Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2901	7.3	重要 Local	libsixel project	libsixel	Hayaki Saito (saitoha)のlibsixelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33021	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

2902	7.8	重要 Local	libsixel project	libsixel	Hayaki Saito (saitoha)のlibsixelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33023	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

2903	7.5	重要 Network	Julian Gruber	brace-expansion	Julian Gruber (juliangruber)のbrace-expansionにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-33750	2026-04-24 11:37	2026-03-27	Show	GitHub Exploit DB Packet Storm

2904	8.1	重要 Network	Pavel Shklovsky (pab1it0)	Azure Data Explorer MCP Server	Pavel Shklovsky (pab1it0)のAzure Data Explorer MCP Serverにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-33980	2026-04-24 11:37	2026-03-27	Show	GitHub Exploit DB Packet Storm

2905	6.1	警告 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34614	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

2906	10	緊急 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-34615	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

2907	8.7	重要 Network	アドビシステムズ	Adobe Connect Adobe Connect Desktop Application	アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34617	2026-04-24 11:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

2908	7.5	重要 Network	Nhost	Nhost/auth	NhostのNhost/authにおける複数の脆弱性	CWE-200 CWE-598	CVE-2026-34969	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

2909	9.8	緊急 Network	Aperi'Solve	Aperi'Solve	Aperi'SolveにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-34977	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

2910	8.8	重要 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35050	2026-04-24 11:37	2026-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350471	-	firebirdsql mozilla	firebird mozilla thunderbird	Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of files on a user's hard drive by obscuring a file upload control and tricking th…	NVD-CWE-Other	CVE-2004-1449	2008-09-6 05:41	2004-12-31	Show	GitHub Exploit DB Packet Storm

350472	-	mozilla	mozilla	Unknown vulnerability in LiveConnect in Mozilla 1.7 beta allows remote attackers to read arbitrary files in known locations.	NVD-CWE-Other	CVE-2004-1450	2008-09-6 05:41	2004-12-31	Show	GitHub Exploit DB Packet Storm

350473	-	mozilla	mozilla	Mozilla before 1.6 does not display the entire URL in the status bar when a link contains %00, which could allow remote attackers to trick users into clicking on unknown or untrusted sites and facili…	NVD-CWE-Other	CVE-2004-1451	2008-09-6 05:41	2004-12-31	Show	GitHub Exploit DB Packet Storm

350474	-	linux	linux_kernel	Unspecified vulnerability in the ptrace MIPS assembly code in Linux kernel 2.4 before 2.4.17 allows local users to gain privileges via unknown vectors.	NVD-CWE-Other	CVE-2004-0997	2008-09-6 05:40	2004-12-31	Show	GitHub Exploit DB Packet Storm

350475	-	linux	linux_kernel	This vulnerability is addressed in the following product release: Linux, Linux kernel, 2.4.17	NVD-CWE-Other	CVE-2004-0997	2008-09-6 05:40	2004-12-31	Show	GitHub Exploit DB Packet Storm

350476	-	sco	openserver unixware	The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a…	NVD-CWE-Other	CVE-2004-1039	2008-09-6 05:40	2005-01-11	Show	GitHub Exploit DB Packet Storm

350477	-	citrix	metaframe_client program_neighborhood_agent	Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and MetaFrame Presentation Server client for WinCE before 8.33 allows remote servers to create arbitrary shortcuts on the client via…	NVD-CWE-Other	CVE-2004-1077	2008-09-6 05:40	2004-04-26	Show	GitHub Exploit DB Packet Storm

350478	-	citrix	metaframe_client program_neighborhood_agent	Stack-based buffer overflow in the client for Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and Citrix MetaFrame Presentation Server client for WinCE before 8.33 allows remote at…	NVD-CWE-Other	CVE-2004-1078	2008-09-6 05:40	2004-04-26	Show	GitHub Exploit DB Packet Storm

350479	-	netscape	navigator	Netscape 7.x to 7.2, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a d…	NVD-CWE-Other	CVE-2004-1160	2008-09-6 05:40	2005-01-10	Show	GitHub Exploit DB Packet Storm

350480	-	gfi	mailessentials mailsecurity	A bug in the HTML parser in a certain Microsoft HTML library, as used in various third party products, may allow remote attackers to cause a denial of service via certain strings, as reported in GFI …	NVD-CWE-Other	CVE-2004-1312	2008-09-6 05:40	2005-01-3	Show	GitHub Exploit DB Packet Storm