Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2111	6.5	警告 Network	Pinchtab	PinchTab	PinchtabのPinchTabにおける複数の脆弱性	CWE-290 CWE-770	CVE-2026-33621	2026-04-24 11:30	2026-03-26	Show	GitHub Exploit DB Packet Storm

2112	7.5	重要 Network	InternLM	LMDeploy	InternLMのLMDeployにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-33626	2026-04-24 11:30	2026-04-20	Show	GitHub Exploit DB Packet Storm

2113	6.1	警告 Network	Project Jupyter	JupyterHub	Project JupyterのJupyterHubにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-33709	2026-04-24 11:30	2026-04-3	Show	GitHub Exploit DB Packet Storm

2114	7.2	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33714	2026-04-24 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

2115	7.2	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおける複数の脆弱性	CWE-306 CWE-918	CVE-2026-33715	2026-04-24 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

2116	9.1	緊急 Network	Open JS Foundation	fastify/middie	Open JS Foundationの@fastify/middieにおける解釈の競合に関する脆弱性	CWE-436 解釈の競合	CVE-2026-33804	2026-04-24 11:30	2026-04-16	Show	GitHub Exploit DB Packet Storm

2117	4.3	警告 Network	LangGenius, Inc.	Dify	LangGenius, Inc.のDifyにおける複数の脆弱性	CWE-284 CWE-863	CVE-2026-34082	2026-04-24 11:30	2026-04-20	Show	GitHub Exploit DB Packet Storm

2118	8.6	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおける複数の脆弱性	CWE-306 CWE-918	CVE-2026-34160	2026-04-24 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

2119	5.4	警告 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-34161	2026-04-24 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

2120	9.1	緊急 Network	Canonical	LXD	CanonicalのLXDにおける不完全なブラックリストに関する脆弱性	CWE-184 不完全なブラックリスト	CVE-2026-34177	2026-04-24 11:30	2026-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347331	-	sco	unixware	The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.	NVD-CWE-Other	CVE-1999-0825	2008-09-9 21:36	1999-12-3	Show	GitHub Exploit DB Packet Storm

347332	-	freebsd	freebsd	Buffer overflow in FreeBSD angband allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-0826	2008-09-9 21:36	1999-12-1	Show	GitHub Exploit DB Packet Storm

347333	-	sco	unixware	UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.	NVD-CWE-Other	CVE-1999-0828	2008-09-9 21:36	1999-12-2	Show	GitHub Exploit DB Packet Storm

347334	-	cobalt sun debian suse	qube cobalt_raq cobalt_raq_2 cobalt_raq_3i debian_linux suse_linux	Denial of service in Linux syslogd via a large number of connections.	NVD-CWE-Other	CVE-1999-0831	2008-09-9 21:36	1999-11-19	Show	GitHub Exploit DB Packet Storm

347335	-	rsa	rsaref	Buffer overflow in RSAREF2 via the encryption and decryption functions in the RSAREF library.	NVD-CWE-Other	CVE-1999-0834	2008-09-9 21:36	1999-12-1	Show	GitHub Exploit DB Packet Storm

347336	-	deerfield	serv-u_ftp-server	Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command.	NVD-CWE-Other	CVE-1999-0838	2008-09-9 21:36	1999-12-1	Show	GitHub Exploit DB Packet Storm

347337	-	deerfield	mdaemon	Denial of service in MDaemon WorldClient and WebConfig services via a long URL.	NVD-CWE-Other	CVE-1999-0844	2008-09-9 21:36	1999-11-24	Show	GitHub Exploit DB Packet Storm

347338	-	isc	bind	Denial of service in BIND named via maxdname.	NVD-CWE-Other	CVE-1999-0849	2008-09-9 21:36	1999-11-10	Show	GitHub Exploit DB Packet Storm

347339	-	endymion	mailman_webmail	The default permissions for Endymion MailMan allow local users to read email or modify files.	NVD-CWE-Other	CVE-1999-0850	2008-09-9 21:36	1999-12-2	Show	GitHub Exploit DB Packet Storm

347340	-	ibm	websphere_application_server	IBM WebSphere sets permissions that allow a local user to modify a deinstallation script or its data files stored in /usr/bin.	NVD-CWE-Other	CVE-1999-0852	2008-09-9 21:36	1999-12-2	Show	GitHub Exploit DB Packet Storm