Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
571 9.8 緊急
Network 		OPPO ColorOS Assistant OPPOのColorOS Assistantにおける複数の脆弱性 CWE-22
CWE-23
CVE-2026-22070 2026-05-7 11:31 2026-04-30 Show GitHub Exploit DB Packet Storm
572 8.8 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42364 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
573 7.5 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における観測された状態からの推測に関する脆弱性 CWE-341
観測された状態からの推測 		CVE-2026-42365 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
574 6.1 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42366 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
575 6.5 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-42367 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
576 9.9 緊急
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における不適切な権限設定に関する脆弱性 CWE-266
不適切な権限設定 		CVE-2026-42368 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
577 9.8 緊急
Network 		GeoVision GV-VMS Firmware GeoVisionのGV-VMS Firmwareにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-42370 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
578 9.8 緊急
Network 		Bitwarden Bitwarden Command-line Interface BitwardenのBitwarden Command-line Interfaceにおける複数の脆弱性 CWE-78
CWE-94
CVE-2026-42994 2026-05-7 11:31 2026-05-1 Show GitHub Exploit DB Packet Storm
579 9.3 緊急
Network 		GeoVision GV-IP Device Utility GeoVisionのGV-IP Device Utilityにおける隠蔽によるセキュリティへの依存に関する脆弱性 CWE-656
隠蔽によるセキュリティへの依存 		CVE-2026-7161 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
580 6.1 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-7371 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346891 - recipants recipants Multiple cross-site scripting (XSS) vulnerabilities in ReciPants 1.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) user id, (2) recipe id, (3) category id, and (4) other… NVD-CWE-Other
CVE-2004-2568 2011-03-8 11:19 2004-12-31 Show GitHub Exploit DB Packet Storm
346892 - phpgroupware phpgroupware Cross-site scripting (XSS) vulnerability in index.php in phpGroupWare 0.9.14.005 and earlier allows remote attackers to inject arbitrary web script or HTML via the date parameter in a calendar.uicale… NVD-CWE-Other
CVE-2004-2574 2011-03-8 11:19 2004-12-31 Show GitHub Exploit DB Packet Storm
346893 - phpgroupware phpgroupware phpGroupWare 0.9.14.005 and earlier allow remote attackers to obtain sensitive information via a direct request to (1) hook_admin.inc.php, (2) hook_home.inc.php, (3) class.holidaycalc.inc.php, and (4… NVD-CWE-Other
CVE-2004-2575 2011-03-8 11:19 2004-12-31 Show GitHub Exploit DB Packet Storm
346894 - gnu emacs Emacs 21.2.1 does not prompt or warn the user before executing Lisp code in the local variables section of a text file, which allows user-assisted attackers to execute arbitrary commands, as demonstr… NVD-CWE-Other
CVE-2003-1232 2011-03-8 11:13 2003-12-31 Show GitHub Exploit DB Packet Storm
346895 - apple afp_server Unknown vulnerability in Apple File Service (AFP Server) for Mac OS X Server, when sharing files on a UFS or re-shared NFS volume, allows remote attackers to overwrite arbitrary files. NVD-CWE-Other
CVE-2003-0379 2011-03-8 11:12 2003-07-24 Show GitHub Exploit DB Packet Storm
346896 - apple darwin_streaming_server Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to cause a denial of service (crash) via a .. (dot dot) sequence followed by an MS-DOS device name (e.g. AUX) in a requ… NVD-CWE-Other
CVE-2003-0502 2011-03-8 11:12 2003-08-27 Show GitHub Exploit DB Packet Storm
346897 - compaq tru64 Buffer overflow in libc in Compaq Tru64 4.0F, 5.0, 5.1 and 5.1A allows attackers to execute arbitrary code via long (1) LANG and (2) LOCPATH environment variables. NVD-CWE-Other
CVE-2002-2002 2011-03-8 11:11 2002-12-31 Show GitHub Exploit DB Packet Storm
346898 - sun java_web_start Unknown vulnerability in Java web start 1.0.1_01, 1.0.1, 1.0 and 1.0.1.01 (HP-UX 11.x only) allows attackers to gain access to restricted resources via unknown attack vectors. NVD-CWE-Other
CVE-2002-2005 2011-03-8 11:11 2002-12-31 Show GitHub Exploit DB Packet Storm
346899 - citrix access_essentials
metaframe_presentation_server
presentation_server 		Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute … CWE-352
 Origin Validation Error 		CVE-2002-2426 2011-03-8 11:11 2002-12-31 Show GitHub Exploit DB Packet Storm
346900 - mailreader.com
debian 		mailreader.com
debian_linux 		Directory traversal vulnerability in nph-mr.cgi in Mailreader.com 2.3.20 through 2.3.31 allows remote attackers to view arbitrary files via .. (dot dot) sequences and a null byte (%00) in the configL… NVD-CWE-Other
CVE-2002-1581 2011-03-8 11:10 2004-12-6 Show GitHub Exploit DB Packet Storm