Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5331	6.1	警告 Network	XWiki	xwiki	XWikiのxwikiにおけるクロスサイトスクリプティングの脆弱性	CWE-80 クロスサイトスクリプティング (Basic XSS)	CVE-2026-40105	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

5332	6.1	警告 Network	Prometheus	Prometheus	Prometheusにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40179	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

5333	7.5	重要 Network	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-40192	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

5334	8.2	重要 Network	maddy project	maddy	maddy projectのmaddyにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-40193	2026-04-24 11:41	2026-04-16	Show	GitHub Exploit DB Packet Storm

5335	7.1	重要 Local	OpenEXR	OpenEXR	OpenEXRにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-40244	2026-04-24 11:41	2026-04-21	Show	GitHub Exploit DB Packet Storm

5336	7.1	重要 Local	OpenEXR	OpenEXR	OpenEXRにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-40250	2026-04-24 11:41	2026-04-21	Show	GitHub Exploit DB Packet Storm

5337	6.1	警告 Local	openCryptoki Project	openCryptoki	openCryptoki ProjectのopenCryptokiにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-40253	2026-04-24 11:41	2026-04-16	Show	GitHub Exploit DB Packet Storm

5338	5.3	警告 Network	pypdf project	pypdf	pypdf projectのpypdfにおけるDTD の再帰的なエンティティ参照の不適切な制限に関する脆弱性	CWE-776 DTD の再帰的なエンティティ参照の不適切な制限	CVE-2026-40260	2026-04-24 11:41	2026-04-17	Show	GitHub Exploit DB Packet Storm

5339	8.8	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおける複数の脆弱性	CWE-269 CWE-863	CVE-2026-40291	2026-04-24 11:41	2026-04-14	Show	GitHub Exploit DB Packet Storm

5340	9	緊急 Network	Gitroom	Postiz	GitroomのPostizにおける複数の脆弱性	CWE-345 CWE-434 CWE-79	CVE-2026-40487	2026-04-24 11:41	2026-04-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354801	-	kab_software	lydia	Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords and gain privileges.	NVD-CWE-Other	CVE-1999-1101	2008-09-9 21:36	1999-02-19	Show	GitHub Exploit DB Packet Storm

354802	-	hp	openmail	HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests.	NVD-CWE-Other	CVE-1999-0551	2008-09-9 21:35	1998-04-1	Show	GitHub Exploit DB Packet Storm

354803	-	toxsoft	nextftp	Buffer overflow in ToxSoft NextFTP client through CWD command.	NVD-CWE-Other	CVE-1999-0671	2008-09-9 21:35	1999-08-3	Show	GitHub Exploit DB Packet Storm

354804	-	fujitsu	chocoa	Buffer overflow in Fujitsu Chocoa IRC client via IRC channel topics.	NVD-CWE-Other	CVE-1999-0672	2008-09-9 21:35	1999-08-1	Show	GitHub Exploit DB Packet Storm

354805	-	crear	almail32	Buffer overflow in ALMail32 POP3 client via From: or To: headers.	NVD-CWE-Other	CVE-1999-0673	2008-09-9 21:35	1999-08-8	Show	GitHub Exploit DB Packet Storm

354806	-	checkpoint	firewall-1	Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host.	NVD-CWE-Other	CVE-1999-0675	2008-09-9 21:35	1999-08-9	Show	GitHub Exploit DB Packet Storm

354807	-	ramp_networks	webramp_200i webramp_m3	The WebRamp web administration utility has a default password.	NVD-CWE-Other	CVE-1999-0677	2008-09-9 21:35	1999-08-3	Show	GitHub Exploit DB Packet Storm

354808	-	hybrid_network	hybrid_ircd	Buffer overflow in hybrid-6 IRC server commonly used on EFnet allows remote attackers to execute commands via m_invite invite option.	NVD-CWE-Other	CVE-1999-0679	2008-09-9 21:35	1999-08-13	Show	GitHub Exploit DB Packet Storm

354809	-	network_associates	gauntlet_firewall	Denial of service in Gauntlet Firewall via a malformed ICMP packet.	NVD-CWE-Other	CVE-1999-0683	2008-09-9 21:35	1999-07-30	Show	GitHub Exploit DB Packet Storm

354810	-	netscape	communicator	Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.	NVD-CWE-Other	CVE-1999-0685	2008-09-9 21:35	1999-09-2	Show	GitHub Exploit DB Packet Storm