Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4961	7.8	重要 Local	libsixel project	libsixel	Hayaki Saito (saitoha)のlibsixelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33023	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4962	7.5	重要 Network	Julian Gruber	brace-expansion	Julian Gruber (juliangruber)のbrace-expansionにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-33750	2026-04-24 11:37	2026-03-27	Show	GitHub Exploit DB Packet Storm

4963	8.1	重要 Network	Pavel Shklovsky (pab1it0)	Azure Data Explorer MCP Server	Pavel Shklovsky (pab1it0)のAzure Data Explorer MCP Serverにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-33980	2026-04-24 11:37	2026-03-27	Show	GitHub Exploit DB Packet Storm

4964	6.1	警告 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34614	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4965	10	緊急 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-34615	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4966	8.7	重要 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34617	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

4967	7.5	重要 Network	Nhost	Nhost/auth	NhostのNhost/authにおける複数の脆弱性	CWE-200 CWE-598	CVE-2026-34969	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

4968	9.8	緊急 Network	Aperi'Solve	Aperi'Solve	Aperi'SolveにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-34977	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

4969	8.8	重要 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35050	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

4970	7.2	重要 Network	Sanjay Sharma (sanjay1313)	Visitor-Management-System	Sanjay Sharma (sanjay1313)のVisitor-Management-Systemにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-37748	2026-04-24 11:37	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350141	-	ikonboard.com	ikonboard	Directory traversal vulnerability in Search.cgi in Ikonboard ib219 and earlier allows remote attackers to overwrite files and gain privileges via .. (dot dot) sequences in the amembernamecookie cooki…	NVD-CWE-Other	CVE-2001-0841	2016-10-18 11:12	2001-12-6	Show	GitHub Exploit DB Packet Storm

350142	-	leoboard	lb5000	Directory traversal vulnerability in Search.cgi in Leoboard LB5000 LB5000II 1029 and earlier allows remote attackers to overwrite files and gain privileges via .. (dot dot) sequences in the amemberna…	NVD-CWE-Other	CVE-2001-0842	2016-10-18 11:12	2001-12-6	Show	GitHub Exploit DB Packet Storm

350143	-	seth_leonard	book_of_guests post_it	Vulnerability in (1) Book of guests and (2) Post it! allows remote attackers to execute arbitrary code via shell metacharacters in the email parameter.	NVD-CWE-Other	CVE-2001-0844	2016-10-18 11:12	2001-12-6	Show	GitHub Exploit DB Packet Storm

350144	-	e-zone_media	fuse_talk	join.cfm in e-Zone Media Fuse Talk allows a local user to execute arbitrary SQL code via a semi-colon (;) in a form variable.	NVD-CWE-Other	CVE-2001-0848	2016-10-18 11:12	2001-12-6	Show	GitHub Exploit DB Packet Storm

350145	-	francisco_burzi	php-nuke	PHP-Nuke 5.2 allows remote attackers to copy and delete arbitrary files by calling case.filemanager.php with admin.php as an argument, which sets the $PHP_SELF variable and makes it appear that case.…	NVD-CWE-Other	CVE-2001-0854	2016-10-18 11:12	2001-12-6	Show	GitHub Exploit DB Packet Storm

350146	-	rational_software	clearcase	Buffer overflow in db_loader in ClearCase 4.2 and earlier allows local users to gain root privileges via a long TERM environment variable.	NVD-CWE-Other	CVE-2001-0855	2016-10-18 11:12	2001-12-6	Show	GitHub Exploit DB Packet Storm

350147	-	ibm	4758	Common Cryptographic Architecture (CCA) in IBM 4758 allows an attacker with physical access to the system and Combine_Key_Parts permissions, to steal DES and 3DES keys by using a brute force attack t…	NVD-CWE-Other	CVE-2001-0856	2016-10-18 11:12	2001-12-6	Show	GitHub Exploit DB Packet Storm

350148	-	caldera	unixware openunix	Buffer overflow in pppattach and other linked PPP utilities in Caldera Open Unix 8.0 and UnixWare 7.1.0 and 7.1.1 allows local users to gain privileges.	NVD-CWE-Other	CVE-2001-0858	2016-10-18 11:12	2001-12-6	Show	GitHub Exploit DB Packet Storm

350149	-	opera_software	opera_web_browser	Opera 6.0 and earlier allows remote attackers to access sensitive information such as cookies and links for other domains via Javascript that uses setTimeout to (1) access data after a new window to …	NVD-CWE-Other	CVE-2001-0898	2016-10-18 11:12	2001-11-15	Show	GitHub Exploit DB Packet Storm

350150	-	trend_micro	virus_buster_2001	Buffer overflow in Trend Micro Virus Buster 2001 8.02 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long "From" header.	NVD-CWE-Other	CVE-2001-0410	2016-10-18 11:11	2001-06-18	Show	GitHub Exploit DB Packet Storm