Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3151 5.4 警告
Network 		opensourcepos open source point of sale opensourceposのopen source point of saleにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-39380 2026-04-27 10:48 2026-04-7 Show GitHub Exploit DB Packet Storm
3152 7.6 重要
Network 		FreeScout FreeScout FreeScoutにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-39384 2026-04-27 10:48 2026-04-7 Show GitHub Exploit DB Packet Storm
3153 3.1
Network 		OpenBao OpenBao OpenBaoにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-39388 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
3154 4.9 警告
Network 		OpenBao OpenBao OpenBaoにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-39946 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
3155 5.7 警告
Adjacent 		OpenClaw OpenClaw OpenClawにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2026-40045 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
3156 6.5 警告
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40150 2026-04-27 10:48 2026-04-9 Show GitHub Exploit DB Packet Storm
3157 8.8 重要
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40157 2026-04-27 10:48 2026-04-10 Show GitHub Exploit DB Packet Storm
3158 6.5 警告
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
CWE-noinfo
CVE-2026-40161 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
3159 8.1 重要
Network 		SysAdmins Media HomeBox SysAdmins MediaのHomeBoxにおける不適切な所有権の割り当てに関する脆弱性 CWE-708
不適切な所有権の割り当て 		CVE-2026-40196 2026-04-27 10:48 2026-04-17 Show GitHub Exploit DB Packet Storm
3160 2.7
Network 		OpenBao OpenBao OpenBaoにおけるセキュリティトークンの割り当ての制限に関する脆弱性 CWE-1259
セキュリティトークンの割り当ての不適切な制限 		CVE-2026-40264 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347241 - microsoft outlook_express Buffer overflow in Outlook Express 5.0 through 5.02 for Macintosh allows remote attackers to cause a denial of service via an e-mail message that contains a long line. NVD-CWE-Other
CVE-2001-0945 2016-10-18 11:13 2001-12-3 Show GitHub Exploit DB Packet Storm
347242 - oracle database_server Unknown vulnerability in Oracle Label Security in Oracle 8.1.7 and 9.0.1, when audit functionality, SET_LABEL, or SQL*Predicate is being used, allows local users to gain additional access. NVD-CWE-Other
CVE-2001-0831 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
347243 - oracle database_server Vulnerability in Oracle 8.0.x through 9.0.1 on Unix allows local users to overwrite arbitrary files, possibly via a symlink attack or incorrect file permissions in (1) the ORACLE_HOME/rdbms/log direc… NVD-CWE-Other
CVE-2001-0832 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
347244 - ikonboard.com ikonboard Directory traversal vulnerability in Search.cgi in Ikonboard ib219 and earlier allows remote attackers to overwrite files and gain privileges via .. (dot dot) sequences in the amembernamecookie cooki… NVD-CWE-Other
CVE-2001-0841 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
347245 - leoboard lb5000 Directory traversal vulnerability in Search.cgi in Leoboard LB5000 LB5000II 1029 and earlier allows remote attackers to overwrite files and gain privileges via .. (dot dot) sequences in the amemberna… NVD-CWE-Other
CVE-2001-0842 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
347246 - seth_leonard book_of_guests
post_it 		Vulnerability in (1) Book of guests and (2) Post it! allows remote attackers to execute arbitrary code via shell metacharacters in the email parameter. NVD-CWE-Other
CVE-2001-0844 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
347247 - e-zone_media fuse_talk join.cfm in e-Zone Media Fuse Talk allows a local user to execute arbitrary SQL code via a semi-colon (;) in a form variable. NVD-CWE-Other
CVE-2001-0848 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
347248 - francisco_burzi php-nuke PHP-Nuke 5.2 allows remote attackers to copy and delete arbitrary files by calling case.filemanager.php with admin.php as an argument, which sets the $PHP_SELF variable and makes it appear that case.… NVD-CWE-Other
CVE-2001-0854 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
347249 - rational_software clearcase Buffer overflow in db_loader in ClearCase 4.2 and earlier allows local users to gain root privileges via a long TERM environment variable. NVD-CWE-Other
CVE-2001-0855 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm
347250 - ibm 4758 Common Cryptographic Architecture (CCA) in IBM 4758 allows an attacker with physical access to the system and Combine_Key_Parts permissions, to steal DES and 3DES keys by using a brute force attack t… NVD-CWE-Other
CVE-2001-0856 2016-10-18 11:12 2001-12-6 Show GitHub Exploit DB Packet Storm