Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4701	2.6	低 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2026-22735	2026-04-24 11:33	2026-03-20	Show	GitHub Exploit DB Packet Storm

4702	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-22737	2026-04-24 11:33	2026-03-20	Show	GitHub Exploit DB Packet Storm

4703	7.2	重要 Network	デル	PowerProtect DP Series Appliance data domain operating system	デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-23774	2026-04-24 11:33	2026-04-20	Show	GitHub Exploit DB Packet Storm

4704	8.7	重要 Network	decidim	decidim	Decidim Free Software AssociationのDecidimにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-23891	2026-04-24 11:33	2026-04-13	Show	GitHub Exploit DB Packet Storm

4705	4.9	警告 Network	OctoberCMS	October	OctoberCMSのOctoberにおける複数の脆弱性	CWE-200 CWE-94	CVE-2026-25125	2026-04-24 11:33	2026-04-14	Show	GitHub Exploit DB Packet Storm

4706	6.7	警告 Network	フォーティネット	FortiSandbox FortiSandbox Cloud	フォーティネットのFortiSandbox等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-25691	2026-04-24 11:33	2026-04-14	Show	GitHub Exploit DB Packet Storm

4707	6.1	警告 Local	Zulip	Zulip	Zulipにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-26058	2026-04-24 11:33	2026-04-3	Show	GitHub Exploit DB Packet Storm

4708	8.8	重要 Network	デル	PowerProtect DP Series Appliance data domain operating system	デルのdata domain operating system等の複数製品における重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-26944	2026-04-24 11:33	2026-04-20	Show	GitHub Exploit DB Packet Storm

4709	6.1	警告 Network	Jeremiah Lowin	FastMCP	Jeremiah LowinのFastMCPにおけるフィルタリングの回避に関する脆弱性	CWE-441 フィルタリング回避	CVE-2026-27124	2026-04-24 11:33	2026-04-3	Show	GitHub Exploit DB Packet Storm

4710	2.7	低 Network	フォーティネット	FortiSandbox FortiSandbox Cloud	フォーティネットのFortiSandbox等の複数製品における認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-27316	2026-04-24 11:33	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351271	-	novell	bordermanager	Novell BorderManager 3.0 and 3.5 allows remote attackers to bypass URL filtering by encoding characters in the requested URL.	NVD-CWE-Other	CVE-2000-0591	2008-09-11 04:05	2000-07-5	Show	GitHub Exploit DB Packet Storm

351272	-	freebsd	freebsd	libedit searches for the .editrc file in the current directory instead of the user's home directory, which may allow local users to execute arbitrary commands by installing a modified .editrc in anot…	NVD-CWE-Other	CVE-2000-0595	2008-09-11 04:05	2000-07-5	Show	GitHub Exploit DB Packet Storm

351273	-	fortech	proxy\+	Fortech Proxy+ allows remote attackers to bypass access restrictions for to the administration service by redirecting their connections through the telnet proxy.	NVD-CWE-Other	CVE-2000-0598	2008-09-11 04:05	2000-06-26	Show	GitHub Exploit DB Packet Storm

351274	-	imesh.com	imesh	Buffer overflow in iMesh 1.02 allows remote attackers to execute arbitrary commands via a long string to the iMesh port.	NVD-CWE-Other	CVE-2000-0599	2008-09-11 04:05	2000-06-29	Show	GitHub Exploit DB Packet Storm

351275	-	blackboard	courseinfo	Blackboard CourseInfo 4.0 stores the local and SQL administrator user names and passwords in cleartext in a registry key whose access control allows users to access the passwords.	NVD-CWE-Other	CVE-2000-0605	2008-09-11 04:05	2000-07-10	Show	GitHub Exploit DB Packet Storm

351276	-	suse	suse_linux	Tnef program in Linux systems allows remote attackers to overwrite arbitrary files via TNEF encoded compressed attachments which specify absolute path names for the decompressed output.	NVD-CWE-Other	CVE-2000-0614	2008-09-11 04:05	2000-07-10	Show	GitHub Exploit DB Packet Storm

351277	-	hp	mpe_ix	Vulnerability in HP TurboIMAGE DBUTIL allows local users to gain additional privileges via DBUTIL.PUB.SYS.	NVD-CWE-Other	CVE-2000-0616	2008-09-11 04:05	2000-06-26	Show	GitHub Exploit DB Packet Storm

351278	-	stanley_t._shebs	xconq	Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long USER environmental variable.	NVD-CWE-Other	CVE-2000-0617	2008-09-11 04:05	2000-06-22	Show	GitHub Exploit DB Packet Storm

351279	-	stanley_t._shebs	xconq	Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long DISPLAY environmental variable.	NVD-CWE-Other	CVE-2000-0618	2008-09-11 04:05	2000-06-22	Show	GitHub Exploit DB Packet Storm

351280	-	oreilly	website_professional	Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header.	NVD-CWE-Other	CVE-2000-0623	2008-09-11 04:05	2000-07-17	Show	GitHub Exploit DB Packet Storm