Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1131 8.1 重要
Network 		WWBN AVideo WWBNのAVideoにおける過度に許容されるクロスドメインホワイトリストに関する脆弱性 CWE-942
過度に許容されるクロスドメインホワイトリスト 		CVE-2026-41056 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
1132 7.5 重要
Network 		libexpat project libexpat libexpat projectのlibexpatにおけるエントロピー不足に関する脆弱性 CWE-331
エントロピー不足 		CVE-2026-41080 2026-04-27 11:20 2026-04-16 Show GitHub Exploit DB Packet Storm
1133 7.5 重要
Network 		free5gc free5gc
pcf 		free5GCのfree5GC等の複数製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-41135 2026-04-27 11:20 2026-04-22 Show GitHub Exploit DB Packet Storm
1134 5.3 警告
Network 		free5gc free5gc
amf 		free5GCのamf等の複数製品における予期せぬ動作に関する脆弱性  CWE-440
予期せぬ動作 		CVE-2026-41136 2026-04-27 11:20 2026-04-22 Show GitHub Exploit DB Packet Storm
1135 8.1 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-4922 2026-04-27 11:20 2026-04-22 Show GitHub Exploit DB Packet Storm
1136 6.1 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-5262 2026-04-27 11:20 2026-04-22 Show GitHub Exploit DB Packet Storm
1137 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-5377 2026-04-27 11:20 2026-04-22 Show GitHub Exploit DB Packet Storm
1138 8.1 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるパスの等価性の不適切な解決に関する脆弱性 CWE-41
パスの等価性の不適切な解決 		CVE-2026-5816 2026-04-27 11:19 2026-04-22 Show GitHub Exploit DB Packet Storm
1139 9.1 緊急
Network 		Rapid7 velociraptor Rapid7のvelociraptorにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-6290 2026-04-27 11:19 2026-04-15 Show GitHub Exploit DB Packet Storm
1140 5.3 警告
Network 		fastify fastify-static fastifyのfastify-staticにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-6410 2026-04-27 11:19 2026-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347411 - mediawiki mediawiki Incomplete blacklist vulnerability in MediaWiki before 1.4.11 does not properly remove certain CSS inputs (HTML inline style attributes) that are processed as active content by Internet Explorer, whi… NVD-CWE-Other
CVE-2005-3167 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
347412 - microsoft windows_2000 The SECEDIT command on Microsoft Windows 2000 before Update Rollup 1 for SP4, when using a security template to set Access Control Lists (ACLs) on folders, does not apply ACLs on folders that are lis… NVD-CWE-Other
CVE-2005-3168 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
347413 - microsoft windows_2000 Microsoft Windows 2000 before Update Rollup 1 for SP4, when the "audit directory service access" policy is enabled, does not record a 565 event message for File Delete Child operations on an Active D… NVD-CWE-Other
CVE-2005-3169 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
347414 - microsoft windows_2000 Microsoft Windows 2000 before Update Rollup 1 for SP4 records Event ID 1704 to indicate that Group Policy security settings were successfully updated, even when the processing fails such as when Ntus… NVD-CWE-Other
CVE-2005-3171 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
347415 - microsoft windows_2000 The WideCharToMultiByte function in Microsoft Windows 2000 before Update Rollup 1 for SP4 does not properly convert strings with Japanese composite characters in the last character, which could preve… NVD-CWE-Other
CVE-2005-3172 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
347416 - microsoft windows_2000 Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct… NVD-CWE-Other
CVE-2005-3173 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
347417 - microsoft windows_2000 Microsoft Windows 2000 before Update Rollup 1 for SP4 allows users to log on to the domain, even when their password has expired, if the fully qualified domain name (FQDN) is 8 characters long. NVD-CWE-Other
CVE-2005-3174 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
347418 - microsoft windows_2000 Microsoft Windows 2000 before Update Rollup 1 for SP4 allows a local administrator to unlock a computer even if it has been locked by a domain administrator, which allows the local administrator to a… NVD-CWE-Other
CVE-2005-3175 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
347419 - microsoft windows_2000 Microsoft Windows 2000 before Update Rollup 1 for SP4 does not record the IP address of a Windows Terminal Services client in a security log event if the client connects successfully, which could mak… NVD-CWE-Other
CVE-2005-3176 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm
347420 - microsoft windows_2000
windows_2003_server
windows_xp 		CHKDSK in Microsoft Windows 2000 before Update Rollup 1 for SP4, Windows XP, and Windows Server 2003, when running in fix mode, does not properly handle security descriptors if the master file table … NVD-CWE-Other
CVE-2005-3177 2008-09-6 05:53 2005-10-6 Show GitHub Exploit DB Packet Storm