Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
51	5.3	警告 Local	OpenClaw	OpenClaw	OpenClawにおける不完全なブラックリストに関する脆弱性 New	CWE-184 不完全なブラックリスト	CVE-2026-41332	2026-05-1 10:47	2026-04-23	Show	GitHub Exploit DB Packet Storm

52	4.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性 New	CWE-497 認可されていない制御領域への重要情報の漏えい	CVE-2026-41339	2026-05-1 10:47	2026-04-23	Show	GitHub Exploit DB Packet Storm

53	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不適切な動作順序（早期増幅）に関する脆弱性 New	CWE-408 不適切な動作順序（早期増幅）	CVE-2026-41374	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

54	4.6	警告 Adjacent	OpenClaw	OpenClaw	OpenClawにおける同一生成元ポリシー違反に関する脆弱性 New	CWE-346 同一生成元ポリシー違反	CVE-2026-41398	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

55	7.5	重要 Network	OpenClaw	OpenClaw	OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41399	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

56	7.5	重要 Network	OpenClaw	OpenClaw	OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41400	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

57	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける誤って解決された名前や参照の使用に関する脆弱性 New	CWE-706 誤って解決された名前や参照の使用	CVE-2026-41402	2026-05-1 10:46	2026-04-28	Show	GitHub Exploit DB Packet Storm

58	9.8	緊急 Network	Apache Software Foundation	MINA	Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-41409	2026-05-1 10:46	2026-04-27	Show	GitHub Exploit DB Packet Storm

59	3.3	低 Local	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける境界外読み取りに関する脆弱性 New	CWE-125 境界外読み取り	CVE-2026-4159	2026-05-1 10:46	2026-03-19	Show	GitHub Exploit DB Packet Storm

60	9.8	緊急 Network	Apache Software Foundation	MINA	Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-41635	2026-05-1 10:46	2026-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348251	-	squirrelmail	squirrelmail	An incomplete fix for a cross-site scripting (XSS) vulnerability in SquirrelMail 1.2.8 calls the strip_tags function on the PHP_SELF value but does not save the result back to that variable, leaving …	NVD-CWE-Other	CVE-2002-1276	2008-09-6 05:30	2002-11-29	Show	GitHub Exploit DB Packet Storm

348252	-	windowmaker	windowmaker	Buffer overflow in Window Maker (wmaker) 0.80.0 and earlier may allow remote attackers to execute arbitrary code via a certain image file that is not properly handled when Window Maker uses width and…	NVD-CWE-Other	CVE-2002-1277	2008-09-6 05:30	2002-11-12	Show	GitHub Exploit DB Packet Storm

348253	-	hp	hp-ux	Unknown vulnerability in passwd for VVOS HP-UX 11.04, with unknown impact, related to "Unexpected behavior."	NVD-CWE-Other	CVE-2002-1406	2008-09-6 05:30	2003-04-11	Show	GitHub Exploit DB Packet Storm

348254	-	hp	openview_emanate_snmp_agent vvos	Unknown vulnerability or vulnerabilities in HP OpenView EMANATE 14.2 snmpModules allow the SNMP read-write community name to be exposed, related to (1) "'read-only' community access," and/or (2) an e…	NVD-CWE-Other	CVE-2002-1408	2008-09-6 05:30	2003-04-11	Show	GitHub Exploit DB Packet Storm

348255	-	ben_chivers easy_scripts_archive	ben_chivers_guestbook easy_guestbook	Easy Guestbook CGI programs do not authenticate the administrator, which allows remote attackers to (1) delete entries via direct access of admin.cgi, or (2) reconfigure Guestbook via direct access o…	NVD-CWE-Other	CVE-2002-1410	2008-09-6 05:30	2003-04-11	Show	GitHub Exploit DB Packet Storm

348256	-	duma	photo_gallery_system	Directory traversal vulnerability in update.dpgs in Duma Photo Gallery System (DPGS) 0.99.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the id parameter.	NVD-CWE-Other	CVE-2002-1411	2008-09-6 05:30	2003-04-11	Show	GitHub Exploit DB Packet Storm

348257	-	novell	netware	RCONAG6 for Novell Netware SP2, while running RconJ in secure mode, allows remote attackers to bypass authentication using the RconJ "Secure IP" (SSL) option during a connection.	NVD-CWE-Other	CVE-2002-1413	2008-09-6 05:30	2003-04-11	Show	GitHub Exploit DB Packet Storm

348258	-	webeasymail	webeasymail	Format string vulnerability in SMTP service for WebEasyMail 3.4.2.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format strings in …	NVD-CWE-Other	CVE-2002-1415	2008-09-6 05:30	2003-04-11	Show	GitHub Exploit DB Packet Storm

348259	-	webeasymail	webeasymail	The POP3 service for WebEasyMail 3.4.2.2 and earlier generates diffferent error messages for valid and invalid usernames during authentication, which makes it easier for remote attackers to conduct b…	NVD-CWE-Other	CVE-2002-1416	2008-09-6 05:30	2003-04-11	Show	GitHub Exploit DB Packet Storm

348260	-	novell	small_business_suite netware	Directory traversal vulnerability in Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to read arbitrary files via a URL…	NVD-CWE-Other	CVE-2002-1417	2008-09-6 05:30	2003-04-11	Show	GitHub Exploit DB Packet Storm