Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
361	4	警告 Local	OpenClaw	OpenClaw	OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性 New	CWE-807 セキュリティ決定の信頼できない入力への依存	CVE-2026-41403	2026-05-7 12:29	2026-04-28	Show	GitHub Exploit DB Packet Storm

362	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-41404	2026-05-7 12:29	2026-04-28	Show	GitHub Exploit DB Packet Storm

363	7.5	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不適切な動作順序（早期増幅）に関する脆弱性 New	CWE-408 不適切な動作順序（早期増幅）	CVE-2026-41405	2026-05-7 12:29	2026-04-28	Show	GitHub Exploit DB Packet Storm

364	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるユーザ制御の鍵による認証回避に関する脆弱性 New	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-41406	2026-05-7 12:29	2026-04-28	Show	GitHub Exploit DB Packet Storm

365	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるタイミングの違いに起因する情報漏えいに関する脆弱性 New	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-41407	2026-05-7 12:29	2026-04-28	Show	GitHub Exploit DB Packet Storm

366	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41408	2026-05-7 12:29	2026-04-28	Show	GitHub Exploit DB Packet Storm

367	4.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-41910	2026-05-7 12:29	2026-04-28	Show	GitHub Exploit DB Packet Storm

368	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-41911	2026-05-7 12:29	2026-04-28	Show	GitHub Exploit DB Packet Storm

369	7.6	重要 Network	OpenClaw	OpenClaw	OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41912	2026-05-7 12:29	2026-04-28	Show	GitHub Exploit DB Packet Storm

370	7.5	重要 Network	FreeBSD	FreeBSD	FreeBSDにおける有効期限後のメモリの解放の欠如に関する脆弱性 New	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-4247	2026-05-7 12:29	2026-03-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347271	-	steve_grimm	un-cgi	Directory traversal vulnerability in Un-CGI 1.9 and earlier allows remote attackers to execute arbitrary code via a .. (dot dot) in an HTML form.	NVD-CWE-Other	CVE-2001-1242	2008-09-11 04:10	2001-07-17	Show	GitHub Exploit DB Packet Storm

347272	-	vwebserver	vwebserver	vWebServer 1.2.0 allows remote attackers to view arbitrary ASP scripts via a request for an ASP script that ends with a URL-encoded space character (%20).	NVD-CWE-Other	CVE-2001-1248	2008-09-11 04:10	2001-06-29	Show	GitHub Exploit DB Packet Storm

347273	-	vwebserver	vwebserver	vWebServer 1.2.0 allows remote attackers to cause a denial of service via a URL that contains MS-DOS device names.	NVD-CWE-Other	CVE-2001-1249	2008-09-11 04:10	2001-06-29	Show	GitHub Exploit DB Packet Storm

347274	-	vwebserver	vwebserver	vWebServer 1.2.0 allows remote attackers to cause a denial of service (hang) via a small number of long URL requests, possibly due to a buffer overflow.	NVD-CWE-Other	CVE-2001-1250	2008-09-11 04:10	2001-06-29	Show	GitHub Exploit DB Packet Storm

347275	-	max_feoktistov vwebserver	small_http_server vwebserver	SmallHTTP 1.204 through 3.00 beta 8 allows remote attackers to cause a denial of service via multiple long URL requests.	NVD-CWE-Other	CVE-2001-1251	2008-09-11 04:10	2001-06-29	Show	GitHub Exploit DB Packet Storm

347276	-	pgp	keyserver	Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin fo…	NVD-CWE-Other	CVE-2001-1252	2008-09-11 04:10	2001-09-28	Show	GitHub Exploit DB Packet Storm

347277	-	com2001	alexis_server	Web Access component for COM2001 Alexis 2.0 and 2.1 in InternetPBX sends username and voice mail passwords in the clear via a Java applet that sends the information to port 8888 of the server, which …	NVD-CWE-Other	CVE-2001-1254	2008-09-11 04:10	2001-09-27	Show	GitHub Exploit DB Packet Storm

347278	-	zope	zope	Zope before 2.2.4 allows partially trusted users to bypass security controls for certain methods by accessing the methods through the fmt attribute of dtml-var tags.	NVD-CWE-Other	CVE-2001-1278	2008-09-11 04:10	2001-10-10	Show	GitHub Exploit DB Packet Storm

347279	-	lbl	tcpdump	Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that tri…	NVD-CWE-Other	CVE-2001-1279	2008-09-11 04:10	2001-07-17	Show	GitHub Exploit DB Packet Storm

347280	-	ipswitch	imail	POP3 Server for Ipswitch IMail 7.04 and earlier generates different responses to valid and invalid user names, which allows remote attackers to determine users on the system.	NVD-CWE-Other	CVE-2001-1280	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm