Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1041 7.5 重要
Network 		Apache Software Foundation ActiveMQ Broker
Apache ActiveMQ 		Apache Software FoundationのApache ActiveMQ等の複数製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-39304 2026-05-7 12:05 2026-04-10 Show GitHub Exploit DB Packet Storm
1042 6.5 警告
Network 		OpenBao OpenBao OpenBaoにおける複数の脆弱性 CWE-400
CWE-674
CWE-770
CVE-2026-39396 2026-05-7 12:05 2026-04-21 Show GitHub Exploit DB Packet Storm
1043 7.8 重要
Local 		FreeBSD FreeBSD FreeBSDにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-39457 2026-05-7 12:05 2026-04-30 Show GitHub Exploit DB Packet Storm
1044 10 緊急
Network 		traefik traefik traefikにおける複数の脆弱性 CWE-290
CWE-306
CVE-2026-39858 2026-05-7 12:05 2026-04-30 Show GitHub Exploit DB Packet Storm
1045 7.2 重要
Network 		Progress Software Corporation ECS Connection Manager
loadmaster
Connection Manager for ObjectScale 		Progress Software CorporationのConnection Manager for ObjectScale等の複数製品におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-4048 2026-05-7 12:05 2026-04-20 Show GitHub Exploit DB Packet Storm
1046 7.8 重要
Local 		radare radare2 radareのradare2におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-40499 2026-05-7 12:05 2026-04-15 Show GitHub Exploit DB Packet Storm
1047 7.3 重要
Network 		Apache Software Foundation HttpClient Apache Software FoundationのHttpClientにおける認証の重要なステップの欠如に関する脆弱性 CWE-304
認証の重要なステップの欠如 		CVE-2026-40542 2026-05-7 12:05 2026-04-22 Show GitHub Exploit DB Packet Storm
1048 9.1 緊急
Network 		goshs goshs goshsにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-40903 2026-05-7 12:05 2026-04-21 Show GitHub Exploit DB Packet Storm
1049 8.2 重要
Network 		traefik traefik traefikにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-40912 2026-05-7 12:05 2026-04-30 Show GitHub Exploit DB Packet Storm
1050 5.9 警告
Network 		Apache Software Foundation Apache Airflow Apache Software FoundationのApache Airflowにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-41016 2026-05-7 12:05 2026-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346631 - shadow_op_software dragon_server Dragon FTP server allows remote attackers to cause a denial of service via a long USER command. NVD-CWE-Other
CVE-2000-0479 2016-10-18 11:07 2000-06-16 Show GitHub Exploit DB Packet Storm
346632 - shadow_op_software dragon_server Dragon telnet server allows remote attackers to cause a denial of service via a long username. NVD-CWE-Other
CVE-2000-0480 2016-10-18 11:07 2000-06-16 Show GitHub Exploit DB Packet Storm
346633 - sambar sambar_server Buffer overflows in the finger and whois demonstration scripts in Sambar Server 4.3 allow remote attackers to execute arbitrary commands via a long hostname. NVD-CWE-Other
CVE-2000-0509 2016-10-18 11:07 2000-06-1 Show GitHub Exploit DB Packet Storm
346634 - stelian pop_dump Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name. NVD-CWE-Other
CVE-2000-0520 2016-10-18 11:07 2000-06-7 Show GitHub Exploit DB Packet Storm
346635 - cgi_script_center subscribe_me_lite Subscribe Me LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the subscr… NVD-CWE-Other
CVE-2000-0688 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
346636 - xpdf xpdf xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL's, which allows an attacker to execute arbitrary commands via a URL that contains shell metacharacters. NVD-CWE-Other
CVE-2000-0727 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
346637 - xpdf xpdf xpdf PDF viewer client earlier than 0.91 allows local users to overwrite arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2000-0728 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
346638 - eeye_digital_security
spynet 		iris
capturenet 		eEye IRIS 1.01 beta allows remote attackers to cause a denial of service via a large number of UDP connections. NVD-CWE-Other
CVE-2000-0734 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
346639 - oreilly website_pro O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.e… NVD-CWE-Other
CVE-2000-0769 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
346640 - ipswitch imail The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack. NVD-CWE-Other
CVE-2000-0780 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm