Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3841 4.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial ShutdownにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-2400 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
3842 5 警告
Local 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-2401 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
3843 5.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-2402 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
3844 4.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおける入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2026-2403 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
3845 5.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-2404 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
3846 6.5 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-2405 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
3847 9.8 緊急
Network 		OpenAEV OpenAEV OpenAEVにおけるパスワード管理機能に関する脆弱性 CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み 		CVE-2026-24467 2026-04-24 11:38 2026-04-20 Show GitHub Exploit DB Packet Storm
3848 7.5 重要
Network 		Vexa AI, Inc. Vexa Vexa AI, Inc.のVexaにおける複数の脆弱性 CWE-306
CWE-862
CVE-2026-25058 2026-04-24 11:37 2026-04-20 Show GitHub Exploit DB Packet Storm
3849 5.8 警告
Network 		Vexa AI, Inc. Vexa Vexa AI, Inc.のVexaにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-25883 2026-04-24 11:37 2026-04-20 Show GitHub Exploit DB Packet Storm
3850 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27243 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347711 - oracle application_server Buffer overflow in shared library ndwfn4.so for iPlanet Web Server (iWS) 4.1, when used as a web listener for Oracle application server 4.0.8.2, allows remote attackers to execute arbitrary commands … NVD-CWE-Other
CVE-2001-0419 2016-10-18 11:11 2001-07-2 Show GitHub Exploit DB Packet Storm
347712 - timecop
freebsd 		bubblemon
freebsd 		BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id. NVD-CWE-Other
CVE-2001-0424 2016-10-18 11:11 2001-07-2 Show GitHub Exploit DB Packet Storm
347713 - micheal_lamont savant_webserver Buffer overflow in Savant 3.0 web server allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long Host HTTP header. NVD-CWE-Other
CVE-2001-0433 2016-10-18 11:11 2001-06-18 Show GitHub Exploit DB Packet Storm
347714 - pgp pgp The split key mechanism used by PGP 7.0 allows a key share holder to obtain access to the entire key by setting the "Cache passphrase while logged on" option and capturing the passphrases of other sh… NVD-CWE-Other
CVE-2001-0435 2016-10-18 11:11 2001-07-2 Show GitHub Exploit DB Packet Storm
347715 - ibm websphere_commerce_suite IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2 allows remote attackers to read source code for .jsp files by appending a / to the requested URL. NVD-CWE-Other
CVE-2001-0446 2016-10-18 11:11 2001-06-18 Show GitHub Exploit DB Packet Storm
347716 - crosswind cyberscheduler Buffer overflow in websync.exe in Cyberscheduler allows remote attackers to execute arbitrary commands via a long tzs (timezone) parameter. NVD-CWE-Other
CVE-2001-0464 2016-10-18 11:11 2001-07-2 Show GitHub Exploit DB Packet Storm
347717 - microburst ustorekeeper_online_shopping_system Directory traversal vulnerability in ustorekeeper 1.61 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter. NVD-CWE-Other
CVE-2001-0466 2016-10-18 11:11 2001-06-18 Show GitHub Exploit DB Packet Storm
347718 - hp
ibm 		openview_network_node_manager
tivoli_netview 		ovactiond in HP OpenView Network Node Manager (NNM) 6.1 and Tivoli Netview 5.x and 6.x allows remote attackers to execute arbitrary commands via shell metacharacters in a certain SNMP trap message. NVD-CWE-Other
CVE-2001-0552 2016-10-18 11:11 2001-09-20 Show GitHub Exploit DB Packet Storm
347719 - elron im_anti_virus
im_message_inspector 		Directory traversal vulnerability in the web server for (1) Elron Internet Manager (IM) Message Inspector and (2) Anti-Virus before 3.0.4 allows remote attackers to read arbitrary files via a .. (dot… NVD-CWE-Other
CVE-2001-0571 2016-10-18 11:11 2001-08-22 Show GitHub Exploit DB Packet Storm
347720 - headlight_software mygetright Headlight Software MyGetright prior to 1.0b allows a remote attacker to upload and/or overwrite arbitrary files via a malicious .dld (skins-data) file which contains long strings of random data. NVD-CWE-Other
CVE-2001-0605 2016-10-18 11:11 2001-08-22 Show GitHub Exploit DB Packet Storm