Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5601 6.7 警告
Local 		VMware Spring Boot VMwareのSpring Bootにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-40977 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
5602 8.8 重要
Network 		VMware Spring AI VMwareのSpring AIにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-40978 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
5603 6.1 警告
Local 		VMware Spring AI VMwareのSpring AIにおける安全でない一時ファイルに関する脆弱性 CWE-377
安全でない一時ファイル 		CVE-2026-40979 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
5604 6.5 警告
Network 		VMware Spring AI VMwareのSpring AIにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-40980 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
5605 5.3 警告
Local 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-41332 2026-05-1 10:47 2026-04-23 Show GitHub Exploit DB Packet Storm
5606 4.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性 CWE-497
認可されていない制御領域への重要情報の漏えい 		CVE-2026-41339 2026-05-1 10:47 2026-04-23 Show GitHub Exploit DB Packet Storm
5607 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける不適切な動作順序(早期増幅)に関する脆弱性 CWE-408
不適切な動作順序(早期増幅) 		CVE-2026-41374 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
5608 4.6 警告
Adjacent 		OpenClaw OpenClaw OpenClawにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-41398 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
5609 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41399 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
5610 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41400 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351381 - crafty_syntax_live_help crafty_syntax_live_help Cross-site scripting (XSS) vulnerability in Crafty Syntax Live Help (CSLH) before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the name field of a livehelp or chat session. NVD-CWE-Other
CVE-2004-2355 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351382 - fizmez fizmez_web_server Early termination vulnerability in Fizmez Web Server 1.0 allows remote attackers to cause a denial of service (crash) by connecting to the server and then disconnecting without sending any data, whic… NVD-CWE-Other
CVE-2004-2356 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351383 - proofpoint proofpoint_protection_server The embedded MySQL 4.0 server for Proofpoint Protection Server does not require a password for the root user of MySQL, which allows remote attackers to read or modify the backend database. NVD-CWE-Other
CVE-2004-2357 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351384 - - - Cross-site scripting (XSS) vulnerability in admin_words.php for phpBB 2.0.6c allows remote attackers to inject arbitrary web script or HTML via the id parameter. NVD-CWE-Other
CVE-2004-2358 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351385 - dell truemobile_1300_wlan_mini-pci_card_util_trayapplet Dell TrueMobile 1300 WLAN Mini-PCI Card Util TrayApplet 3.10.39.0 does not properly drop SYSTEM privileges when started from the systray applet, which allows local users to gain privileges by accessi… NVD-CWE-Other
CVE-2004-2359 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351386 - targem_games battle_mages Targem Battle Mages 1.0 allows remote attackers to cause a denial of service (infinite loop) via a UDP packet with incomplete data, which causes the server to enter an infinite loop while waiting to … NVD-CWE-Other
CVE-2004-2360 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351387 - - - Digital Reality game engine, as used in Haegemonia 1.0 through 1.0.7 and Desert Rats vs. Afrika Korps 1.0, allows remote attackers to cause a denial of service (crash) via a chat message with a large… NVD-CWE-Other
CVE-2004-2361 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351388 - microsoft windows_2003_server
windows_xp 		Memory leak in Microsoft Windows XP and Windows Server 2003 allows local users to cause a denial of service (memory exhaustion) by repeatedly creating and deleting directories using a non-standard to… NVD-CWE-Other
CVE-2004-2365 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351389 - globalscape secure_ftp_server Buffer overflow in GlobalSCAPE Secure FTP Server 2.0 B03.11.2004.2 allows remote attackers to cause a denial of service (crash) via a SITE command with a long argument. NVD-CWE-Other
CVE-2004-2366 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351390 - - - The Control Panel applet in WFTPD and WFTPD Pro 3.21 R1 and R2 allows remote authenticated users to cause a denial of service (crash) via a long FTP command. NVD-CWE-Other
CVE-2004-2367 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm