Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3651 8.8 重要
Network 		Project Jupyter Jupyter Server Project JupyterのJupyter Serverにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-35397 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
3652 9.6 緊急
Network 		マイクロソフト Azure Cloud Shell Azure Cloud Shell Spoofing Vulnerability CWE-77
コマンドインジェクション 		CVE-2026-35428 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
3653 10 緊急
Network 		マイクロソフト Azure AI Foundry Azure AI Foundry の特権昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35435 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
3654 9.8 緊急
Network 		coredns.io CoreDNS The CoreDNS AuthorsのCoreDNSにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-35579 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
3655 9.8 緊急
Network 		Kestra Kestra KestraにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-38428 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
3656 7.2 重要
Network 		Gotenberg, Inc. Gotenberg TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-39383 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
3657 8.8 重要
Network 		Apache Software Foundation Apache NiFi Apache Software FoundationのApache NiFiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-39816 2026-05-11 11:10 2026-05-8 Show GitHub Exploit DB Packet Storm
3658 8.2 重要
Network 		Quarkus Quarkus Quarkusにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39852 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
3659 4.8 警告
Network 		Linux Containers Incus Linux ContainersのIncusにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-40243 2026-05-11 11:10 2026-05-6 Show GitHub Exploit DB Packet Storm
3660 7.5 重要
Network 		Gotenberg, Inc. Gotenberg TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40280 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345651 - gnome gnorpm GnoRPM before 0.95 allows local users to modify arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2000-0948 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345652 - evolvable_corporation shambala_server Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection. NVD-CWE-Other
CVE-2000-0953 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345653 - carnegie_mellon_university cyrus-sasl cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions. NVD-CWE-Other
CVE-2000-0956 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345654 - pam_mysql pam_mysql The pluggable authentication module for mysql (pam_mysql) before 0.4.7 does not properly cleanse user input when constructing SQL statements, which allows attackers to obtain plaintext passwords or h… NVD-CWE-Other
CVE-2000-0957 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345655 - sun hotjava_browser HotJava Browser 3.0 allows remote attackers to access the DOM of a web page by opening a javascript: URL in a named window. NVD-CWE-Other
CVE-2000-0958 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345656 - gnu glibc glibc2 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environmental variables when a program is spawned from a setuid program, which could allow local users to overwrite files via a symlink… NVD-CWE-Other
CVE-2000-0959 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345657 - netscape messaging_server The POP3 server in Netscape Messaging Server 4.15p1 generates different error messages for incorrect user names versus incorrect passwords, which allows remote attackers to determine valid users on t… NVD-CWE-Other
CVE-2000-0960 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345658 - netscape messaging_server
netscape_messaging_server_multiplexor 		Buffer overflow in IMAP server in Netscape Messaging Server 4.15 Patch 2 allows local users to execute arbitrary commands via a long LIST command. NVD-CWE-Other
CVE-2000-0961 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345659 - siemens hinet_lp Buffer overflow in the web administration service for the HiNet LP5100 IP-phone allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request. NVD-CWE-Other
CVE-2000-0964 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm
345660 - hp vvos The NSAPI plugins for TGA and the Java Servlet proxy in HP-UX VVOS 10.24 and 11.04 allows an attacker to cause a denial of service (high CPU utilization). NVD-CWE-Other
CVE-2000-0965 2017-10-10 10:29 2000-12-19 Show GitHub Exploit DB Packet Storm