Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228131	1.7	注意	サン・マイクロシステムズ	-	Sun Java System Access Manager における権限を取得される脆弱性	-	CVE-2007-3700	2012-12-20 18:33	2007-07-10	Show	GitHub Exploit DB Packet Storm

228132	9.3	危険	シマンテック	-	Symantec 製品の Decomposer コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-3699	2012-12-20 18:33	2007-07-11	Show	GitHub Exploit DB Packet Storm

228133	7.5	危険	tufat	-	FlashBB の phpbb/sendmsg.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3697	2012-12-20 18:33	2007-07-11	Show	GitHub Exploit DB Packet Storm

228134	6.6	警告	winpcap	-	WinPcap の NPF.SYS デバイスドライバにおけるメモリを上書きされる脆弱性	-	CVE-2007-3681	2012-12-20 18:33	2007-07-11	Show	GitHub Exploit DB Packet Storm

228135	7.6	危険	quark	-	Windows 用の QuarkXPress におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-3678	2012-12-20 18:33	2007-07-11	Show	GitHub Exploit DB Packet Storm

228136	6.9	警告	シマンテック	-	Symantec AntiVirus Corporate Edition などに同梱されている Symantec symtdi.sys における権限を取得される脆弱性	-	CVE-2007-3673	2012-12-20 18:33	2007-07-11	Show	GitHub Exploit DB Packet Storm

228137	7.5	危険	シマンテック	-	Symantec Norton Ghost の RemoteCommand.DLL におけるバッファオーバーフローの脆弱性	-	CVE-2007-3666	2012-12-20 18:33	2007-07-10	Show	GitHub Exploit DB Packet Storm

228138	5	警告	シマンテック	-	Symantec Norton Ghost の FileBackup.DLL におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3665	2012-12-20 18:33	2007-07-10	Show	GitHub Exploit DB Packet Storm

228139	7.5	危険	Wafer	-	Webmatic における SQL インジェクションの脆弱性	-	CVE-2007-3648	2012-12-20 18:33	2007-07-10	Show	GitHub Exploit DB Packet Storm

228140	10	危険	ZoneO-soft	-	phpTrafficA の Php/login.inc.php における認証を回避される脆弱性	-	CVE-2007-3647	2012-12-20 18:33	2007-07-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1821	6.5	MEDIUM Network	linuxfoundation	tekton_pipelines	Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. From 1.0.0 to 1.10.0, the Tekton Pipelines git resolver in API mode sends the system-configured Git API toke…	CWE-201 NVD-CWE-noinfo Insertion of Sensitive Information Into Sent Data	CVE-2026-40161	2026-04-25 05:55	2026-04-22	Show	GitHub Exploit DB Packet Storm

1822	7.5	HIGH Network	signalk	signal_k_server	Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.25.0 are vulnerable to an unauthenticated Regular Expression Denial of Service (ReDoS) attack within …	CWE-400 CWE-1333 Uncontrolled Resource Consumption Inefficient Regular Expression Complexity	CVE-2026-39320	2026-04-25 05:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

1823	7.1	HIGH Local	craigjbass	clearancekit	ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. Prior to 5.0.5, ClearanceKit incorrectly treats a process with an empty Team ID and a non-empty Si…	CWE-863 Incorrect Authorization	CVE-2026-40599	2026-04-25 05:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

1824	4.4	MEDIUM Local	craigjbass	clearancekit	ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. Prior to 5.0.6, the opfilter Endpoint Security system extension (bundle ID uk.craigbass.clearancek…	CWE-693 Protection Mechanism Failure	CVE-2026-40604	2026-04-25 05:49	2026-04-22	Show	GitHub Exploit DB Packet Storm

1825	8.8	HIGH Network	goshs	goshs	goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.6, goshs contains an SFTP root escape caused by prefix-based path validation. An authenticated SFTP user can read from and write to file…	CWE-22 Path Traversal	CVE-2026-40876	2026-04-25 05:38	2026-04-22	Show	GitHub Exploit DB Packet Storm

1826	5.5	MEDIUM Local	hkuds	openharness	OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attac…	CWE-863 Incorrect Authorization	CVE-2026-40515	2026-04-25 05:34	2026-04-18	Show	GitHub Exploit DB Packet Storm

1827	6.3	MEDIUM Local	hkuds	openharness	OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the web_fetch and web_search tools that allows attackers to access private and localhost HTTP services by man…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-40516	2026-04-25 05:32	2026-04-18	Show	GitHub Exploit DB Packet Storm

1828	7.5	HIGH Network	firebirdsql	firebird	Firebird is an open-source relational database management system. In versions FB3 of the client library placed incorrect data length values into XSQLDA fields when communicating with FB4 or higher se…	CWE-200 NVD-CWE-noinfo Information Exposure	CVE-2025-65104	2026-04-25 05:27	2026-04-18	Show	GitHub Exploit DB Packet Storm

1829	9.8	CRITICAL Network	samsung	magicinfo_9_server	Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1050 allows attackers to write arbitrary file as system authority.	CWE-22 CWE-434 Path Traversal Unrestricted Upload of File with Dangerous Type	CVE-2024-7399	2026-04-25 05:23	2024-08-12	Show	GitHub Exploit DB Packet Storm

1830	9.8	CRITICAL Network	samsung	magicinfo_9_server	La limitación inadecuada de un nombre de ruta a una vulnerabilidad de directorio restringido en la versión Samsung MagicINFO 9 Server anterior a la 21.1050 permite a los atacantes escribir archivos a…	CWE-22 CWE-434 Path Traversal Unrestricted Upload of File with Dangerous Type	CVE-2024-7399	2026-04-25 05:23	2024-08-12	Show	GitHub Exploit DB Packet Storm