Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3391 4.9 警告
Network 		Fortra GoAnywhere Agents
GoAnywhere Managed File Transfer 		FortraのGoAnywhere Agents等の複数製品における暗号強度に関する脆弱性 CWE-326
不適切な暗号強度 		CVE-2025-1241 2026-04-24 11:36 2026-04-21 Show GitHub Exploit DB Packet Storm
3392 7.3 重要
Network 		Fortra GoAnywhere Managed File Transfer FortraのGoAnywhere Managed File Transferにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2025-14362 2026-04-24 11:36 2026-04-21 Show GitHub Exploit DB Packet Storm
3393 8.1 重要
Network 		Gardyn Gardin API GardynのGardin APIにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-25197 2026-04-24 11:36 2026-04-3 Show GitHub Exploit DB Packet Storm
3394 4.8 警告
Network 		LibreNMS LibreNMS LibreNMSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-2728 2026-04-24 11:36 2026-04-13 Show GitHub Exploit DB Packet Storm
3395 7.5 重要
Network 		Gardyn Gardin API GardynのGardin APIにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-28766 2026-04-24 11:36 2026-04-3 Show GitHub Exploit DB Packet Storm
3396 5.3 警告
Network 		Gardyn Gardin API GardynのGardin APIにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-28767 2026-04-24 11:36 2026-04-3 Show GitHub Exploit DB Packet Storm
3397 3.7
Network 		ERLANG Erlang/OTP ERLANGのErlang/OTPにおける予測可能な数字や識別子の生成に関する脆弱性 CWE-340
予測可能な数字や識別子の生成 		CVE-2026-28810 2026-04-24 11:36 2026-04-7 Show GitHub Exploit DB Packet Storm
3398 7.2 重要
Network 		Artica ST Pandora FMS Artica STのPandora FMSにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-30804 2026-04-24 11:36 2026-04-13 Show GitHub Exploit DB Packet Storm
3399 8.8 重要
Network 		Artica ST Pandora FMS Artica STのPandora FMSにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-30806 2026-04-24 11:36 2026-04-13 Show GitHub Exploit DB Packet Storm
3400 8.8 重要
Network 		Artica ST Pandora FMS Artica STのPandora FMSにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-30809 2026-04-24 11:36 2026-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347301 - shadow_op_software dragon_server Dragon FTP server allows remote attackers to cause a denial of service via a long USER command. NVD-CWE-Other
CVE-2000-0479 2016-10-18 11:07 2000-06-16 Show GitHub Exploit DB Packet Storm
347302 - shadow_op_software dragon_server Dragon telnet server allows remote attackers to cause a denial of service via a long username. NVD-CWE-Other
CVE-2000-0480 2016-10-18 11:07 2000-06-16 Show GitHub Exploit DB Packet Storm
347303 - sambar sambar_server Buffer overflows in the finger and whois demonstration scripts in Sambar Server 4.3 allow remote attackers to execute arbitrary commands via a long hostname. NVD-CWE-Other
CVE-2000-0509 2016-10-18 11:07 2000-06-1 Show GitHub Exploit DB Packet Storm
347304 - stelian pop_dump Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name. NVD-CWE-Other
CVE-2000-0520 2016-10-18 11:07 2000-06-7 Show GitHub Exploit DB Packet Storm
347305 - cgi_script_center subscribe_me_lite Subscribe Me LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the subscr… NVD-CWE-Other
CVE-2000-0688 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
347306 - xpdf xpdf xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL's, which allows an attacker to execute arbitrary commands via a URL that contains shell metacharacters. NVD-CWE-Other
CVE-2000-0727 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
347307 - xpdf xpdf xpdf PDF viewer client earlier than 0.91 allows local users to overwrite arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2000-0728 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
347308 - eeye_digital_security
spynet 		iris
capturenet 		eEye IRIS 1.01 beta allows remote attackers to cause a denial of service via a large number of UDP connections. NVD-CWE-Other
CVE-2000-0734 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
347309 - oreilly website_pro O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.e… NVD-CWE-Other
CVE-2000-0769 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm
347310 - ipswitch imail The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack. NVD-CWE-Other
CVE-2000-0780 2016-10-18 11:07 2000-10-20 Show GitHub Exploit DB Packet Storm