Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1831	8.1	重要 Network	jellyfin	jellyfin	jellyfinにおける複数の脆弱性	CWE-73 CWE-918	CVE-2026-35032	2026-04-24 11:44	2026-04-14	Show	GitHub Exploit DB Packet Storm

1832	9.1	緊急 Network	jellyfin	jellyfin	jellyfinにおける複数の脆弱性	CWE-862 CWE-88	CVE-2026-35033	2026-04-24 11:43	2026-04-14	Show	GitHub Exploit DB Packet Storm

1833	9	緊急 Network	Ci4-cms-erp	Ci4MS	Ci4-cms-erpのCi4MSにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-35035	2026-04-24 11:43	2026-04-6	Show	GitHub Exploit DB Packet Storm

1834	7.2	重要 Network	Ech0	Ech0	Ech0におけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-35037	2026-04-24 11:43	2026-04-6	Show	GitHub Exploit DB Packet Storm

1835	9.1	緊急 Network	nearform	fast-jwt	nearformのfast-jwtにおける複数の脆弱性	CWE-1289 CWE-345 CWE-706	CVE-2026-35039	2026-04-24 11:43	2026-04-6	Show	GitHub Exploit DB Packet Storm

1836	5.3	警告 Network	WWBN	AVideo	WWBNのAVideoにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-35179	2026-04-24 11:43	2026-04-6	Show	GitHub Exploit DB Packet Storm

1837	8.8	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35196	2026-04-24 11:43	2026-04-14	Show	GitHub Exploit DB Packet Storm

1838	7.5	重要 Local	オラクル	Oracle VM VirtualBox	オラクルのOracle VM VirtualBoxにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35230	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

1839	4.9	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35234	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

1840	4.9	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35235	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347161	-	matthew_redman	allmanage	The administrative password for the Allmanage web site administration software is stored in plaintext in a file which could be accessed by remote attackers.	NVD-CWE-Other	CVE-2000-0434	2008-09-11 04:04	2000-05-13	Show	GitHub Exploit DB Packet Storm

347162	-	matthew_redman	allmanage	The allmanageup.pl file upload CGI script in the Allmanage Website administration software 2.6 can be called directly by remote attackers, which allows them to modify user accounts or web pages.	NVD-CWE-Other	CVE-2000-0435	2008-09-11 04:04	2000-05-13	Show	GitHub Exploit DB Packet Storm

347163	-	metaproducts	offline_explorer	MetaProducts Offline Explorer 1.2 and earlier allows remote attackers to access arbitrary files via a .. (dot dot) attack.	NVD-CWE-Other	CVE-2000-0436	2008-09-11 04:04	2000-05-19	Show	GitHub Exploit DB Packet Storm

347164	-	network_associates	gauntlet_firewall webshield webshield_e-ppliance	Buffer overflow in the CyberPatrol daemon "cyberdaemon" used in gauntlet and WebShield allows remote attackers to cause a denial of service or execute arbitrary commands.	NVD-CWE-Other	CVE-2000-0437	2008-09-11 04:04	2000-05-18	Show	GitHub Exploit DB Packet Storm

347165	-	caldera slackware suse turbolinux	openlinux slackware_linux suse_linux turbolinux	Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.	NVD-CWE-Other	CVE-2000-0438	2008-09-11 04:04	2000-05-22	Show	GitHub Exploit DB Packet Storm

347166	-	freebsd netbsd	freebsd netbsd	NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option.	NVD-CWE-Other	CVE-2000-0440	2008-09-11 04:04	2000-05-1	Show	GitHub Exploit DB Packet Storm

347167	-	ibm	aix	Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.	NVD-CWE-Other	CVE-2000-0441	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm

347168	-	qualcomm sun	qpopper cobalt_raq_2 cobalt_raq_3i	Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command.	NVD-CWE-Other	CVE-2000-0442	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm

347169	-	hp	jetadmin	The web interface server in HP Web JetAdmin 5.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.	NVD-CWE-Other	CVE-2000-0443	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm

347170	-	hp	jetadmin	HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000.	NVD-CWE-Other	CVE-2000-0444	2008-09-11 04:04	2000-05-24	Show	GitHub Exploit DB Packet Storm