Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5361 5.4 警告
Network 		helpy.io helpy helpy.ioのhelpyにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40230 2026-05-7 12:00 2026-04-29 Show GitHub Exploit DB Packet Storm
5362 7.5 重要
Network 		Exim Development Exim Exim DevelopmentのEximにおける指定された機能の不適切な提供に関する脆弱性 CWE-684
指定された機能の不適切な提供 		CVE-2026-40684 2026-05-7 12:00 2026-04-30 Show GitHub Exploit DB Packet Storm
5363 9.8 緊急
Network 		Exim Development Exim Exim DevelopmentのEximにおける複数の脆弱性 CWE-684
CWE-787
CVE-2026-40685 2026-05-7 12:00 2026-04-30 Show GitHub Exploit DB Packet Storm
5364 5.3 警告
Network 		Exim Development Exim Exim DevelopmentのEximにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-40686 2026-05-7 12:00 2026-04-30 Show GitHub Exploit DB Packet Storm
5365 9.1 緊急
Network 		Exim Development Exim Exim DevelopmentのEximにおけるリソースの初期化の不備に関する脆弱性 CWE-909
リソースの初期化の不備 		CVE-2026-40687 2026-05-7 12:00 2026-04-30 Show GitHub Exploit DB Packet Storm
5366 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-43504 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
5367 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-43505 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
5368 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43506 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
5369 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-43507 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
5370 7.5 重要
Network 		Debian
GStreamer
レッドハット		 GStreamer
Debian GNU/Linux
Red Hat Enterprise Linux
GStreamer Good Plug-ins 		Debian等の複数ベンダの製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-1940 2026-05-7 11:31 2026-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347031 - openbsd openbsd readline prior to 4.1, in OpenBSD 2.8 and earlier, creates history files with insecure permissions, which allows a local attacker to recover potentially sensitive information via readline history fil… NVD-CWE-Other
CVE-2001-0378 2017-10-10 10:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347032 - hp hp-ux Vulnerability in the newgrp program included with HP9000 servers running HP-UX 11.11 allows a local attacker to obtain higher access rights. NVD-CWE-Other
CVE-2001-0379 2017-10-10 10:29 2001-06-18 Show GitHub Exploit DB Packet Storm
347033 - francisco_burzi php-nuke banners.php in PHP-Nuke 4.4 and earlier allows remote attackers to modify banner ad URLs by directly calling the Change operation, which does not require authentication. NVD-CWE-Other
CVE-2001-0383 2017-10-10 10:29 2001-06-18 Show GitHub Exploit DB Packet Storm
347034 - analogx simpleserver_www AnalogX SimpleServer:WWW 1.08 allows remote attackers to cause a denial of service via an HTTP request to the /aux directory. NVD-CWE-Other
CVE-2001-0386 2017-10-10 10:29 2001-07-2 Show GitHub Exploit DB Packet Storm
347035 - hylafax hylafax Format string vulnerability in hfaxd in HylaFAX before 4.1.b2_2 allows local users to gain privileges via the -q command line argument. NVD-CWE-Other
CVE-2001-0387 2017-10-10 10:29 2001-07-2 Show GitHub Exploit DB Packet Storm
347036 - freebsd
mandrakesoft
suse 		freebsd
mandrake_linux
suse_linux 		time server daemon timed allows remote attackers to cause a denial of service via malformed packets. NVD-CWE-Other
CVE-2001-0388 2017-10-10 10:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347037 - oreilly website_pro Remote manager service in Website Pro 3.0.37 allows remote attackers to cause a denial of service via a series of malformed HTTP requests to the /dyn directory. NVD-CWE-Other
CVE-2001-0394 2017-10-10 10:29 2001-08-22 Show GitHub Exploit DB Packet Storm
347038 - darren_reed
freebsd
openbsd 		ipfilter
freebsd
openbsd 		IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which allows remote attackers to bypass access restrictions by sending fragmented packets to a restricted por… NVD-CWE-Other
CVE-2001-0402 2017-10-10 10:29 2001-06-18 Show GitHub Exploit DB Packet Storm
347039 - linux linux_kernel ip_conntrack_ftp in the IPTables firewall for Linux 2.4 allows remote attackers to bypass access restrictions for an FTP server via a PORT command that lists an arbitrary IP address and port number, … NVD-CWE-Other
CVE-2001-0405 2017-10-10 10:29 2001-07-2 Show GitHub Exploit DB Packet Storm
347040 - vim_development_group vim vim (aka gvim) processes VIM control codes that are embedded in a file, which could allow attackers to execute arbitrary commands when another user opens a file containing malicious VIM control codes. NVD-CWE-Other
CVE-2001-0408 2017-10-10 10:29 2001-06-18 Show GitHub Exploit DB Packet Storm