Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 2:21 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2791 8.5 重要
Network 		b3log SiYuan B3logのSiYuanにおけるパストラバーサルの脆弱性 CWE-24
パストラバーサル (../filedir) 		CVE-2026-40318 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2792 9 緊急
Network 		b3log SiYuan B3logのSiYuanにおける複数の脆弱性 CWE-79
CWE-94
CVE-2026-40322 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2793 7.2 重要
Network 		フォーティネット Fortiweb フォーティネットのFortiwebにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-40688 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2794 6.5 警告
Network 		DataEase DataEase DataEaseにおける許容された入力値の許可リストに関する脆弱性 CWE-183
許容された入力値の許可リスト 		CVE-2026-40899 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2795 8.8 重要
Network 		DataEase DataEase DataEaseにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-40900 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2796 8.8 重要
Network 		DataEase DataEase DataEaseにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-40901 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2797 5.4 警告
Network 		b3log SiYuan B3logのSiYuanにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40922 2026-04-21 10:44 2026-04-17 Show GitHub Exploit DB Packet Storm
2798 9.8 緊急
Network 		FFmpeg FFmpeg FFmpegにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-40962 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2799 5.4 警告
Network 		Bludit Bludit Bluditにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4420 2026-04-21 10:44 2026-04-7 Show GitHub Exploit DB Packet Storm
2800 8.8 重要
Network 		FreeBSD FreeBSD FreeBSDにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-4747 2026-04-21 10:44 2026-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347621 - daniel_beckham the_finger_server The Finger Server 0.82 allows remote attackers to execute commands via shell metacharacters. NVD-CWE-Other
CVE-2000-0128 2008-09-11 04:02 2000-02-4 Show GitHub Exploit DB Packet Storm
347622 - hp hp-ux Vulnerability in Vue 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4038, PHSS_4055, and PHSS_4066. NVD-CWE-Other
CVE-1999-1134 2008-09-11 04:01 1994-05-18 Show GitHub Exploit DB Packet Storm
347623 - flavio_veloso nobo nobo 1.2 allows remote attackers to cause a denial of service (crash) via a series of large UDP packets. NVD-CWE-Other
CVE-1999-1169 2008-09-11 04:01 1999-02-4 Show GitHub Exploit DB Packet Storm
347624 - iomega zip_100_mb_drive ZIP drive for Iomega ZIP-100 disks allows attackers with physical access to the drive to bypass password protection by inserting a known disk with a known password, waiting for the ZIP drive to power… NVD-CWE-Other
CVE-1999-1174 2008-09-11 04:01 2001-12-21 Show GitHub Exploit DB Packet Storm
347625 - oreilly website
website_pro 		O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to (1) args.cmd or (2) args.bat. NVD-CWE-Other
CVE-1999-1180 2008-09-11 04:01 1999-02-16 Show GitHub Exploit DB Packet Storm
347626 - oreilly website
website_pro 		O'Reilly has corrected this issue in WebSite Professional 2.5, which is now available from: http://website.oreilly.com NVD-CWE-Other
CVE-1999-1180 2008-09-11 04:01 1999-02-16 Show GitHub Exploit DB Packet Storm
347627 - freebsd freebsd Sysinstall in FreeBSD 2.2.1 and earlier, when configuring anonymous FTP, creates the ftp user without a password and with /bin/date as the shell, which could allow attackers to gain access to certain… NVD-CWE-Other
CVE-1999-1298 2008-09-11 04:01 1997-04-7 Show GitHub Exploit DB Packet Storm
347628 - freebsd freebsd Vulnerability in union file system in FreeBSD 2.2 and earlier, and possibly other operating systems, allows local users to cause a denial of service (system reload) via a series of certain mount_unio… NVD-CWE-Other
CVE-1999-1314 2008-09-11 04:01 1996-05-17 Show GitHub Exploit DB Packet Storm
347629 - sgi irix Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain root privileges in certain configurations. NVD-CWE-Other
CVE-1999-1319 2008-09-11 04:01 1996-01-3 Show GitHub Exploit DB Packet Storm
347630 - redhat linux Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges. NVD-CWE-Other
CVE-1999-1329 2008-09-11 04:01 1999-12-31 Show GitHub Exploit DB Packet Storm