NVD脆弱性情報トップ

検索メニュー表示

ベンダー名
プロダクト・サービス名
タイトル
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
公表日降順
更新日降順
表示数

NVD（National Vulnerability Database）で管理されている脆弱性の一覧を検索することが出来ます。
JVN（Japan Vulnerability Note）より先に脆弱性情報が更新される事が多いため、JVNに未記載の脆弱性が更新されている場合があります。

JVN（Japan Vulnerability Note）に関連した脆弱性がある場合は詳細画面で情報を表示します。

CWEで検索する場合は、CWE概要を参照して、CWE番号を確認してください。

CRITICAL
HIGH
MEDIUM
LOW

更新日:2026年4月22日4:00

No	CVSS	レベル攻撃区分	ベンダー名	プロダクト名	タイトル	CWE	CVE	更新日	公表日	影響表示	Exploit PoC 検索
501	7.2	HIGH ネットワーク	-	-	Chamilo LMS is an open-source learning management system. In version 2.0-RC.2, the file public/main/inc/ajax/install.ajax.php is accessible without authentication on fully installed instances because…	CWE-306 CWE-918 重要な機能に対する認証の欠如解説サーバサイドリクエストフォージェリ	CVE-2026-33715	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

502	4.6	MEDIUM ネットワーク	-	-	Docmost is open-source collaborative wiki and documentation software. Versions prior to 0.70.0 are vulnerable to a stored cross-site scripting (XSS) attack due to improper handling of MIME type spoof…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-33193	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

503	5.4	MEDIUM ネットワーク	-	-	Docmost is open-source collaborative wiki and documentation software. In versions prior to 0.71.0, improper neutralization of attachment URLs in Docmost allows a low-privileged authenticated user to …	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34212	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

504	5.4	MEDIUM ネットワーク	-	-	Docmost is open-source collaborative wiki and documentation software. Starting in version 0.3.0 and prior to version 0.71.0, improper authorization in Docmost allows a low-privileged authenticated us…	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-34213	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

505	-	-	-	-	Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose a deprecated .NET Remoting TCP channel that allows remote unauthenticated attackers to leak NTLMv2 machine-account hash…	CWE-441 フィルタリング回避	CVE-2026-39906	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

506	8.6	HIGH ネットワーク	-	-	Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, the PENS (Package Exchange Notification Services) plugin endpoint at public/plugin/Pens/pens.php is accessib…	CWE-306 CWE-918 重要な機能に対する認証の欠如解説サーバサイドリクエストフォージェリ	CVE-2026-34160	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

507	-	-	-	-	Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, a Stored Cross-Site Scripting (XSS) vulnerability exists in the social post attachment upload functionality,…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34161	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

508	7.0	HIGH ローカル	-	-	libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a Use-After-Free vulnerability via the load_gif() function in fromgif.c, where a single…	CWE-416 解放済みメモリの使用	CVE-2026-33018	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

509	7.1	HIGH ローカル	-	-	libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain an integer overflow leading to an out-of-bounds heap read in the --crop option handling…	CWE-125 CWE-190 境界外読み取り整数オーバーフローまたはラップアラウンド	CVE-2026-33019	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

510	7.1	HIGH ローカル	-	-	libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain an integer overflow which leads to a heap buffer overflow via sixel_frame_convert_to_rg…	CWE-122 CWE-190 ヒープオーバーフロー整数オーバーフローまたはラップアラウンド	CVE-2026-33020	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

511	-	-	-	-	Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose an unauthenticated WCF SOAP endpoint on TCP port 1208 that accepts unsanitized file paths in the ReadLicense action's L…	CWE-73 ファイル名やパス名の外部制御	CVE-2026-39907	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

512	6.5	MEDIUM ネットワーク	-	-	Jellyfin is an open source self hosted media server. Versions prior to 10.11.7 contain a denial of service vulnerability in the SyncPlay group creation endpoint (POST /SyncPlay/New), where an authent…	CWE-400 リソースの枯渇	CVE-2026-35034	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

513	6.5	MEDIUM ネットワーク	-	-	Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, the notebook module contains an Insecure Direct Object Reference (IDOR) vulnerability that allows any authen…	CWE-285 CWE-639 不適切な認可ユーザ制御の鍵による認証回避	CVE-2026-34370	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

514	7.1	HIGH ネットワーク	-	-	Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, the /api/course_rel_users endpoint is vulnerable to Insecure Direct Object Reference (IDOR), allowing an aut…	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-34602	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

515	8.8	HIGH ネットワーク	-	-	Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, an OS Command Injection vulnerability exists in the main/inc/ajax/gradebook.ajax.php endpoint within the exp…	CWE-78 OSコマンド・インジェクション	CVE-2026-35196	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

516	8.8	HIGH ネットワーク	-	-	Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, an insecure direct object modification vulnerability in the PUT /api/users/{id} endpoint allows any authenti…	CWE-269 CWE-863 不適切な権限管理不正な認証	CVE-2026-40291	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

517	7.3	HIGH ローカル	-	-	libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a use-after-free vulnerability in sixel_encoder_encode_bytes() because sixel_frame_init…	CWE-416 解放済みメモリの使用	CVE-2026-33021	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

518	6.0	MEDIUM ローカル	-	-	SpiceDB is an open source database system for creating and managing security-critical application permissions. In versions 1.49.0 through 1.51.0, when SpiceDB starts with log level info, the startup …	CWE-532 ログファイルからの情報漏えい	CVE-2026-40091	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

519	8.2	HIGH ネットワーク	-	-	XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Versions 1.8-rc-1, 17.0.0-rc-1 and 17.5.0-rc-1 and prior include a resource exhaustion vulnera…	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-40104	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

520	-	-	-	-	XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Versions 10.4-rc-1, through 16.10.15, 17.0.0-rc-1, through 17.4.7 and 17.5.0-rc-1 through 17.…	CWE-80 クロスサイトスクリプティング (Basic XSS)	CVE-2026-40105	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

521	-	-	-	-	Improper input validation, Improper verification of cryptographic signature vulnerability in XQUIC Project XQUIC xquic on Linux (QUIC protocol implementation, packet processing module, STREAM frame h…	CWE-20 CWE-347 不適切な入力確認デジタル署名の不適切な検証	CVE-2026-6328	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

522	7.8	HIGH ローカル	-	-	libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. In versions 1.8.7 and prior, when built with the --with-gdk-pixbuf2 option, a use-after-free vulnerability exists in loa…	CWE-416 解放済みメモリの使用	CVE-2026-33023	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

523	-	-	-	-	Podman is a tool for managing OCI containers and pods. Versions 4.8.0 through 5.8.1 contain a command injection vulnerability in the HyperV machine backend in pkg/machine/hyperv/stubber.go, where the…	CWE-78 OSコマンド・インジェクション	CVE-2026-33414	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

524	3.5	LOW 物理	-	-	OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. A regression introduced in 7.11.0 prevents OAuth2 Proxy from clearing the session cookie when rendering the sign-i…	CWE-384 CWE-613 セッションの固定化不適切なセッション期限	CVE-2026-34454	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

525	9.1	CRITICAL ネットワーク	-	-	OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions prior to 7.15.2 contain a configuration-dependent authentication bypass in deployments where OAuth2 Proxy…	CWE-290 スプーフィングによる認証回避	CVE-2026-34457	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

526	9.9	CRITICAL ネットワーク	-	-	Jellyfin is an open source self hosted media server. Versions prior to 10.11.7 contain a vulnerability chain in the subtitle upload endpoint (POST /Videos/{itemId}/Subtitles), where the Format field …	CWE-20 CWE-22 CWE-187 不適切な入力確認パス・トラバーサル部分的な文字列の比較	CVE-2026-35031	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

527	5.4	MEDIUM ネットワーク	-	-	Stored cross-site scripting vulnerability exists in GROWI v7.4.6 and earlier. If this vulnerability is exploited, an arbitrary script may be executed in a user's web browser.	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-26291	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

528	7.5	HIGH ネットワーク	-	-	Deadwood in MaraDNS 3.5.0036 allows attackers to exhaust connection slots via a zone whose authoritative nameserver address cannot be resolved.	CWE-670 常に不適切な制御フローの実装	CVE-2026-40719	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

529	7.5	HIGH ネットワーク	-	-	Apache::API::Password versions through v0.5.2 for Perl can generate insecure random values for salts. The _make_salt and _make_salt_bcrypt methods will attept to load Crypt::URandom and then Bytes::…	CWE-338 暗号における脆弱な PRNG の使用	CVE-2026-5088	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

530	-	-	-	-	Jellyfin is an open source self hosted media server. Versions prior to 10.11.7 contain a vulnerability chain in the LiveTV M3U tuner endpoint (POST /LiveTv/TunerHosts), where the tuner URL is not val…	CWE-73 CWE-918 ファイル名やパス名の外部制御サーバサイドリクエストフォージェリ	CVE-2026-35032	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

531	-	-	-	-	Jellyfin is an open source self hosted media server. Versions prior to 10.11.7 contain an unauthenticated arbitrary file read vulnerability via ffmpeg argument injection through the StreamOptions que…	CWE-88 CWE-862 引数の挿入または変更認証の欠如	CVE-2026-35033	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

532	8.0	HIGH ネットワーク	-	-	nanobot is a personal AI assistant. Versions prior to 0.1.5 contain a Cross-Site WebSocket Hijacking (CSWSH) vulnerability exists in the bridge's WebSocket server in bridge/src/server.ts, resulting f…	CWE-1385 WebSocket でのオリジン検証の欠如	CVE-2026-35589	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

533	7.2	HIGH ネットワーク	-	-	BoidCMS is an open-source, PHP-based flat-file CMS for building simple websites and blogs, using JSON as its database. Versions prior to 2.1.3 are vulnerable to a critical Local File Inclusion (LFI) …	CWE-98 PHP リモートファイルインクルージョン	CVE-2026-39387	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

534	9.6	CRITICAL ネットワーク	-	-	NuGet Gallery is a package repository that powers nuget.org. A security vulnerability exists in the NuGetGallery backend job’s handling of .nuspec files within NuGet packages. An attacker can supply …	CWE-20 CWE-22 不適切な入力確認パス・トラバーサル	CVE-2026-39399	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

535	8.1	HIGH ネットワーク	-	-	An access control vulnerability was discovered in the Threat Intelligence functionality due to a specific access restriction not being properly enforced for users with view-only privileges. An authen…	CWE-863 不正な認証	CVE-2025-40897	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

536	8.9	HIGH ネットワーク	-	-	A Stored Cross-Site Scripting vulnerability was discovered in the Assets and Nodes functionality due to improper validation of an input parameter. An authenticated user with custom fields privileges …	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-40899	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

537	9.9	CRITICAL ネットワーク	-	-	OpenRemote is an open-source IoT platform. Versions 1.21.0 and below contain two interrelated expression injection vulnerabilities in the rules engine that allow arbitrary code execution on the serve…	CWE-94 CWE-917 コード・インジェクション言語構文の表現に使用される特殊な要素の不適切な無効化	CVE-2026-39842	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

538	8.3	HIGH ネットワーク	-	-	mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Versions 3.4.0 and prior contain an argument injection vulnerability in the port_forward tool in src/tools/…	CWE-88 引数の挿入または変更	CVE-2026-39884	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

539	6.9	MEDIUM ネットワーク	-	-	Serendipity is a PHP-powered weblog engine. In versions 2.6-beta2 and below, the serendipity_setCookie() function in include/functions_config.inc.php uses $_SERVER['HTTP_HOST'] without validation as…	CWE-565 検証および完全性チェックを行っていない Cookie への依存	CVE-2026-39963	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

540	7.2	HIGH ネットワーク	-	-	Serendipity is a PHP-powered weblog engine. In versions 2.6-beta2 and below, the email sending functionality in include/functions.inc.php inserts $_SERVER['HTTP_HOST'] directly into the Message-ID SM…	CWE-113 HTTP レスポンスの分割	CVE-2026-39971	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

541	-	-	-	-	Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcprov on all (core modules). This vulnerability is associated with program files G3413CTRBl…	CWE-327 不完全、または危険な暗号アルゴリズムの使用	CVE-2025-14813	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

542	-	-	-	-	Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcprov on all (prov modules). This vulnerability is asso…	CWE-90 LDAP インジェクション	CVE-2026-0636	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

543	-	-	-	-	Impact@fastify/express v4.0.4 and earlier fails to normalize URLs before passing them to Express middleware when Fastify router normalization options are enabled. This allows complete bypass of path-…	CWE-436 解釈の競合	CVE-2026-33808	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

544	-	-	-	-	Allocation of resources without limits or throttling vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcpg on all (pg modules).This issue affects BC-JAVA: before 1.84. Unbounded PGP AEAD ch…	CWE-400 CWE-770 リソースの枯渇制限またはスロットリング無しのリソースの割り当て	CVE-2026-3505	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

545	-	-	-	-	: Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcpkix on all (pkix modules). PKIX draft CompositeVerifier accepts empty signature seque…	CWE-327 不完全、または危険な暗号アルゴリズムの使用	CVE-2026-5588	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

546	5.5	MEDIUM ローカル	-	-	Sigstore Timestamp Authority is a service for issuing RFC 3161 timestamps. Versions 2.0.5 and below contain an authorization bypass vulnerability in the VerifyTimestampResponse function. VerifyTimest…	CWE-295 不正な証明書検証	CVE-2026-39984	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

547	7.1	HIGH ネットワーク	-	-	Zarf is an Airgap Native Packager Manager for Kubernetes. Versions 0.23.0 through 0.74.1 contain an arbitrary file write vulnerability in the zarf package inspect sbom and zarf package inspect docume…	CWE-22 パス・トラバーサル	CVE-2026-40090	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

548	-	-	-	-	immich is a high performance self-hosted photo and video management solution. Versions prior to 2.7.3 contain an open redirect vulnerability in the shared album functionality, where the album name is…	CWE-79 CWE-601 クロスサイト・スクリプティング（XSS）オープンリダイレクト	CVE-2026-40096	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

549	9.1	CRITICAL ネットワーク	-	-	@fastify/express v4.0.4 and earlier contains a path handling bug in the onRegister function that causes middleware paths to be doubled when inherited by child plugins. When a child plugin is register…	CWE-436 解釈の競合	CVE-2026-33807	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm

550	-	-	-	-	Covert timing channel vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA core on all (core modules). Non-constant time comparisons risk private key leakage in FrodoKEM. This issue affects BC…	CWE-385 秘密のタイミングチャネル	CVE-2026-5598	2026-04-18 00:38	2026-04-15	表示	GitHub Exploit DB Packet Storm