Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2621 9.9 緊急
Network 		traefik traefik traefikにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-44774 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
2622 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-45187 2026-05-21 10:50 2026-05-19 Show GitHub Exploit DB Packet Storm
2623 5.4 警告
Network 		openwebui open webui openwebuiのopen webuiにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-45396 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
2624 5.3 警告
Network 		openwebui open webui openwebuiのopen webuiにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-45397 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
2625 7.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-45398 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
2626 8.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45400 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
2627 8.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45401 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
2628 8.8 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-45434 2026-05-21 10:50 2026-05-19 Show GitHub Exploit DB Packet Storm
2629 5.4 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chrome ベース) のセキュリティ機能のバイパスの脆弱性 CWE-20
CWE-noinfo
CVE-2026-45492 2026-05-21 10:50 2026-05-18 Show GitHub Exploit DB Packet Storm
2630 6.1 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) のなりすましの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45494 2026-05-21 10:50 2026-05-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344851 - compaq trucluster
tru64 		Compaq TruCluster 1.5 allows remote attackers to cause a denial of service via a port scan from a system that does not have a DNS PTR record, which causes the cluster to enter a "split-brain" state. NVD-CWE-Other
CVE-2001-1033 2017-12-19 11:29 2001-09-25 Show GitHub Exploit DB Packet Storm
344852 - freebsd freebsd Format string vulnerability in Hylafax on FreeBSD allows local users to execute arbitrary code via format specifiers in the -h hostname argument for (1) faxrm or (2) faxalter. NVD-CWE-Other
CVE-2001-1034 2017-12-19 11:29 2001-09-23 Show GitHub Exploit DB Packet Storm
344853 - basilix basilix_webmail Basilix Webmail 0.9.7beta, and possibly other versions, stores *.class and *.inc files under the document root and does not restrict access, which could allows remote attackers to obtain sensitive in… NVD-CWE-Other
CVE-2001-1044 2017-12-19 11:29 2001-01-11 Show GitHub Exploit DB Packet Storm
344854 - basilix basilix_webmail Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the request_id[DUMMY] parameter. NVD-CWE-Other
CVE-2001-1045 2017-12-19 11:29 2001-07-6 Show GitHub Exploit DB Packet Storm
344855 - openbsd openbsd Race condition in OpenBSD VFS allows local users to cause a denial of service (kernel panic) by (1) creating a pipe in one thread and causing another thread to set one of the file descriptors to NULL… NVD-CWE-Other
CVE-2001-1047 2017-12-19 11:29 2001-06-2 Show GitHub Exploit DB Packet Storm
344856 - cccsoftware ccc CCCSoftware CCC PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1050 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
344857 - dark_hart_portal darkportal-unix Dark Hart Portal (darkportal) PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1051 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
344858 - emergenices_personnel_information_system empris Empris PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1052 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
344859 - wolfram_research mathematica The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by connecting to port 16286 and not disconnecting, which prevents u… NVD-CWE-Other
CVE-2001-1057 2017-12-19 11:29 2001-07-30 Show GitHub Exploit DB Packet Storm
344860 - wolfram_research mathematica The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to bypass access control (specified by the -restrict argument) and steal a license via a client request that includes … NVD-CWE-Other
CVE-2001-1058 2017-12-19 11:29 2002-02-13 Show GitHub Exploit DB Packet Storm