Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224011 4.4 警告 Xen プロジェクト - Xen の libxl toolstack ライブラリの libxl_list_cpupool 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4371 2013-10-21 19:12 2013-10-10 Show GitHub Exploit DB Packet Storm
224012 4.6 警告 Xen プロジェクト - Xen の xc_vcpu_getaffinity 関数の ocaml バインディングにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-4370 2013-10-21 19:11 2013-10-10 Show GitHub Exploit DB Packet Storm
224013 1.9 注意 Xen プロジェクト - Xen の libxlu ライブラリの xlu_vif_parse_rate 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2013-4369 2013-10-21 19:10 2013-10-10 Show GitHub Exploit DB Packet Storm
224014 5 警告 Apache Software Foundation - Apache Sling の org.apache.sling.servlets.post.bundle におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-2254 2013-10-21 19:06 2013-06-7 Show GitHub Exploit DB Packet Storm
224015 2.1 注意 Novell
Clutter Project		 - Clutter の x11/clutter-device-manager-xi2.c における以前の gnome-shell セッションにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2190 2013-10-21 19:01 2013-06-11 Show GitHub Exploit DB Packet Storm
224016 6 警告 Trivantis Corporation Inc. - Coursemill Learning Management System における任意の JSP 操作を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3601 2013-10-21 18:43 2013-08-30 Show GitHub Exploit DB Packet Storm
224017 6.8 警告 SearchBlox Software - SearchBlox の admin/uploadImage.html における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-3590 2013-10-21 18:39 2013-08-23 Show GitHub Exploit DB Packet Storm
224018 4.3 警告 IBM - IBM Storwize V7000 Unified におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5376 2013-10-21 17:16 2013-10-15 Show GitHub Exploit DB Packet Storm
224019 4.3 警告 IBM - IBM Rational Focal Point におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3025 2013-10-21 17:15 2013-10-17 Show GitHub Exploit DB Packet Storm
224020 5.4 警告 IBM - IBM Storwize V7000 Unified における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0500 2013-10-21 17:14 2013-10-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1381 7.5 HIGH
Network 		- - CryptX versions before 0.088_001 for Perl have a stack buffer overflow in four AEAD decrypt_verify helpers. The gcm_decrypt_verify, ccm_decrypt_verify, chacha20poly1305_decrypt_verify and eax_decryp… CWE-121
Stack-based Buffer Overflow 		CVE-2026-41565 2026-05-30 01:16 2026-05-29 Show GitHub Exploit DB Packet Storm
1382 8.8 HIGH
Network 		- - @pensar/apex <= 0.0.58 is vulnerable to OS command injection via the smart_enumerate tool. The createSmartEnumerateTool() function in src/core/agent/tools.ts constructs a shell command by concatenati… CWE-78
OS Command  		CVE-2026-36044 2026-05-30 01:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1383 7.3 HIGH
Network 		- - An arbitrary file upload vulnerability in the pages/admin.uploadmapimg.php component of SourceBans Material Admin v1.1.6 allows attackers to execute arbitrary code via uploading a crafted image file. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-30761 2026-05-30 01:16 2026-05-29 Show GitHub Exploit DB Packet Storm
1384 7.3 HIGH
Network 		- - An issue in SourceBans Material Admin before v.1.1.6 (3ecd95e) allows attackers to manipulate arbitrary user data in the web app via a crafted XAJAX call. CWE-20
 Improper Input Validation  		CVE-2026-30760 2026-05-30 01:16 2026-05-29 Show GitHub Exploit DB Packet Storm
1385 6.3 MEDIUM
Network 		- - A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetRoute of the file /goform/formSetRoute. The manipulation of the argument ip/mask/gateway leads to comma… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-10060 2026-05-30 01:16 2026-05-29 Show GitHub Exploit DB Packet Storm
1386 8.3 HIGH
Network 		- - Out of bounds read in Headless in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML p… CWE-125
Out-of-bounds Read 		CVE-2026-10017 2026-05-30 01:16 2026-05-29 Show GitHub Exploit DB Packet Storm
1387 5.5 MEDIUM
Local 		- - IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaught exception when parsing zip header with malformed DOS date. _dosToUnixTime() decodes the local-file-header last-modification da… CWE-248
 Uncaught Exception 		CVE-2025-15649 2026-05-30 01:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1388 7.1 HIGH
Network 		- - LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to LangSmith SDK Python 0.8.0 and JS/TS 0.6.0, the LangSmith SDK's prompt pull methods (pull_prompt / pull_promp… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-45134 2026-05-30 01:12 2026-05-28 Show GitHub Exploit DB Packet Storm
1389 5.4 MEDIUM
Network 		- - AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.59, POST /api/blocks/{block_id}/execute endpoint executes block… CWE-770
CWE-841
 Allocation of Resources Without Limits or Throttling
 Improper Enforcement of Behavioral Workflow 		CVE-2026-45023 2026-05-30 01:07 2026-05-29 Show GitHub Exploit DB Packet Storm
1390 7.5 HIGH
Network 		google chrome Uninitialized Use in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox vi… CWE-457
 Use of Uninitialized Variable 		CVE-2026-9963 2026-05-30 01:06 2026-05-29 Show GitHub Exploit DB Packet Storm