Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3151 8.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40420 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
3152 5.8 警告
Network 		traefik traefik traefikにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-41181 2026-05-21 10:52 2026-05-15 Show GitHub Exploit DB Packet Storm
3153 7.5 重要
Network 		DHTMLX PDF Export Module DHTMLXのPDF Export Moduleにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41552 2026-05-21 10:52 2026-05-15 Show GitHub Exploit DB Packet Storm
3154 9.1 緊急
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-41919 2026-05-21 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
3155 9.1 緊急
Network 		LangGenius, Inc. Dify LangGenius, Inc.のDifyにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41947 2026-05-21 10:52 2026-05-18 Show GitHub Exploit DB Packet Storm
3156 9.4 緊急
Network 		LangGenius, Inc. Dify LangGenius, Inc.のDifyにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-41948 2026-05-21 10:52 2026-05-18 Show GitHub Exploit DB Packet Storm
3157 7.5 重要
Network 		LangGenius, Inc. Dify LangGenius, Inc.のDifyにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41949 2026-05-21 10:51 2026-05-18 Show GitHub Exploit DB Packet Storm
3158 7.5 重要
Network 		twisted twisted twistedにおける複数の脆弱性 CWE-400
CWE-407
CVE-2026-42304 2026-05-21 10:51 2026-05-13 Show GitHub Exploit DB Packet Storm
3159 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-4273 2026-05-21 10:51 2026-05-18 Show GitHub Exploit DB Packet Storm
3160 8.8 重要
Network 		Grav CMS grav Grav CMSのgravにおける複数の脆弱性 CWE-269
CWE-434
CVE-2026-42844 2026-05-21 10:51 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344931 - shigio_yamaguchi global global.cgi CGI program in Global 3.55 and earlier on NetBSD allows remote attackers to execute arbitrary commands via shell metacharacters. NVD-CWE-Other
CVE-2000-0952 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344932 - openbsd openbsd The IPSEC implementation in OpenBSD 2.7 does not properly handle empty AH/ESP packets, which allows remote attackers to cause a denial of service. NVD-CWE-Other
CVE-2000-0962 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344933 - php php PHP 3 and 4 do not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands by triggering error messages that are improperly written to the error log… NVD-CWE-Other
CVE-2000-0967 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344934 - daniel_stenberg curl Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error message to be generated. NVD-CWE-Other
CVE-2000-0973 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344935 - gnu privacy_guard GnuPG (gpg) 1.0.3 does not properly check all signatures of a file containing multiple documents, which allows an attacker to modify contents of all documents but the first without detection. NVD-CWE-Other
CVE-2000-0974 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344936 - cisco ios The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (crash and reload) via a URL containing a "?/" string. NVD-CWE-Other
CVE-2000-0984 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344937 - openbsd
ssh 		openssh
ssh 		Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot dot) attack. NVD-CWE-Other
CVE-2000-0992 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344938 - openbsd openbsd Format string vulnerability in OpenBSD fstat program (and possibly other BSD-based operating systems) allows local users to gain root privileges via the PWD environmental variable. NVD-CWE-Other
CVE-2000-0994 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344939 - openbsd openbsd Format string vulnerability in OpenBSD yp_passwd program (and possibly other BSD-based operating systems) allows attackers to gain root privileges a malformed name. NVD-CWE-Other
CVE-2000-0995 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344940 - openbsd openbsd Format string vulnerability in OpenBSD su program (and possibly other BSD-based operating systems) allows local attackers to gain root privileges via a malformed shell. NVD-CWE-Other
CVE-2000-0996 2018-05-3 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm