Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191741 5.3 警告
Network 		シスコシステムズ - Cisco Remote Expert Manager ソフトウェアにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2017-6642 2017-06-20 15:36 2017-05-17 Show GitHub Exploit DB Packet Storm
191742 5.5 警告
Local 		QPDF project - QPDF の libqpdf.a におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-9210 2017-06-20 14:42 2017-05-21 Show GitHub Exploit DB Packet Storm
191743 5.5 警告
Local 		QPDF project - QPDF の libqpdf.a におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-9208 2017-06-20 14:42 2017-05-21 Show GitHub Exploit DB Packet Storm
191744 7.5 重要
Network 		Apache Software Foundation - Apache Hive における証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2016-3083 2017-06-20 13:57 2016-03-10 Show GitHub Exploit DB Packet Storm
191745 4 警告
Network 		PHOENIX CONTACT Software - Phoenix Contact GmbH mGuard ファームウェアにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2017-7937 2017-06-20 09:52 2017-05-11 Show GitHub Exploit DB Packet Storm
191746 7.5 重要
Network 		PHOENIX CONTACT Software - Phoenix Contact GmbH mGuard ファームウェアにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2017-7935 2017-06-20 09:51 2017-05-11 Show GitHub Exploit DB Packet Storm
191747 7.5 重要
Network 		xmlsoft.org - libxml2 におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-9048 2017-06-19 18:14 2017-05-15 Show GitHub Exploit DB Packet Storm
191748 7.5 重要
Network 		xmlsoft.org - libxml2 におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-9047 2017-06-19 18:14 2017-05-15 Show GitHub Exploit DB Packet Storm
191749 9.8 緊急
Network 		Ipswitch, Inc. - Ipswitch MOVEit Transfer における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-6195 2017-06-19 18:13 2017-05-20 Show GitHub Exploit DB Packet Storm
191750 6.1 警告
Network 		CalendarXP - CalendarXP FlatCalendarXP および PopCalendarXP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-9072 2017-06-19 18:10 2017-05-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
31 5.3 MEDIUM
Network 		torproject tor Tor before 0.4.9.7 can attempt or accept BEGIN_DIR via conflux legs, aka TROVE-2026-008. New CWE-669
 Incorrect Resource Transfer Between Spheres 		CVE-2026-44599 2026-05-8 02:31 2026-05-7 Show GitHub Exploit DB Packet Storm
32 5.3 MEDIUM
Network 		torproject tor Tor before 0.4.9.7 mishandles accounting of the conflux out-of-order queue during the clearing of a queue, aka TROVE-2026-010. New CWE-696
 Incorrect Behavior Order 		CVE-2026-44600 2026-05-8 02:26 2026-05-7 Show GitHub Exploit DB Packet Storm
33 9.1 CRITICAL
Network 		torproject tor Tor before 0.4.9.7 has an out-of-bounds read by one byte via a malformed BEGIN cell, aka TROVE-2026-007. New CWE-193
 Off-by-one Error 		CVE-2026-44603 2026-05-8 02:24 2026-05-7 Show GitHub Exploit DB Packet Storm
34 8.8 HIGH
Local 		- - NanoClaw version 1.2.0 and prior contains a host/container filesystem boundary vulnerability in outbound attachment handling and outbox cleanup that allows a compromised or prompt-injected container … New CWE-22
Path Traversal 		CVE-2026-7875 2026-05-8 02:15 2026-05-7 Show GitHub Exploit DB Packet Storm
35 7.5 HIGH
Network 		- - Gazelle versions through 0.49 for Perl allows HTTP Request Smuggling via Improper Header Precedence. Gazelle incorrectly prioritizes "Content-Length" over "Transfer-Encoding: chunked" when both head… New CWE-444
HTTP Request Smuggling 		CVE-2026-40562 2026-05-8 02:15 2026-05-6 Show GitHub Exploit DB Packet Storm
36 5.3 MEDIUM
Network 		kazuho starlet Starlet versions through 0.31 for Perl allows HTTP Request Smuggling via Improper Header Precedence. Starlet incorrectly prioritizes "Content-Length" over "Transfer-Encoding: chunked" when both head… Update CWE-444
HTTP Request Smuggling 		CVE-2026-40561 2026-05-8 02:15 2026-05-3 Show GitHub Exploit DB Packet Storm
37 6.3 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.4.22 contains a time-of-check/time-of-use race condition in the OpenShell filesystem bridge that allows attackers to read files outside the intended mount root. Attackers can exp… New CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-44113 2026-05-8 02:08 2026-05-7 Show GitHub Exploit DB Packet Storm
38 7.8 HIGH
Local 		openclaw openclaw OpenClaw before 2026.4.20 fails to properly reserve the OPENCLAW_ runtime-control environment namespace in workspace dotenv files, allowing attackers to override critical runtime variables. Malicious… New CWE-184
 Incomplete Blacklist 		CVE-2026-44114 2026-05-8 02:07 2026-05-7 Show GitHub Exploit DB Packet Storm
39 8.8 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.22 contains an exec allowlist analysis vulnerability allowing shell expansion hiding in unquoted heredoc bodies. Attackers can bypass allowlist validation by embedding shell ex… New CWE-184
 Incomplete Blacklist 		CVE-2026-44115 2026-05-8 02:07 2026-05-7 Show GitHub Exploit DB Packet Storm
40 8.6 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.22 contains a server-side request forgery vulnerability in the Zalo plugin's sendPhoto function that fails to validate outbound photo URLs through the SSRF guard. Attackers can… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-44116 2026-05-8 02:07 2026-05-7 Show GitHub Exploit DB Packet Storm