Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5121 9.1 緊急
Network 		nearform fast-jwt nearformのfast-jwtにおける複数の脆弱性 CWE-1289
CWE-345
CWE-706
CVE-2026-35039 2026-04-24 11:43 2026-04-6 Show GitHub Exploit DB Packet Storm
5122 5.3 警告
Network 		WWBN AVideo WWBNのAVideoにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-35179 2026-04-24 11:43 2026-04-6 Show GitHub Exploit DB Packet Storm
5123 8.8 重要
Network 		Chamilo Association Chamilo LMS Chamilo AssociationのChamilo LMSにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35196 2026-04-24 11:43 2026-04-14 Show GitHub Exploit DB Packet Storm
5124 7.5 重要
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35230 2026-04-24 11:43 2026-04-21 Show GitHub Exploit DB Packet Storm
5125 4.9 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35234 2026-04-24 11:43 2026-04-21 Show GitHub Exploit DB Packet Storm
5126 4.9 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35235 2026-04-24 11:43 2026-04-21 Show GitHub Exploit DB Packet Storm
5127 4.9 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35236 2026-04-24 11:43 2026-04-21 Show GitHub Exploit DB Packet Storm
5128 4.9 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35237 2026-04-24 11:43 2026-04-21 Show GitHub Exploit DB Packet Storm
5129 4.9 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35238 2026-04-24 11:43 2026-04-21 Show GitHub Exploit DB Packet Storm
5130 4.9 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35239 2026-04-24 11:43 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351741 - windowmaker windowmaker Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of service and possibly execute arbitrary commands by executing WindowMaker with a long program name (ar… NVD-CWE-Other
CVE-1999-1064 2016-10-18 11:00 1999-08-22 Show GitHub Exploit DB Packet Storm
351742 - palm_pilot hotsync_manager Palm Pilot HotSync Manager 3.0.4 in Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to port 14238 while the manager is in n… NVD-CWE-Other
CVE-1999-1065 2016-10-18 11:00 1999-11-4 Show GitHub Exploit DB Packet Storm
351743 - sgi quake_1_server Quake 1 server responds to an initial UDP game connection request with a large amount of traffic, which allows remote attackers to use the server as an amplifier in a "Smurf" style attack on another … NVD-CWE-Other
CVE-1999-1066 2016-10-18 11:00 1999-12-22 Show GitHub Exploit DB Packet Storm
351744 - sgi irix SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activi… NVD-CWE-Other
CVE-1999-1067 2016-10-18 11:00 1997-05-7 Show GitHub Exploit DB Packet Storm
351745 - oracle http_server Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request. NVD-CWE-Other
CVE-1999-1068 2016-10-18 11:00 1997-07-23 Show GitHub Exploit DB Packet Storm
351746 - excite ews Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted passw… NVD-CWE-Other
CVE-1999-1072 2016-10-18 11:00 1998-11-30 Show GitHub Exploit DB Packet Storm
351747 - excite ews Excite for Web Servers (EWS) 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a br… NVD-CWE-Other
CVE-1999-1073 2016-10-18 11:00 1998-11-30 Show GitHub Exploit DB Packet Storm
351748 - ibm aix AIX infod allows local users to gain root access through an X display. NVD-CWE-Other
CVE-1999-0118 2016-10-18 10:59 1998-11-1 Show GitHub Exploit DB Packet Storm
351749 - dan_bernstein qmail Denial of service in Qmail through long SMTP commands. NVD-CWE-Other
CVE-1999-0250 2016-10-18 10:59 1997-07-1 Show GitHub Exploit DB Packet Storm
351750 - - - The Java Web Server would allow remote users to obtain the source code for CGI programs. NVD-CWE-Other
CVE-1999-0283 2016-10-18 10:59 1999-01-1 Show GitHub Exploit DB Packet Storm