Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4431	5.8	警告 Network	Vexa AI, Inc.	Vexa	Vexa AI, Inc.のVexaにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-25883	2026-04-24 11:37	2026-04-20	Show	GitHub Exploit DB Packet Storm

4432	6.1	警告 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-27243	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4433	6.1	警告 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-27245	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4434	6.1	警告 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-27246	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4435	10	緊急 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-27303	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4436	4.3	警告 Network	Hytale Modding	HytaleModding Wiki	Hytale ModdingのHytaleModding Wikiにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-32736	2026-04-24 11:37	2026-03-18	Show	GitHub Exploit DB Packet Storm

4437	7	重要 Local	libsixel project	libsixel	Hayaki Saito (saitoha)のlibsixelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33018	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4438	7.1	重要 Local	libsixel project	libsixel	Hayaki Saito (saitoha)のlibsixelにおける複数の脆弱性	CWE-125 CWE-190	CVE-2026-33019	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4439	7.1	重要 Local	libsixel project	libsixel	Hayaki Saito (saitoha)のlibsixelにおける複数の脆弱性	CWE-122 CWE-190	CVE-2026-33020	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4440	7.3	重要 Local	libsixel project	libsixel	Hayaki Saito (saitoha)のlibsixelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33021	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348371	-	efax	efax	efax 0.9 and earlier, when installed setuid root, allows local users to read arbitrary files via the -d option, which prints the contents of the file in a warning message.	NVD-CWE-Other	CVE-2002-0129	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348372	-	efax	efax	Buffer overflow in efax 0.9 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -x argument.	NVD-CWE-Other	CVE-2002-0130	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348373	-	activestate	activepython	ActivePython ActiveX control for Python in the AXScript package, when used in Internet Explorer, does not prevent a script from reading files from the client's filesystem, which allows remote attacke…	NVD-CWE-Other	CVE-2002-0131	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348374	-	avirt	avirt_gateway avirt_gateway_suite avirt_soho	Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long header fields to the HTTP proxy, or (2) a long string …	NVD-CWE-Other	CVE-2002-0133	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348375	-	avirt	avirt_gateway_suite	Telnet proxy in Avirt Gateway Suite 4.2 does not require authentication for connecting to the proxy system itself, which allows remote attackers to list file contents of the proxy and execute arbitra…	NVD-CWE-Other	CVE-2002-0134	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348376	-	andreas_mueller	cdrdao	CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file.	NVD-CWE-Other	CVE-2002-0137	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348377	-	andreas_mueller	cdrdao	CDRDAO 1.1.4 and 1.1.5 allows local users to read arbitrary files via the show-data command.	NVD-CWE-Other	CVE-2002-0138	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348378	-	pi3	pi3web	CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long an…	NVD-CWE-Other	CVE-2002-0142	2016-10-18 11:16	2002-03-25	Show	GitHub Exploit DB Packet Storm

348379	-	cisco	secure_access_control_server	Format string vulnerability in the administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to crash…	CWE-134 Use of Externally-Controlled Format String	CVE-2002-0159	2016-10-18 11:16	2002-04-22	Show	GitHub Exploit DB Packet Storm

348380	-	cisco	secure_access_control_server	The administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to read HTML, Java class, and image fil…	NVD-CWE-Other	CVE-2002-0160	2016-10-18 11:16	2002-04-22	Show	GitHub Exploit DB Packet Storm