Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2581	5.3	警告 Network	The Go Project	tiff	The Go Projectのtiffにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-33809	2026-04-23 10:12	2026-03-25	Show	GitHub Exploit DB Packet Storm

2582	5.5	警告 Local	jqlang	jq	jqlangのjqにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-33947	2026-04-23 10:12	2026-04-13	Show	GitHub Exploit DB Packet Storm

2583	5.3	警告 Network	jqlang	jq	jqlangのjqにおける複数の脆弱性	CWE-170 CWE-20	CVE-2026-33948	2026-04-23 10:12	2026-04-14	Show	GitHub Exploit DB Packet Storm

2584	4.3	警告 Network	openwebui	open webui	openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-34225	2026-04-23 10:12	2026-04-14	Show	GitHub Exploit DB Packet Storm

2585	7.7	重要 Network	Weblate	Weblate	Weblateにおける複数の脆弱性	CWE-200 CWE-22 CWE-59	CVE-2026-34242	2026-04-23 10:12	2026-04-15	Show	GitHub Exploit DB Packet Storm

2586	5	警告 Network	Weblate	Weblate	Weblateにおける複数の脆弱性	CWE-200 CWE-918	CVE-2026-34244	2026-04-23 10:12	2026-04-15	Show	GitHub Exploit DB Packet Storm

2587	8.8	重要 Network	Weblate	Weblate	Weblateにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-34393	2026-04-23 10:12	2026-04-15	Show	GitHub Exploit DB Packet Storm

2588	6.5	警告 Network	McGill University	LORIS (Longitudinal Online Research and Imaging System)	McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)におけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-34985	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

2589	6.5	警告 Network	McGill University	LORIS (Longitudinal Online Research and Imaging System)	McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)におけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-35165	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

2590	5.4	警告 Network	McGill University	LORIS (Longitudinal Online Research and Imaging System)	McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)における複数の脆弱性	CWE-552 CWE-79 CWE-79	CVE-2026-35169	2026-04-23 10:12	2026-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347441	-	suse	suse_linux	The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password inform…	NVD-CWE-Other	CVE-2000-0361	2008-09-11 04:04	1999-12-14	Show	GitHub Exploit DB Packet Storm

347442	-	suse	suse_linux	Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges.	NVD-CWE-Other	CVE-2000-0362	2008-09-11 04:04	1999-10-22	Show	GitHub Exploit DB Packet Storm

347443	-	suse	suse_linux	Linux cdwtools 093 and earlier allows local users to gain root privileges via the /tmp directory.	NVD-CWE-Other	CVE-2000-0363	2008-09-11 04:04	1999-10-22	Show	GitHub Exploit DB Packet Storm

347444	-	debian	debian_linux	dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files.	NVD-CWE-Other	CVE-2000-0366	2008-09-11 04:04	1999-12-2	Show	GitHub Exploit DB Packet Storm

347445	-	michael_jennings	eterm	Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.	NVD-CWE-Other	CVE-2000-0367	2008-09-11 04:04	1999-02-18	Show	GitHub Exploit DB Packet Storm

347446	-	caldera	openlinux	The IDENT server in Caldera Linux 2.3 creates multiple threads for each IDENT request, which allows remote attackers to cause a denial of service.	NVD-CWE-Other	CVE-2000-0369	2008-09-11 04:04	1999-10-8	Show	GitHub Exploit DB Packet Storm

347447	-	caldera	openlinux	The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command.	NVD-CWE-Other	CVE-2000-0370	2008-09-11 04:04	1999-01-29	Show	GitHub Exploit DB Packet Storm

347448	-	kde	kde	The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack.	NVD-CWE-Other	CVE-2000-0371	2008-09-11 04:04	1999-03-1	Show	GitHub Exploit DB Packet Storm

347449	-	freebsd	freebsd	The kernel in FreeBSD 3.2 follows symbolic links when it creates core dump files, which allows local attackers to modify arbitrary files.	NVD-CWE-Other	CVE-2000-0375	2008-09-11 04:04	2001-03-12	Show	GitHub Exploit DB Packet Storm

347450	-	i-drive	filo	Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.	NVD-CWE-Other	CVE-2000-0376	2008-09-11 04:04	2000-06-7	Show	GitHub Exploit DB Packet Storm