Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
301	9.8	緊急 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-41293	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

302	5	警告 Local	マイクロソフト	Visual Studio Code	マイクロソフトのVisual Studio Codeにおける複数の脆弱性 New	CWE-200 CWE-59 CWE-79 CWE-79	CVE-2026-41610	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

303	3.3	低 Local	マイクロソフト	Visual Studio Code	Visual Studio Code のリモートでコードが実行される脆弱性 New	CWE-77 CWE-79 CWE-80	CVE-2026-41611	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

304	8.8	重要 Network	マイクロソフト	Visual Studio Code	マイクロソフトのVisual Studio Codeにおける複数の脆弱性 New	CWE-384 CWE-384 CWE-78	CVE-2026-41613	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

305	7.4	重要 Network	マイクロソフト	Microsoft Authenticator	Microsoft Authenticator の情報漏えいの脆弱性 New	CWE-200 情報漏えい	CVE-2026-41615	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

306	6.5	警告 Network	Distribution	Distribution	Distributionにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-41888	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

307	7.5	重要 Network	Signal K	Signal K Server	Signal KのSignal K Serverにおける過度な認証試行の不適切な制限に関する脆弱性 New	CWE-307 過度な認証試行の不適切な制限	CVE-2026-41893	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

308	9.8	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおけるSQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2026-42031	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

309	9.1	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-42032	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

310	4.9	警告 Network	argoproj	Argo Workflows	Argo Project AuthorsのArgo Workflowsにおける認証情報の不十分な保護に関する脆弱性 New	CWE-522 認証情報の不十分な保護	CVE-2026-42295	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346281	-	mambo	mambo_site_server	Multiple cross-site scripting (XSS) vulnerabilities in Mambo Site Server 4.0.11 allow remote attackers to execute arbitrary script on other clients via (1) search.php and (2) the "Your name" field du…	NVD-CWE-Other	CVE-2002-1662	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346282	-	oracle	e-business_suite	Unknown vulnerability in Oracle E-Business Suite 11i.1 through 11i.6 allows remote attackers to execute unauthorized PL/SQL procedures by modifying the Oracle Applications URL.	NVD-CWE-Other	CVE-2002-1666	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346283	-	freebsd	freebsd	The virtual memory management system in FreeBSD 4.5-RELEASE and earlier does not properly check the existence of a VM object during page invalidation, which allows local users to cause a denial of se…	NVD-CWE-Other	CVE-2002-1667	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346284	-	hp	hp-ux hp-ux_series_700 hp-ux_series_800	HP-UX 11.11 and earlier allows local users to cause a denial of service (kernel deadlock), due to a "file system weakness" that is possibly via an mmap() system call and performing an I/O operation u…	NVD-CWE-Other	CVE-2002-1668	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346285	-	freebsd	freebsd	pkg_add in FreeBSD 4.2 through 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation.	NVD-CWE-Other	CVE-2002-1669	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346286	-	webmin	webmin	Webmin 0.92, when installed from an RPM, creates /var/webmin with insecure permissions (world readable), which could allow local users to read the root user's cookie-based authentication credentials …	NVD-CWE-Other	CVE-2002-1672	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346287	-	webmin	webmin	The web interface for Webmin 0.92 does not properly quote or filter script code in files that are displayed to the interface, which allows local users to execute script and possibly steal cookies by …	NVD-CWE-Other	CVE-2002-1673	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346288	-	freebsd	freebsd	procfs on FreeBSD before 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to.	NVD-CWE-Other	CVE-2002-1674	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346289	-	unreal	unrealircd	Format string vulnerability in the Cio_PrintF function of cio_main.c in Unreal IRCd 3.1.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format s…	NVD-CWE-Other	CVE-2002-1675	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346290	-	bindview	netinventory netrc	BindView NetInventory 1.0, when used with NetRC 1.0, allows local users to read sensitive information (passwords) by deleting the HOSTCFG._NI file and forcing an audit, which rewrites the HOSTCFG._NI…	NVD-CWE-Other	CVE-2002-1676	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm