Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5141 9.8 緊急
Network 		Apache Software Foundation Apache Pony Mail Apache Software FoundationのApache Pony MailにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-41873 2026-04-30 10:59 2026-04-28 Show GitHub Exploit DB Packet Storm
5142 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41908 2026-04-30 10:58 2026-04-23 Show GitHub Exploit DB Packet Storm
5143 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41909 2026-04-30 10:58 2026-04-23 Show GitHub Exploit DB Packet Storm
5144 8.8 重要
Network 		GitHub Enterprise Server GitHubのEnterprise Serverにおける不正な正規表現に関する脆弱性 CWE-185
不正な正規表現 		CVE-2026-4296 2026-04-30 10:58 2026-04-21 Show GitHub Exploit DB Packet Storm
5145 8.8 重要
Network 		Kubernetes ingress-nginx Kubernetesのingress-nginxにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-4342 2026-04-30 10:58 2026-03-19 Show GitHub Exploit DB Packet Storm
5146 6.5 警告
Network 		レッドハット
libarchive		 Red Hat OpenShift Container Platform
Red Hat Enterprise Linux
Red Hat Hardened Images
libarchive 		libarchive等の複数ベンダの製品における整数への不適切なビットシフトに関する脆弱性 CWE-1335
整数への不適切なビットシフト 		CVE-2026-4426 2026-04-30 10:58 2026-03-19 Show GitHub Exploit DB Packet Storm
5147 7.2 重要
Network 		GitHub Enterprise Server GitHubのEnterprise ServerにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-4821 2026-04-30 10:58 2026-04-21 Show GitHub Exploit DB Packet Storm
5148 7.5 重要
Network 		OpenBMB XAgent OpenBMBのXAgentにおける複数の脆弱性 CWE-287
CWE-306
CVE-2026-4959 2026-04-30 10:58 2026-03-27 Show GitHub Exploit DB Packet Storm
5149 5.5 警告
Local 		レッドハット KVM Windows virtio ドライバ
Red Hat Enterprise Linux 		レッドハットのRed Hat Enterprise Linux等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-5164 2026-04-30 10:58 2026-03-30 Show GitHub Exploit DB Packet Storm
5150 7.8 重要
Local 		レッドハット KVM Windows virtio ドライバ
Red Hat Enterprise Linux 		レッドハットのRed Hat Enterprise Linux等の複数製品における期限切れのポインタデリファレンスに関する脆弱性 CWE-825
期限切れのポインタデリファレンス 		CVE-2026-5165 2026-04-30 10:58 2026-03-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347741 - open_source_development_network slashcode Multiple cross-site scripting (XSS) vulnerabilities in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) before R_2_5_0_41 allow remote attackers to inject arbitrary web script or… NVD-CWE-Other
CVE-2004-2656 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347742 - ibm egatherer The (1) SetDebugging and (2) RunEgatherer methods in IBM Access Support eGatherer ActiveX control 2.0.0.16 allow remote attackers to create files with arbitrary content, as demonstrated by creating a… NVD-CWE-Other
CVE-2004-2663 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347743 - - - The iBCS2 system call translator for statfs in NetBSD 1.5 through 1.5.3 and FreeBSD 4 up to 4.8-RELEASE-p2 and 5 up to 5.1-RELEASE-p1 allows local users to read portions of kernel memory (memory disc… NVD-CWE-Other
CVE-2003-1289 2017-07-20 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
347744 - bea weblogic_server BEA WebLogic Server and WebLogic Express 6.1, 7.0, and 8.1, with RMI and anonymous admin lookup enabled, allows remote attackers to obtain configuration information by accessing MBeanHome via the Jav… NVD-CWE-Other
CVE-2003-1290 2017-07-20 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
347745 - - - Easy File Sharing (EFS) Web Server 1.2 allows remote authenticated users to cause a denial of service via (1) an "empty symbol" in the Title field or (2) certain data in the Your Message field, possi… NVD-CWE-Other
CVE-2003-1296 2017-07-20 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
347746 - anyportal_php anyportal_php Multiple directory traversal vulnerabilities in siteman.php3 in AnyPortal(php) 12 MAY 00 allow remote attackers to (1) create, (2) delete, (3) save, and (4) upload files by navigating to the root dir… NVD-CWE-Other
CVE-2003-1298 2017-07-20 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
347747 - ibm tivoli_management_framework The HTTP interface of Tivoli Lightweight Client Framework (LCF) in IBM Tivoli Management Framework 3.7.1 sets http_disable to zero at install time, which allows remote authenticated users to bypass f… NVD-CWE-Other
CVE-2000-1239 2017-07-20 10:29 2000-12-31 Show GitHub Exploit DB Packet Storm
347748 - anyportal_php anyportal_php Unspecified vulnerability in siteman.php3 in AnyPortal(php) before 22 APR 00 allows remote attackers to obtain sensitive information via unknown attack vectors, which reveal the absolute path. NOTE:… NVD-CWE-Other
CVE-2000-1240 2017-07-20 10:29 2000-12-31 Show GitHub Exploit DB Packet Storm
347749 - stackworks_enterprises information_resource_manager Unknown vulnerability in Information Resource Manager (IRM) before 1.5.2.1 allows remote attackers to have "potentially serious" impact, related to LDAP logins. NVD-CWE-Other
CVE-2005-0505 2017-07-19 10:29 2005-03-14 Show GitHub Exploit DB Packet Storm
347750 - jed_wing chm_lib Buffer overflow in the _chm_decompress_block function in CHM lib (chmlib) before 0.37, as used in products such as KchmViewer, allows attackers to execute arbitrary code, a different vulnerability th… NVD-CWE-Other
CVE-2005-3318 2017-07-19 10:29 2005-10-27 Show GitHub Exploit DB Packet Storm