend	saned in sane-backends 1.0.7 and earlier does not check the IP address of the connecting host during the SANE_NET_INIT RPC call, which allows remote attackers to use that call even if they are restri…	NVD-CWE-Other	CVE-2003-0773	2013-08-23 13:29	2003-09-22	Show	GitHub Exploit DB Packet Storm