Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4441	7.8	重要 Local	libsixel project	libsixel	Hayaki Saito (saitoha)のlibsixelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33023	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4442	7.5	重要 Network	Julian Gruber	brace-expansion	Julian Gruber (juliangruber)のbrace-expansionにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-33750	2026-04-24 11:37	2026-03-27	Show	GitHub Exploit DB Packet Storm

4443	8.1	重要 Network	Pavel Shklovsky (pab1it0)	Azure Data Explorer MCP Server	Pavel Shklovsky (pab1it0)のAzure Data Explorer MCP Serverにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-33980	2026-04-24 11:37	2026-03-27	Show	GitHub Exploit DB Packet Storm

4444	6.1	警告 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34614	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4445	10	緊急 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-34615	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4446	8.7	重要 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34617	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4447	7.5	重要 Network	Nhost	Nhost/auth	NhostのNhost/authにおける複数の脆弱性	CWE-200 CWE-598	CVE-2026-34969	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

4448	9.8	緊急 Network	Aperi'Solve	Aperi'Solve	Aperi'SolveにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-34977	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

4449	8.8	重要 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35050	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

4450	7.2	重要 Network	Sanjay Sharma (sanjay1313)	Visitor-Management-System	Sanjay Sharma (sanjay1313)のVisitor-Management-Systemにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-37748	2026-04-24 11:37	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
352541	-	mozilla	bonsai	Unknown vulnerability in bonsai Mozilla CVS query tool allows remote attackers to execute arbitrary commands as the www-data user.	NVD-CWE-Other	CVE-2003-0152	2008-09-6 05:33	2003-04-2	Show	GitHub Exploit DB Packet Storm

352542	-	mozilla	bonsai	bonsai Mozilla CVS query tool allows remote attackers to gain access to the parameters page without authentication.	NVD-CWE-Other	CVE-2003-0155	2008-09-6 05:33	2003-04-2	Show	GitHub Exploit DB Packet Storm

352543	-	mutt	mutt	Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and earlier, and Balsa 1.2.4 and earlier, allow a remote malicious IMAP server to cause a denial of service (crash) and pos…	NVD-CWE-Other	CVE-2003-0167	2008-09-6 05:33	2003-04-2	Show	GitHub Exploit DB Packet Storm

352544	-	sgi	irix	The Name Service Daemon (nsd), when running on an NIS master on SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, allows remote attackers to cause a denial of service (crash) via a UDP p…	NVD-CWE-Other	CVE-2003-0176	2008-09-6 05:33	2003-08-18	Show	GitHub Exploit DB Packet Storm

352545	-	sgi	irix	SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, does not follow "-" entries in the /etc/group file, which may cause subsequent group membership entries to be processed inadvertently.	NVD-CWE-Other	CVE-2003-0177	2008-09-6 05:33	2003-08-18	Show	GitHub Exploit DB Packet Storm

352546	-	redhat	tcpdump linux	tcpdump does not properly drop privileges to the pcap user when starting up.	NVD-CWE-Other	CVE-2003-0194	2008-09-6 05:33	2003-06-9	Show	GitHub Exploit DB Packet Storm

352547	-	debian	mime-support	run-mailcap in mime-support 3.22 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.	NVD-CWE-Other	CVE-2003-0214	2008-09-6 05:33	2003-05-12	Show	GitHub Exploit DB Packet Storm

352548	-	frontrange	goldmine	FrontRange GoldMine mail agent 5.70 and 6.00 before 30503 directly sends HTML to the default browser without setting its security zone or otherwise labeling it untrusted, which allows remote attacker…	NVD-CWE-Other	CVE-2003-0241	2008-09-6 05:33	2003-06-9	Show	GitHub Exploit DB Packet Storm

352549	-	adobe	acrobat	Adobe Acrobat 5 does not properly validate JavaScript in PDF files, which allows remote attackers to write arbitrary files into the Plug-ins folder that spread to other PDF documents, as demonstrated…	NVD-CWE-Other	CVE-2003-0284	2008-09-6 05:33	2003-06-16	Show	GitHub Exploit DB Packet Storm

352550	-	neosoft	neobook	The NBActiveX.ocx ActiveX control in NeoBook 4 allows remote attackers to install and execute arbitrary programs.	NVD-CWE-Other	CVE-2002-2352	2008-09-6 05:33	2002-12-31	Show	GitHub Exploit DB Packet Storm