Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3171 5.3 警告
Network 		protobufjs project protobufjs protobufjs projectのprotobufjsにおけるUnicode エンコーディングの処理に関する脆弱性 CWE-176
Unicode エンコーディングの不適切な処理 		CVE-2026-44288 2026-05-21 10:51 2026-05-13 Show GitHub Exploit DB Packet Storm
3172 8.7 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-44549 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
3173 8.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-44565 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
3174 9.8 緊急
Network 		openwebui open webui openwebuiのopen webuiにおける複数の脆弱性 CWE-22
CWE-434
CVE-2026-44566 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
3175 7.3 重要
Network 		openwebui open webui openwebuiのopen webuiにおける複数の脆弱性 CWE-602
CWE-863
CVE-2026-44567 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
3176 7.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-44569 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
3177 9.9 緊急
Network 		traefik traefik traefikにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-44774 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
3178 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-45187 2026-05-21 10:50 2026-05-19 Show GitHub Exploit DB Packet Storm
3179 5.4 警告
Network 		openwebui open webui openwebuiのopen webuiにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-45396 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
3180 5.3 警告
Network 		openwebui open webui openwebuiのopen webuiにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-45397 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345001 - allaire coldfusion_server The ColdFusion CFCRYPT program for encrypting CFML templates has weak encryption, allowing attackers to decrypt the templates. NVD-CWE-Other
CVE-1999-0757 2017-12-19 11:29 2001-03-12 Show GitHub Exploit DB Packet Storm
345002 - novell netware Novell NetWare Transaction Tracking System (TTS) in Novell 4.11 and earlier allows remote attackers to cause a denial of service via a large number of requests. NVD-CWE-Other
CVE-1999-0805 2017-12-19 11:29 2001-03-12 Show GitHub Exploit DB Packet Storm
345003 - motorola motorola_cablerouter A memory leak in a Motorola CableRouter allows remote attackers to conduct a denial of service via a large number of telnet connections. NVD-CWE-Other
CVE-1999-0919 2017-12-19 11:29 1998-05-10 Show GitHub Exploit DB Packet Storm
345004 - omnicron omnihttpd The OmniHTTPD visadmin.exe program allows a remote attacker to conduct a denial of service via a malformed URL which causes a large number of temporary files to be created. NVD-CWE-Other
CVE-1999-0970 2017-12-19 11:29 1999-06-5 Show GitHub Exploit DB Packet Storm
345005 - novell netware The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and … NVD-CWE-Other
CVE-1999-1020 2017-12-19 11:29 1998-09-18 Show GitHub Exploit DB Packet Storm
345006 - sgi irix serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls program, which allows local users to gain root privileges via a Trojan… NVD-CWE-Other
CVE-1999-1022 2017-12-19 11:29 1994-10-2 Show GitHub Exploit DB Packet Storm
345007 - ssh ssh2 SSH server (sshd2) before 2.0.12 does not properly record login attempts if the connection is closed before the maximum number of tries, allowing a remote attacker to guess the password without showi… NVD-CWE-Other
CVE-1999-1029 2017-12-19 11:29 1999-05-13 Show GitHub Exploit DB Packet Storm
345008 - ipswitch imail Buffer overflow in IMonitor in IMail 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to port 8181. NVD-CWE-Other
CVE-1999-1046 2017-12-19 11:29 1999-03-1 Show GitHub Exploit DB Packet Storm
345009 - matt_wright formhandler.cgi Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the reply_message_attach attachment parameter, or (2)… NVD-CWE-Other
CVE-1999-1050 2017-12-19 11:29 1999-11-12 Show GitHub Exploit DB Packet Storm
345010 - arcane_software vermillion_ftp_daemon Buffer overflow in Vermillion FTP Daemon VFTPD 1.23 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via several long CWD commands. NVD-CWE-Other
CVE-1999-1058 2017-12-19 11:29 1999-11-22 Show GitHub Exploit DB Packet Storm