Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4341 9.8 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品における複数の脆弱性 CWE-78
CWE-94
CVE-2026-40288 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
4342 9.1 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-40289 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
4343 9.8 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-40315 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
4344 8.5 重要
Network 		b3log SiYuan B3logのSiYuanにおけるパストラバーサルの脆弱性 CWE-24
パストラバーサル (../filedir) 		CVE-2026-40318 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
4345 9 緊急
Network 		b3log SiYuan B3logのSiYuanにおける複数の脆弱性 CWE-79
CWE-94
CVE-2026-40322 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
4346 7.2 重要
Network 		フォーティネット Fortiweb フォーティネットのFortiwebにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-40688 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
4347 6.5 警告
Network 		DataEase DataEase DataEaseにおける許容された入力値の許可リストに関する脆弱性 CWE-183
許容された入力値の許可リスト 		CVE-2026-40899 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
4348 8.8 重要
Network 		DataEase DataEase DataEaseにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-40900 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
4349 8.8 重要
Network 		DataEase DataEase DataEaseにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-40901 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
4350 5.4 警告
Network 		b3log SiYuan B3logのSiYuanにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40922 2026-04-21 10:44 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350081 - caldera openlinux The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command. NVD-CWE-Other
CVE-2000-0370 2008-09-11 04:04 1999-01-29 Show GitHub Exploit DB Packet Storm
350082 - kde kde The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2000-0371 2008-09-11 04:04 1999-03-1 Show GitHub Exploit DB Packet Storm
350083 - freebsd freebsd The kernel in FreeBSD 3.2 follows symbolic links when it creates core dump files, which allows local attackers to modify arbitrary files. NVD-CWE-Other
CVE-2000-0375 2008-09-11 04:04 2001-03-12 Show GitHub Exploit DB Packet Storm
350084 - i-drive filo Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request. NVD-CWE-Other
CVE-2000-0376 2008-09-11 04:04 2000-06-7 Show GitHub Exploit DB Packet Storm
350085 - redhat linux The pam_console PAM module in Linux systems performs a chown on various devices upon a user login, but an open file descriptor for those devices can be maintained after the user logs out, which allow… NVD-CWE-Other
CVE-2000-0378 2008-09-11 04:04 2000-05-3 Show GitHub Exploit DB Packet Storm
350086 - allaire clustercats ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirected site. NVD-CWE-Other
CVE-2000-0382 2008-09-11 04:04 2000-05-8 Show GitHub Exploit DB Packet Storm
350087 - filemaker filemaker FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilities. NVD-CWE-Other
CVE-2000-0385 2008-09-11 04:04 2000-05-2 Show GitHub Exploit DB Packet Storm
350088 - filemaker filemaker FileMaker Pro 5 Web Companion allows remote attackers to send anonymous or forged email. NVD-CWE-Other
CVE-2000-0386 2008-09-11 04:04 2000-05-2 Show GitHub Exploit DB Packet Storm
350089 - alexander_siegel golddig The makelev program in the golddig game from the FreeBSD ports collection allows local users to overwrite arbitrary files. NVD-CWE-Other
CVE-2000-0387 2008-09-11 04:04 2000-05-9 Show GitHub Exploit DB Packet Storm
350090 - freebsd freebsd Buffer overflow in FreeBSD libmytinfo library allows local users to execute commands via a long TERMCAP environmental variable. NVD-CWE-Other
CVE-2000-0388 2008-09-11 04:04 1990-05-9 Show GitHub Exploit DB Packet Storm