Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4851 7.1 重要
Network 		WWBN AVideo WWBNのAVideoにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-39370 2026-04-24 11:42 2026-04-7 Show GitHub Exploit DB Packet Storm
4852 7.8 重要
Local 		Vim Vim Vimにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-39881 2026-04-24 11:42 2026-04-8 Show GitHub Exploit DB Packet Storm
4853 5.3 警告
Network 		OpenEXR OpenEXR OpenEXRにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-39886 2026-04-24 11:42 2026-04-21 Show GitHub Exploit DB Packet Storm
4854 8.8 重要
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-39891 2026-04-24 11:42 2026-04-8 Show GitHub Exploit DB Packet Storm
4855 4.3 警告
Network 		lycheeorg lychee lycheeorgのLycheeにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39957 2026-04-24 11:42 2026-04-9 Show GitHub Exploit DB Packet Storm
4856 9.6 緊急
Network 		MISP MISP MISPにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-39962 2026-04-24 11:42 2026-04-9 Show GitHub Exploit DB Packet Storm
4857 6.9 警告
Network 		s9y Serendipity s9yのSerendipityにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性 CWE-565
検証および完全性チェックを行っていない Cookie への依存 		CVE-2026-39963 2026-04-24 11:42 2026-04-15 Show GitHub Exploit DB Packet Storm
4858 7.2 重要
Network 		s9y Serendipity s9yのSerendipityにおけるHTTP レスポンス分割に関する脆弱性 CWE-113
HTTP レスポンスの分割 		CVE-2026-39971 2026-04-24 11:42 2026-04-15 Show GitHub Exploit DB Packet Storm
4859 7.1 重要
Local 		apktool apktool Apktoolにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-39973 2026-04-24 11:42 2026-04-21 Show GitHub Exploit DB Packet Storm
4860 5.3 警告
Network 		Apache Software Foundation Apache log4net Apache Software FoundationのApache log4netにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-40021 2026-04-24 11:42 2026-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348561 - apache tomcat Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HT… NVD-CWE-Other
CVE-2003-0044 2017-07-11 10:29 2003-02-7 Show GitHub Exploit DB Packet Storm
348562 - hypermail hypermail Multiple buffer overflows in Hypermail 2 before 2.1.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code (1) via a long attachment filename that is not properly … NVD-CWE-Other
CVE-2003-0057 2017-07-11 10:29 2003-02-19 Show GitHub Exploit DB Packet Storm
348563 - gnome gnome-lokkit The iptables ruleset in Gnome-lokkit in Red Hat Linux 8.0 does not include any rules in the FORWARD chain, which could allow attackers to bypass intended access restrictions if packet forwarding is e… NVD-CWE-Other
CVE-2003-0080 2017-07-11 10:29 2003-03-31 Show GitHub Exploit DB Packet Storm
348564 - mod_auth_any mod_auth_any mod_auth_any package in Red Hat Enterprise Linux 2.1 and other operating systems does not properly escape arguments when calling other programs, which allows attackers to execute arbitrary commands v… NVD-CWE-Other
CVE-2003-0084 2017-07-11 10:29 2003-05-12 Show GitHub Exploit DB Packet Storm
348565 - port80_software servermask ServerMask 2.2 and earlier does not obfuscate (1) ETag, (2) HTTP Status Message, or (3) Allow HTTP responses, which could tell remote attackers that the web server is an IIS server. NVD-CWE-Other
CVE-2003-0105 2017-07-11 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
348566 - lprold
bsd
freebsd
openbsd 		lprold
lpr
freebsd
openbsd 		Buffer overflow in the lprm command in the lprold lpr package on SuSE 7.1 through 7.3, OpenBSD 3.2 and earlier, and possibly other operating systems, allows local users to gain root privileges via lo… NVD-CWE-Other
CVE-2003-0144 2017-07-11 10:29 2003-03-31 Show GitHub Exploit DB Packet Storm
348567 - netpbm netpbm Multiple vulnerabilities in NetPBM 9.20 and earlier, and possibly other versions, may allow remote attackers to cause a denial of service or execute arbitrary code via "maths overflow errors" such as… NVD-CWE-Other
CVE-2003-0146 2017-07-11 10:29 2003-03-31 Show GitHub Exploit DB Packet Storm
348568 - mozilla bonsai bonsai Mozilla CVS query tool leaks the absolute pathname of the tool in certain error messages generated by (1) cvslog.cgi, (2) cvsview2.cgi, or (3) multidiff.cgi. NVD-CWE-Other
CVE-2003-0153 2017-07-11 10:29 2003-04-2 Show GitHub Exploit DB Packet Storm
348569 - ecartis ecartis Ecartis 1.0.0 (formerly listar) before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page. NVD-CWE-Other
CVE-2003-0162 2017-07-11 10:29 2003-04-2 Show GitHub Exploit DB Packet Storm
348570 - ibm aix Unknown vulnerability in ftpd in IBM AIX 5.2, when configured to use Kerberos 5 for authentication, allows remote attackers to gain privileges via unknown attack vectors. NVD-CWE-Other
CVE-2003-0170 2017-07-11 10:29 2004-03-29 Show GitHub Exploit DB Packet Storm