Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249701	10	危険	シスコシステムズ	-	Cisco TelePresence Recording Server および Cisco TelePresence Multipoint Switch における脆弱性	CWE-287 不適切な認証	CVE-2011-0383	2011-11-29 10:27	2011-02-23	Show	GitHub Exploit DB Packet Storm

249702	10	危険	シスコシステムズ	-	Cisco TelePresence Recording Server における任意のコードを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0382	2011-11-29 09:55	2011-02-23	Show	GitHub Exploit DB Packet Storm

249703	10	危険	シスコシステムズ	-	Cisco TelePresence Manager における任意のコードを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0381	2011-11-29 09:55	2011-02-23	Show	GitHub Exploit DB Packet Storm

249704	7.5	危険	シスコシステムズ	-	Cisco TelePresence Manager における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-0380	2011-11-29 09:54	2011-02-23	Show	GitHub Exploit DB Packet Storm

249705	7.9	危険	シスコシステムズ	-	複数の Cisco 製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0379	2011-11-29 09:53	2011-02-23	Show	GitHub Exploit DB Packet Storm

249706	8.3	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスの XML-RPC 実装における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0378	2011-11-29 09:53	2011-02-23	Show	GitHub Exploit DB Packet Storm

249707	7.8	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0377	2011-11-29 09:52	2011-02-23	Show	GitHub Exploit DB Packet Storm

249708	10	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-0376	2011-11-29 09:51	2011-02-23	Show	GitHub Exploit DB Packet Storm

249709	9	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0375	2011-11-29 09:51	2011-02-23	Show	GitHub Exploit DB Packet Storm

249710	9	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0374	2011-11-29 09:50	2011-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
61	-		-	-	An issue was discovered in 6.0 before 6.0.5 and 5.2 before 5.2.14. Response headers do not vary on cookies if a session is not modified, but `SESSION_SAVE_EVERY_REQUEST` is `True`. A remote attacker … New	CWE-539 Use of Persistent Cookies Containing Sensitive Information	CVE-2026-35192	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

62	6.1	MEDIUM Local	-	-	A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the XKB (X Keyboard Extension) modifier map handling. An attacker with access to the X11 server can exploit … New	CWE-805 Buffer Access with Incorrect Length Value	CVE-2026-34002	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

63	6.1	MEDIUM Local	-	-	A flaw was found in the X.Org X server. This out-of-bounds read vulnerability in the XKB geometry processing, specifically within the `CheckSetGeom()` and `XkbAddGeomKeyAlias` functions, allows an at… New	CWE-125 Out-of-bounds Read	CVE-2026-34000	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

64	-		-	-	Allocation of Resources Without Limits or Throttling vulnerability in phoenixframework phoenix allows a denial of service via the long-poll transport's NDJSON body handling. In 'Elixir.Phoenix.Trans… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-32689	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

65	-		-	-	The traceroute diagnostic handler in /bin/httpd_clientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system() call, allowing aut… New	-	CVE-2026-31196	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

66	-		-	-	The ping diagnostic handler in /bin/httpd_clientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system() call, allowing authentic… New	-	CVE-2026-31195	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

67	6.5	MEDIUM Network	-	-	Fiber is a web framework for Go. In github.com/gofiber/fiber/v3 versions through 3.1.0, the default key generator in the cache middleware uses only the request path and does not include the query str… New	CWE-436 Interpretation Conflict	CVE-2026-30246	2026-05-6 01:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

68	5.4	MEDIUM Network	-	-	Traccar is an open source GPS tracking system. In org.traccar:traccar versions starting at 6.11.1 before 6.13.0, the email notification templates insert user-controlled device, geofence, and driver n… New	CWE-79 Cross-site Scripting	CVE-2026-27694	2026-05-6 01:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

69	9.8	CRITICAL Network	-	-	Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file… New	CWE-122 Heap-based Buffer Overflow	CVE-2025-70067	2026-05-6 01:16	2026-05-4	Show	GitHub Exploit DB Packet Storm

70	8.1	HIGH Network	-	-	IKUS Rdiffweb before 2.10.5 has an improper authorization flaw that allows an attacker with any valid or stolen access token to act as other users. The API does not enforce binding between the authen… New	CWE-284 Improper Access Control	CVE-2025-67796	2026-05-6 01:16	2026-05-5	Show	GitHub Exploit DB Packet Storm