Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4131 5.4 警告
Network 		EspoCRM EspoCRM EspoCRMにおける複数の脆弱性 CWE-116
CWE-80
CVE-2026-33657 2026-04-23 10:13 2026-04-13 Show GitHub Exploit DB Packet Storm
4132 3.1
Network 		EspoCRM EspoCRM EspoCRMにおける複数の脆弱性 CWE-367
CWE-918
CVE-2026-33659 2026-04-23 10:12 2026-04-13 Show GitHub Exploit DB Packet Storm
4133 5.4 警告
Network 		EspoCRM EspoCRM EspoCRMにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-33740 2026-04-23 10:12 2026-04-13 Show GitHub Exploit DB Packet Storm
4134 5.3 警告
Network 		The Go Project tiff The Go Projectのtiffにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-33809 2026-04-23 10:12 2026-03-25 Show GitHub Exploit DB Packet Storm
4135 5.5 警告
Local 		jqlang jq jqlangのjqにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-33947 2026-04-23 10:12 2026-04-13 Show GitHub Exploit DB Packet Storm
4136 5.3 警告
Network 		jqlang jq jqlangのjqにおける複数の脆弱性 CWE-170
CWE-20
CVE-2026-33948 2026-04-23 10:12 2026-04-14 Show GitHub Exploit DB Packet Storm
4137 4.3 警告
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-34225 2026-04-23 10:12 2026-04-14 Show GitHub Exploit DB Packet Storm
4138 7.7 重要
Network 		Weblate Weblate Weblateにおける複数の脆弱性 CWE-200
CWE-22
CWE-59
CVE-2026-34242 2026-04-23 10:12 2026-04-15 Show GitHub Exploit DB Packet Storm
4139 5 警告
Network 		Weblate Weblate Weblateにおける複数の脆弱性 CWE-200
CWE-918
CVE-2026-34244 2026-04-23 10:12 2026-04-15 Show GitHub Exploit DB Packet Storm
4140 8.8 重要
Network 		Weblate Weblate Weblateにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-34393 2026-04-23 10:12 2026-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352961 - snes9x.com snes9x Buffer overflow in Snes9x 1.37, when installed setuid root, allows local users to gain root privileges via a long command line argument. NVD-CWE-Other
CVE-2001-1015 2008-09-6 05:25 2001-10-16 Show GitHub Exploit DB Packet Storm
352962 - francisco_burzi php-nuke PHP-Nuke 5.x allows remote attackers to perform arbitrary SQL operations by modifying the "prefix" variable when calling any scripts that do not already define the prefix variable (e.g., by including… NVD-CWE-Other
CVE-2001-1025 2008-09-6 05:25 2001-08-31 Show GitHub Exploit DB Packet Storm
352963 - redhat linux Buffer overflow in ultimate_source function of man 1.5 and earlier allows local users to gain privileges. NVD-CWE-Other
CVE-2001-1028 2008-09-6 05:25 2001-05-28 Show GitHub Exploit DB Packet Storm
352964 - hp jetadmin The JetAdmin web interface for HP JetDirect does not set a password for the telnet interface when the admin password is changed, which allows remote attackers to gain access to the printer. NVD-CWE-Other
CVE-2001-1039 2008-09-6 05:25 2001-08-31 Show GitHub Exploit DB Packet Storm
352965 - hp jetadmin HP LaserJet, and possibly other JetDirect devices, resets the admin password when the device is turned off, which could allow remote attackers to access the device without the password. NVD-CWE-Other
CVE-2001-1040 2008-09-6 05:25 2001-08-31 Show GitHub Exploit DB Packet Storm
352966 - topher1kenobe awol AWOL PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1048 2008-09-6 05:25 2001-10-2 Show GitHub Exploit DB Packet Storm
352967 - ibm aix Vulnerability in lsmcode in unknown versions of AIX, possibly related to a usage error. NVD-CWE-Other
CVE-2001-1061 2008-09-6 05:25 2001-08-31 Show GitHub Exploit DB Packet Storm
352968 - lucent
simon_horms 		radius Format string vulnerabilities in Livingston/Lucent RADIUS before 2.1.va.1 may allow local or remote attackers to cause a denial of service and possibly execute arbitrary code via format specifiers th… NVD-CWE-Other
CVE-2001-1081 2008-09-6 05:25 2001-07-6 Show GitHub Exploit DB Packet Storm
352969 - lucent
simon_horms 		radius Directory traversal vulnerability in Livingston/Lucent RADIUS before 2.1.va.1 may allow attackers to read arbitrary files via a .. (dot dot) attack. NVD-CWE-Other
CVE-2001-1082 2008-09-6 05:25 2001-07-13 Show GitHub Exploit DB Packet Storm
352970 - khamil_landross_and_zack_jones eftp EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that o… NVD-CWE-Other
CVE-2001-1110 2008-09-6 05:25 2001-09-12 Show GitHub Exploit DB Packet Storm