Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1741	7.5	重要 Network	Linux Foundation	tekton pipelines	Linux Foundationのtekton pipelinesにおける引数の挿入または変更に関する脆弱性	CWE-88 引数の挿入または変更	CVE-2026-40938	2026-04-30 12:27	2026-04-21	Show	GitHub Exploit DB Packet Storm

1742	6.5	警告 Network	Apache Software Foundation	ActiveMQ Web Apache ActiveMQ	Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性	CWE-79 CWE-79 CWE-915	CVE-2026-41043	2026-04-30 12:27	2026-04-24	Show	GitHub Exploit DB Packet Storm

1743	8.8	重要 Network	Apache Software Foundation	Apache ActiveMQ ActiveMQ Broker	Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性	CWE-20 CWE-94	CVE-2026-41044	2026-04-30 12:27	2026-04-24	Show	GitHub Exploit DB Packet Storm

1744	8.2	重要 Network	oauth2_proxy project	oauth2_proxy	oauth2_proxy projectのoauth2_proxyにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2026-41059	2026-04-30 12:27	2026-04-22	Show	GitHub Exploit DB Packet Storm

1745	7.5	重要 Network	lxml	lxml	lxmlにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-41066	2026-04-30 12:27	2026-04-24	Show	GitHub Exploit DB Packet Storm

1746	7.7	重要 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41068	2026-04-30 12:27	2026-04-24	Show	GitHub Exploit DB Packet Storm

1747	8.8	重要 Network	pyLoad	pyLoad	pyLoadにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-41133	2026-04-30 12:27	2026-04-22	Show	GitHub Exploit DB Packet Storm

1748	8.2	重要 Network	Minio Inc.	Minio	Minio Inc.のMinioにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2026-41145	2026-04-30 12:27	2026-04-22	Show	GitHub Exploit DB Packet Storm

1749	9.8	緊急 Network	JetBrains	Junie	JetBrainsのJunieにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-41153	2026-04-30 12:27	2026-04-17	Show	GitHub Exploit DB Packet Storm

1750	8.1	重要 Network	Statamic	Statamic	Statamicにおけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性	CWE-470 クラスまたはコードを選択する外部から制御された入力の使用	CVE-2026-41175	2026-04-30 12:27	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346681	-	sgi	irix	(1) ipxchk and (2) ipxlink in SGI OS2 IRIX 6.3 does not properly clear the IFS environmental variable before executing system calls, which allows local users to execute arbitrary commands.	NVD-CWE-Other	CVE-1999-1501	2016-10-18 11:05	1998-04-8	Show	GitHub Exploit DB Packet Storm

346682	-	id_software	quake	Buffer overflows in Quake 1.9 client allows remote malicious servers to execute arbitrary commands via long (1) precache paths, (2) server name, (3) server address, or (4) argument to the map console…	NVD-CWE-Other	CVE-1999-1502	2016-10-18 11:05	1998-04-8	Show	GitHub Exploit DB Packet Storm

346683	-	id_software	quakeworld	Buffer overflow in QuakeWorld 2.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary commands via a long initial connect packet.	NVD-CWE-Other	CVE-1999-1505	2016-10-18 11:05	1998-04-7	Show	GitHub Exploit DB Packet Storm

346684	-	tek	phaser_network_printer_740 phaser_network_printer_750 phaser_network_printer_750dp phaser_network_printer_840 phaser_network_printer_930	Web server in Tektronix PhaserLink Printer 840.0 and earlier allows a remote attacker to gain administrator access by directly calling undocumented URLs such as ncl_items.html and ncl_subjects.html.	NVD-CWE-Other	CVE-1999-1508	2016-10-18 11:05	1999-11-16	Show	GitHub Exploit DB Packet Storm

346685	-	etype	eserv	Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. (dot dot) in a URL.	NVD-CWE-Other	CVE-1999-1509	2016-10-18 11:05	1999-11-4	Show	GitHub Exploit DB Packet Storm

346686	-	3com	superstack_ii_hub	Management information base (MIB) for a 3Com SuperStack II hub running software version 2.10 contains an object identifier (.1.3.6.1.4.1.43.10.4.2) that is accessible by a read-only community string,…	NVD-CWE-Other	CVE-1999-1513	2016-10-18 11:05	1999-08-30	Show	GitHub Exploit DB Packet Storm

346687	-	tenfour	tfs_gateway_smtp	A buffer overflow in TenFour TFS Gateway SMTP mail server 3.2 allows an attacker to crash the mail server and possibly execute arbitrary code by offering more than 128 bytes in a MAIL FROM string.	NVD-CWE-Other	CVE-1999-1516	2016-10-18 11:05	1999-09-2	Show	GitHub Exploit DB Packet Storm

346688	-	freebsd	freebsd	runtar in the Amanda backup system used in various UNIX operating systems executes tar with root privileges, which allows a user to overwrite or read arbitrary files by providing the target files to …	NVD-CWE-Other	CVE-1999-1517	2016-10-18 11:05	1999-11-1	Show	GitHub Exploit DB Packet Storm

346689	-	roxen	roxen_web_server	Vulnerability in htmlparse.pike in Roxen Web Server 1.3.11 and earlier, possibly related to recursive parsing and referer tags in RXML.	NVD-CWE-Other	CVE-1999-1522	2016-10-18 11:05	1999-10-7	Show	GitHub Exploit DB Packet Storm

346690	-	flowpoint	flowpoint_dsl_router	FlowPoint DSL router firmware versions prior to 3.0.8 allows a remote attacker to exploit a password recovery feature from the network and conduct brute force password guessing, instead of limiting t…	NVD-CWE-Other	CVE-1999-1524	2016-10-18 11:05	1999-08-7	Show	GitHub Exploit DB Packet Storm