Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2751 7.5 重要
Network 		Vexa AI, Inc. Vexa Vexa AI, Inc.のVexaにおける複数の脆弱性 CWE-306
CWE-862
CVE-2026-25058 2026-04-24 11:37 2026-04-20 Show GitHub Exploit DB Packet Storm
2752 5.8 警告
Network 		Vexa AI, Inc. Vexa Vexa AI, Inc.のVexaにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-25883 2026-04-24 11:37 2026-04-20 Show GitHub Exploit DB Packet Storm
2753 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27243 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
2754 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27245 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
2755 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27246 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
2756 10 緊急
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-27303 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
2757 4.3 警告
Network 		Hytale Modding HytaleModding Wiki Hytale ModdingのHytaleModding Wikiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-32736 2026-04-24 11:37 2026-03-18 Show GitHub Exploit DB Packet Storm
2758 7 重要
Local 		libsixel project libsixel Hayaki Saito (saitoha)のlibsixelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-33018 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
2759 7.1 重要
Local 		libsixel project libsixel Hayaki Saito (saitoha)のlibsixelにおける複数の脆弱性 CWE-125
CWE-190
CVE-2026-33019 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
2760 7.1 重要
Local 		libsixel project libsixel Hayaki Saito (saitoha)のlibsixelにおける複数の脆弱性 CWE-122
CWE-190
CVE-2026-33020 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314751 - ariadne ariadne_cms NOTE: this issue has been disputed by the vendor. PHP remote code injection vulnerability in loader.php for Ariadne CMS 2.4 allows remote attackers to execute arbitrary PHP code by modifying the ari… NVD-CWE-Other
CVE-2005-1181 2024-08-8 07:15 2005-05-2 Show GitHub Exploit DB Packet Storm
314752 - calendarscript calendarscript NOTE: this issue has been disputed by the vendor. Cross-site scripting (XSS) vulnerability in the login command in calendar.pl in CalendarScript 3.21 allows remote attackers to inject arbitrary web … NVD-CWE-Other
CVE-2005-1146 2024-08-8 07:15 2005-04-12 Show GitHub Exploit DB Packet Storm
314753 8.8 HIGH
Network 		google chrome Use after free in Loader in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CWE-416
 Use After Free 		CVE-2024-6989 2024-08-8 07:10 2024-08-7 Show GitHub Exploit DB Packet Storm
314754 8.8 HIGH
Network 		google chrome Use after free in Dawn in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CWE-416
 Use After Free 		CVE-2024-6991 2024-08-8 07:09 2024-08-7 Show GitHub Exploit DB Packet Storm
314755 3.1 LOW
Network 		google chrome Race in Frames in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium secur… CWE-362
Race Condition 		CVE-2024-6996 2024-08-8 07:06 2024-08-7 Show GitHub Exploit DB Packet Storm
314756 - - - Insufficient checks when processing graphics shared memory could have led to memory corruption. This could be leveraged by an attacker to perform a sandbox escape. This vulnerability affects Firefox … - CVE-2024-7519 2024-08-8 06:35 2024-08-6 Show GitHub Exploit DB Packet Storm
314757 4.3 MEDIUM
Network 		google chrome Inappropriate implementation in HTML in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML… NVD-CWE-noinfo
CVE-2024-7001 2024-08-8 06:33 2024-08-7 Show GitHub Exploit DB Packet Storm
314758 7.5 HIGH
Network 		zscaler client_connector Anti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector <4.2.0.190 with anti-tampering enabled. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2024-23456 2024-08-8 06:30 2024-08-7 Show GitHub Exploit DB Packet Storm
314759 7.8 HIGH
Local 		zscaler client_connector The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS <… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2024-23460 2024-08-8 06:29 2024-08-7 Show GitHub Exploit DB Packet Storm
314760 7.8 HIGH
Local 		zscaler client_connector While copying individual autoupdater log files, reparse point check was missing which could result into crafted attacks, potentially leading to a local privilege escalation. This issue affects Zscale… CWE-346
 Origin Validation Error 		CVE-2024-23458 2024-08-8 06:29 2024-08-7 Show GitHub Exploit DB Packet Storm