Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2781 6.5 警告
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおける環境変数に対する重要な情報の平文保存に関する脆弱性 CWE-526
環境変数に対する重要な情報の平文保存 		CVE-2026-40153 2026-04-21 10:45 2026-04-9 Show GitHub Exploit DB Packet Storm
2782 7.8 重要
Local 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性 CWE-426
CWE-829
CWE-94
CVE-2026-40156 2026-04-21 10:44 2026-04-10 Show GitHub Exploit DB Packet Storm
2783 7.8 重要
Local 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性 CWE-693
CWE-94
CVE-2026-40158 2026-04-21 10:44 2026-04-10 Show GitHub Exploit DB Packet Storm
2784 5.5 警告
Local 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性 CWE-200
CWE-214
CVE-2026-40159 2026-04-21 10:44 2026-04-10 Show GitHub Exploit DB Packet Storm
2785 6.5 警告
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40160 2026-04-21 10:44 2026-04-10 Show GitHub Exploit DB Packet Storm
2786 8.1 重要
Network 		b3log SiYuan B3logのSiYuanにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-40259 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2787 8.4 重要
Local 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品における複数の脆弱性 CWE-426
CWE-94
CVE-2026-40287 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2788 9.8 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品における複数の脆弱性 CWE-78
CWE-94
CVE-2026-40288 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2789 9.1 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-40289 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2790 9.8 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-40315 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347551 - sco unixware Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges. NVD-CWE-Other
CVE-2000-0215 2008-09-11 04:03 2000-02-8 Show GitHub Exploit DB Packet Storm
347552 - microsoft exchange_server
outlook
windows_messaging 		Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow an attacker to flood a mail system with response… NVD-CWE-Other
CVE-2000-0216 2008-09-11 04:03 2000-02-29 Show GitHub Exploit DB Packet Storm
347553 - openbsd
ssh 		openssh
ssh
ssh2 		The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program. NVD-CWE-Other
CVE-2000-0217 2008-09-11 04:03 2000-02-24 Show GitHub Exploit DB Packet Storm
347554 - caldera
suse 		openlinux
suse_linux 		Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname. NVD-CWE-Other
CVE-2000-0218 2008-09-11 04:03 2000-02-3 Show GitHub Exploit DB Packet Storm
347555 - nortel nautica_marlin The Nautica Marlin bridge allows remote attackers to cause a denial of service via a zero length UDP packet to the SNMP port. NVD-CWE-Other
CVE-2000-0221 2008-09-11 04:03 2000-02-25 Show GitHub Exploit DB Packet Storm
347556 - sam_hawker wmcdplay Buffer overflow in the wmcdplay CD player program for the WindowMaker desktop allows local users to gain root privileges via a long parameter. NVD-CWE-Other
CVE-2000-0223 2008-09-11 04:03 2000-03-10 Show GitHub Exploit DB Packet Storm
347557 - alessandro_rubini
debian
redhat
suse 		gpm
debian_linux
linux
suse_linux 		gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root. NVD-CWE-Other
CVE-2000-0229 2008-09-11 04:03 2000-03-22 Show GitHub Exploit DB Packet Storm
347558 - halloween
redhat 		halloween_linux
linux 		Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable. NVD-CWE-Other
CVE-2000-0230 2008-09-11 04:03 2000-03-13 Show GitHub Exploit DB Packet Storm
347559 - halloween
suse 		halloween_linux
suse_linux 		Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges. NVD-CWE-Other
CVE-2000-0231 2008-09-11 04:03 2000-03-16 Show GitHub Exploit DB Packet Storm
347560 - suse suse_linux_imap_server SuSE Linux IMAP server allows remote attackers to bypass IMAP authentication and gain privileges. NVD-CWE-Other
CVE-2000-0233 2008-09-11 04:03 2000-03-15 Show GitHub Exploit DB Packet Storm