Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5651 6.5 警告
Network 		pypdf project pypdf pypdf projectのpypdfにおける過度な反復の脆弱性 CWE-834
過度なイテレーション 		CVE-2026-41313 2026-04-30 12:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5652 6.5 警告
Network 		pypdf project pypdf pypdf projectのpypdfにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-41314 2026-04-30 12:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5653 5.4 警告
Network 		mintplexlabs anythingllm mintplexlabsのanythingllmにおける複数の脆弱性 CWE-116
CWE-1336
CWE-79
CVE-2026-41318 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
5654 9.1 緊急
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける複数の脆弱性 CWE-200
CWE-918
CVE-2026-41323 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
5655 7.5 重要
Network 		Patrick Juchli (patrickjuchli) Basic FTP Patrick Juchli (patrickjuchli)のBasic FTPにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-41324 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
5656 8.8 重要
Network 		getkirby kirby getkirbyのkirbyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41325 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
5657 9.9 緊急
Network 		OpenClaw OpenClaw OpenClawにおける特権 API の不適切な使用に関する脆弱性 CWE-648
特権 API の不適切な使用 		CVE-2026-41329 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
5658 4.4 警告
Local 		OpenClaw OpenClaw OpenClawにおける変数の安全ではないデフォルト値への初期化に関する脆弱性 CWE-453
変数の安全ではないデフォルト値への初期化 		CVE-2026-41330 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
5659 9.8 緊急
Network 		socialengine socialengine socialengineにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41460 2026-04-30 12:26 2026-04-23 Show GitHub Exploit DB Packet Storm
5660 8.5 重要
Network 		socialengine socialengine socialengineにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41461 2026-04-30 12:26 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350711 - best_software
saleslogix_corporation 		saleslogix SalesLogix 6.1 includes usernames, passwords, and other sensitive information in the headers of an HTTP response, which could allow remote attackers to gain access. NVD-CWE-Other
CVE-2004-1609 2017-07-11 10:31 2004-10-18 Show GitHub Exploit DB Packet Storm
350712 - best_software
saleslogix_corporation 		saleslogix SalesLogix 6.1 does not verify if a user is authenticated before performing sensitive operations, which could allow remote attackers to (1) execute arbitrary SLX commands on the server or spoof the s… NVD-CWE-Other
CVE-2004-1611 2017-07-11 10:31 2004-10-18 Show GitHub Exploit DB Packet Storm
350713 - saleslogix_corporation saleslogix Directory traversal vulnerability in SalesLogix 6.1 allows remote attackers to upload arbitrary files via a .. (dot dot) in a ProcessQueueFile request. NVD-CWE-Other
CVE-2004-1612 2017-07-11 10:31 2004-10-18 Show GitHub Exploit DB Packet Storm
350714 - links links Links allows remote attackers to cause a denial of service (memory consumption) via a web page or HTML email that contains a table with a td element and a large rowspan value,as demonstrated by mangl… NVD-CWE-Other
CVE-2004-1616 2017-07-11 10:31 2004-10-18 Show GitHub Exploit DB Packet Storm
350715 - vypress tonecast Vypress Tonecast 1.3 and earlier allows remote attackers to cause a denial of service (application crash) via a malformed mp2 stream. NVD-CWE-Other
CVE-2004-1618 2017-07-11 10:31 2004-10-19 Show GitHub Exploit DB Packet Storm
350716 - akella privateers_bounty_age_of_sail_ii Buffer overflow in Privateer's Bounty: Age of Sail II allows remote attackers to execute arbitrary code via a long nickname. NVD-CWE-Other
CVE-2004-1619 2017-07-11 10:31 2004-10-20 Show GitHub Exploit DB Packet Storm
350717 - s9y serendipity CRLF injection vulnerability in Serendipity before 0.7rc1 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the url parameter in (… NVD-CWE-Other
CVE-2004-1620 2017-07-11 10:31 2004-10-21 Show GitHub Exploit DB Packet Storm
350718 - ubbcentral ubb.threads SQL injection vulnerability in dosearch.php in UBB.threads 3.4.x allows remote attackers to execute arbitrary SQL statements via the Name parameter. NVD-CWE-Other
CVE-2004-1622 2017-07-11 10:31 2004-10-21 Show GitHub Exploit DB Packet Storm
350719 - microsoft windows_xp The WAV file property handler in Windows XP SP1 allows remote attackers to cause a denial of service (infinite loop in Explorer) via a WAV file with an invalid file header whose fmt chunk length is s… NVD-CWE-Other
CVE-2004-1623 2017-07-11 10:31 2004-10-22 Show GitHub Exploit DB Packet Storm
350720 - altiris carbon_copy Carbon Copy 6.0.5257 does not drop system privileges when opening external programs through the help topic interface, which allows local users to gain privileges via (1) the help topic interface in C… NVD-CWE-Other
CVE-2004-1624 2017-07-11 10:31 2004-10-21 Show GitHub Exploit DB Packet Storm