Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4741 7.1 重要
Network 		WWBN AVideo WWBNのAVideoにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-39370 2026-04-24 11:42 2026-04-7 Show GitHub Exploit DB Packet Storm
4742 7.8 重要
Local 		Vim Vim Vimにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-39881 2026-04-24 11:42 2026-04-8 Show GitHub Exploit DB Packet Storm
4743 5.3 警告
Network 		OpenEXR OpenEXR OpenEXRにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-39886 2026-04-24 11:42 2026-04-21 Show GitHub Exploit DB Packet Storm
4744 8.8 重要
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-39891 2026-04-24 11:42 2026-04-8 Show GitHub Exploit DB Packet Storm
4745 4.3 警告
Network 		lycheeorg lychee lycheeorgのLycheeにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39957 2026-04-24 11:42 2026-04-9 Show GitHub Exploit DB Packet Storm
4746 9.6 緊急
Network 		MISP MISP MISPにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-39962 2026-04-24 11:42 2026-04-9 Show GitHub Exploit DB Packet Storm
4747 6.9 警告
Network 		s9y Serendipity s9yのSerendipityにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性 CWE-565
検証および完全性チェックを行っていない Cookie への依存 		CVE-2026-39963 2026-04-24 11:42 2026-04-15 Show GitHub Exploit DB Packet Storm
4748 7.2 重要
Network 		s9y Serendipity s9yのSerendipityにおけるHTTP レスポンス分割に関する脆弱性 CWE-113
HTTP レスポンスの分割 		CVE-2026-39971 2026-04-24 11:42 2026-04-15 Show GitHub Exploit DB Packet Storm
4749 7.1 重要
Local 		apktool apktool Apktoolにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-39973 2026-04-24 11:42 2026-04-21 Show GitHub Exploit DB Packet Storm
4750 5.3 警告
Network 		Apache Software Foundation Apache log4net Apache Software FoundationのApache log4netにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-40021 2026-04-24 11:42 2026-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352721 - ibm lotus_domino_server Buffer overflow in Lotus Notes LDAP (NLDAP) allows an attacker to conduct a denial of service through the ldap_search request. NVD-CWE-Other
CVE-1999-0729 2008-09-9 21:35 2001-03-12 Show GitHub Exploit DB Packet Storm
352722 - vmware workstation Buffer overflow in VMWare 1.0.1 for Linux via a long HOME environmental variable. NVD-CWE-Other
CVE-1999-0733 2008-09-9 21:35 1999-06-26 Show GitHub Exploit DB Packet Storm
352723 - kde k-mail KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories. NVD-CWE-Other
CVE-1999-0735 2008-09-9 21:35 2000-01-4 Show GitHub Exploit DB Packet Storm
352724 - redhat linux Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable. NVD-CWE-Other
CVE-1999-0740 2008-09-9 21:35 1999-08-19 Show GitHub Exploit DB Packet Storm
352725 - qms crownnet_unix_utilities QMS CrownNet Unix Utilities for 2060 allows root to log on without a password. NVD-CWE-Other
CVE-1999-0741 2008-09-9 21:35 1999-08-19 Show GitHub Exploit DB Packet Storm
352726 - debian debian_linux The Debian mailman package uses weak authentication, which allows attackers to gain privileges. NVD-CWE-Other
CVE-1999-0742 2008-09-9 21:35 1999-06-22 Show GitHub Exploit DB Packet Storm
352727 - ibm aix Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler. NVD-CWE-Other
CVE-1999-0745 2008-09-9 21:35 1999-08-18 Show GitHub Exploit DB Packet Storm
352728 - slackware
suse 		slackware_linux
suse_linux 		A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service. NVD-CWE-Other
CVE-1999-0746 2008-09-9 21:35 1999-08-16 Show GitHub Exploit DB Packet Storm
352729 - microsoft hotmail Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execute commands on the user's Hotmail account. NVD-CWE-Other
CVE-1999-0750 2008-09-9 21:35 1999-09-13 Show GitHub Exploit DB Packet Storm
352730 - hughes msql The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories. NVD-CWE-Other
CVE-1999-0753 2008-09-9 21:35 1999-08-17 Show GitHub Exploit DB Packet Storm