Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3491 9.9 緊急
Network 		OpenClaw OpenClaw OpenClawにおける特権 API の不適切な使用に関する脆弱性 CWE-648
特権 API の不適切な使用 		CVE-2026-41329 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3492 4.4 警告
Local 		OpenClaw OpenClaw OpenClawにおける変数の安全ではないデフォルト値への初期化に関する脆弱性 CWE-453
変数の安全ではないデフォルト値への初期化 		CVE-2026-41330 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3493 9.8 緊急
Network 		socialengine socialengine socialengineにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41460 2026-04-30 12:26 2026-04-23 Show GitHub Exploit DB Packet Storm
3494 8.5 重要
Network 		socialengine socialengine socialengineにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41461 2026-04-30 12:26 2026-04-23 Show GitHub Exploit DB Packet Storm
3495 7.7 重要
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける到達可能なアサーションに関する脆弱性 CWE-617
到達可能なアサーション 		CVE-2026-41485 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3496 4 警告
Local 		The GnuPG Project Libgcrypt The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-41990 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
3497 7.4 重要
Network 		axios project axios axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2026-42033 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3498 5.3 警告
Network 		axios project axios axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42034 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3499 7.4 重要
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 CWE-113
CWE-1321
CVE-2026-42035 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3500 5.3 警告
Network 		axios project axios axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42036 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346491 - sgi irix The IPv6 capability in IRIX 6.5.19 allows remote attackers to cause a denial of service (hang) in inetd via port scanning. NVD-CWE-Other
CVE-2003-0472 2017-07-11 10:29 2003-08-7 Show GitHub Exploit DB Packet Storm
346492 - sgi irix Unknown vulnerability in the IPv6 capability in IRIX 6.5.19 causes snoop to process packets as the root user, with unknown implications. NVD-CWE-Other
CVE-2003-0473 2017-07-11 10:29 2003-08-7 Show GitHub Exploit DB Packet Storm
346493 - phpbb_group phpbb SQL injection vulnerability in viewtopic.php for phpBB 2.0.5 and earlier allows remote attackers to steal password hashes via the topic_id parameter. NVD-CWE-Other
CVE-2003-0486 2017-07-11 10:29 2003-08-7 Show GitHub Exploit DB Packet Storm
346494 - kerio kerio_mailserver Multiple buffer overflows in Kerio MailServer 5.6.3 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via (1) a long showuser parameter in the do_subsc… NVD-CWE-Other
CVE-2003-0487 2017-07-11 10:29 2003-08-7 Show GitHub Exploit DB Packet Storm
346495 - kerio kerio_mailserver Multiple cross-site scripting (XSS) vulnerabilities in Kerio MailServer 5.6.3 allow remote attackers to insert arbitrary web script via (1) the add_name parameter in the add_acl module, or (2) the al… NVD-CWE-Other
CVE-2003-0488 2017-07-11 10:29 2003-08-7 Show GitHub Exploit DB Packet Storm
346496 - snitz_communications snitz_forums_2000 Cross-site scripting (XSS) vulnerability in search.asp for Snitz Forums 3.4.03 and earlier allows remote attackers to execute arbitrary web script via the Search parameter. NVD-CWE-Other
CVE-2003-0492 2017-07-11 10:29 2003-08-7 Show GitHub Exploit DB Packet Storm
346497 - snitz_communications snitz_forums_2000 password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id. NVD-CWE-Other
CVE-2003-0494 2017-07-11 10:29 2003-08-7 Show GitHub Exploit DB Packet Storm
346498 - ledscripts.com lednews Cross-site scripting (XSS) vulnerability in LedNews 0.7 allows remote attackers to insert arbitrary web script via a news item. NVD-CWE-Other
CVE-2003-0495 2017-07-11 10:29 2003-08-7 Show GitHub Exploit DB Packet Storm
346499 - cyberstrong eshop SQL injection vulnerability in Cyberstrong eShop 4.2 and earlier allows remote attackers to steal authentication information and gain privileges via the ProductCode parameter in (1) 10expand.asp, (2)… NVD-CWE-Other
CVE-2003-0509 2017-07-11 10:29 2003-08-7 Show GitHub Exploit DB Packet Storm
346500 - sgi irix Unknown vulnerability in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, allows attackers to cause a denial of service (memory consumption). NVD-CWE-Other
CVE-2003-0572 2017-07-11 10:29 2003-08-18 Show GitHub Exploit DB Packet Storm