Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4441	7.8	重要 Local	libsixel project	libsixel	Hayaki Saito (saitoha)のlibsixelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33023	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4442	7.5	重要 Network	Julian Gruber	brace-expansion	Julian Gruber (juliangruber)のbrace-expansionにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-33750	2026-04-24 11:37	2026-03-27	Show	GitHub Exploit DB Packet Storm

4443	8.1	重要 Network	Pavel Shklovsky (pab1it0)	Azure Data Explorer MCP Server	Pavel Shklovsky (pab1it0)のAzure Data Explorer MCP Serverにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-33980	2026-04-24 11:37	2026-03-27	Show	GitHub Exploit DB Packet Storm

4444	6.1	警告 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34614	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4445	10	緊急 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-34615	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4446	8.7	重要 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34617	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4447	7.5	重要 Network	Nhost	Nhost/auth	NhostのNhost/authにおける複数の脆弱性	CWE-200 CWE-598	CVE-2026-34969	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

4448	9.8	緊急 Network	Aperi'Solve	Aperi'Solve	Aperi'SolveにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-34977	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

4449	8.8	重要 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35050	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

4450	7.2	重要 Network	Sanjay Sharma (sanjay1313)	Visitor-Management-System	Sanjay Sharma (sanjay1313)のVisitor-Management-Systemにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-37748	2026-04-24 11:37	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348521	-	sgi	irix	inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find and execute the ttsession program, which allows local users to obtain root access by modifying the P…	NVD-CWE-Other	CVE-1999-1461	2016-10-18 11:04	1997-05-7	Show	GitHub Exploit DB Packet Storm

348522	-	hughes_technologies	w3-auth	Buffer overflow in w3-auth CGI program in miniSQL package allows remote attackers to execute arbitrary commands via an HTTP request with (1) a long URL, or (2) a long User-Agent MIME header.	NVD-CWE-Other	CVE-1999-1469	2016-10-18 11:04	1999-09-30	Show	GitHub Exploit DB Packet Storm

348523	-	redhat	linux	xosview 1.5.1 in Red Hat 5.1 allows local users to gain root access via a long HOME environmental variable.	NVD-CWE-Other	CVE-1999-1490	2016-10-18 11:04	1998-05-28	Show	GitHub Exploit DB Packet Storm

348524	-	redhat	linux	abuse.console in Red Hat 2.1 uses relative pathnames to find and execute the undrv program, which allows local users to execute arbitrary commands via a path that points to a Trojan horse program.	NVD-CWE-Other	CVE-1999-1491	2016-10-18 11:04	1996-02-2	Show	GitHub Exploit DB Packet Storm

348525	-	redhat	linux	gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file.	NVD-CWE-Other	CVE-1999-1332	2016-10-18 11:03	1999-12-31	Show	GitHub Exploit DB Packet Storm

348526	-	redhat	linux	automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to b…	NVD-CWE-Other	CVE-1999-1333	2016-10-18 11:03	1999-12-31	Show	GitHub Exploit DB Packet Storm

348527	-	elm_development_group	elm	Multiple buffer overflows in filter command in Elm 2.4 allows attackers to execute arbitrary commands via (1) long From: headers, (2) long Reply-To: headers, or (3) via a long -f (filterfile) command…	NVD-CWE-Other	CVE-1999-1334	2016-10-18 11:03	1999-12-31	Show	GitHub Exploit DB Packet Storm

348528	-	3com	hiperarc	3Com HiPer Access Router Card (HiperARC) 4.0 through 4.2.29 allows remote attackers to cause a denial of service (reboot) via a flood of IAC packets to the telnet port.	NVD-CWE-Other	CVE-1999-1336	2016-10-18 11:03	1999-08-12	Show	GitHub Exploit DB Packet Storm

348529	-	midnight_commander	midnight_commander	FTP client in Midnight Commander (mc) before 4.5.11 stores usernames and passwords for visited sites in plaintext in the world-readable history file, which allows other local users to gain privileges.	NVD-CWE-Other	CVE-1999-1337	2016-10-18 11:03	1999-08-1	Show	GitHub Exploit DB Packet Storm

348530	-	delegate	delegate	Delegate proxy 5.9.3 and earlier creates files and directories in the DGROOT with world-writable permissions.	NVD-CWE-Other	CVE-1999-1338	2016-10-18 11:03	1999-07-21	Show	GitHub Exploit DB Packet Storm