Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4051	5.5	警告 Local	jqlang	jq	jqlangのjqにおける複数の脆弱性	CWE-190 CWE-787	CVE-2026-41257	2026-05-15 11:01	2026-05-11	Show	GitHub Exploit DB Packet Storm

4052	5.4	警告 Network	Langfuse GmbH	Langfuse	Langfuse GmbHのLangfuseにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41487	2026-05-15 11:00	2026-05-8	Show	GitHub Exploit DB Packet Storm

4053	9.8	緊急 Network	Nhost	Nhost/auth	NhostのNhost/authにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-41574	2026-05-15 11:00	2026-05-8	Show	GitHub Exploit DB Packet Storm

4054	7.5	重要 Network	Web Technologies	Change Detection	Web TechnologiesのChange DetectionにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-41895	2026-05-15 11:00	2026-05-12	Show	GitHub Exploit DB Packet Storm

4055	9.8	緊急 Network	レッドハット GNU Project	Red Hat OpenShift Container Platform Red Hat Hardened Images GnuTLS Red Hat Enterprise Linux	GNU Project等の複数ベンダの製品におけるNull バイト相互作用エラー (Poison Null Byte) の脆弱性	CWE-626 Null バイト相互作用エラー (Poison Null Byte)	CVE-2026-42010	2026-05-15 11:00	2026-05-7	Show	GitHub Exploit DB Packet Storm

4056	9.6	緊急 Network	langflow	langflow	langflowにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-42048	2026-05-15 11:00	2026-05-12	Show	GitHub Exploit DB Packet Storm

4057	5.5	警告 Local	ImageMagick	ImageMagick	ImageMagickにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-42050	2026-05-15 11:00	2026-05-11	Show	GitHub Exploit DB Packet Storm

4058	8.1	重要 Network		-	OpenC3のOpenC3 COSMOSにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2026-42088	2026-05-15 11:00	2026-05-4	Show	GitHub Exploit DB Packet Storm

4059	8.8	重要 Network	litellm	litellm	LiteLLMにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性	CWE-1336 テンプレートエンジンで使用される特殊な要素の不適切な無効化	CVE-2026-42203	2026-05-15 11:00	2026-05-8	Show	GitHub Exploit DB Packet Storm

4060	9.1	緊急 Network	axios project	axios	axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-42264	2026-05-15 11:00	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346171	-	easy_software_products gnome kde pdftohtml tetex xpdf debian gentoo redhat suse ubuntu	cups gpdf koffice kpdf pdftohtml tetex xpdf debian_linux linux kde enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linu…	Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly exe…	NVD-CWE-Other	CVE-2004-0888	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346172	-	rob_flynn gentoo slackware ubuntu	gaim linux slackware_linux ubuntu_linux	Buffer overflow in the MSN protocol handler for gaim 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an "unexpected sequ…	NVD-CWE-Other	CVE-2004-0891	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346173	-	mozilla conectiva redhat suse	mozilla thunderbird linux enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linux	Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to ex…	NVD-CWE-Other	CVE-2004-0903	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346174	-	mozilla netscape conectiva redhat	firefox mozilla thunderbird navigator linux enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation	Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to execute arbitrary code via wide…	NVD-CWE-Other	CVE-2004-0904	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346175	-	mozilla netscape conectiva redhat suse	firefox mozilla navigator linux enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linux	Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincin…	NVD-CWE-Other	CVE-2004-0905	2017-10-11 10:29	2004-09-14	Show	GitHub Exploit DB Packet Storm

346176	-	mozilla	mozilla thunderbird	The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, whic…	NVD-CWE-Other	CVE-2004-0906	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346177	-	mozilla	mozilla thunderbird	Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows untrusted Javascript code to read and write to the clipboard, and possibly obtain sensitive informa…	NVD-CWE-Other	CVE-2004-0908	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346178	-	lesstif x.org xfree86_project gentoo redhat suse	lesstif x11r6 linux fedora_core suse_linux	Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4…	NVD-CWE-Other	CVE-2004-0914	2017-10-11 10:29	2005-01-10	Show	GitHub Exploit DB Packet Storm

346179	-	openpkg squid gentoo redhat trustix ubuntu	openpkg squid linux fedora_core secure_linux ubuntu_linux	The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets w…	CWE-399 Resource Management Errors	CVE-2004-0918	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346180	-	easy_software_products apple	cups mac_os_x mac_os_x_server	CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.	NVD-CWE-Other	CVE-2004-0923	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm