Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
811 6.5 警告
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-40924 2026-04-30 12:27 2026-04-21 Show GitHub Exploit DB Packet Storm
812 7.5 重要
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおける引数の挿入または変更に関する脆弱性 CWE-88
引数の挿入または変更 		CVE-2026-40938 2026-04-30 12:27 2026-04-21 Show GitHub Exploit DB Packet Storm
813 6.5 警告
Network 		Apache Software Foundation ActiveMQ Web
Apache ActiveMQ 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-79
CWE-79
CWE-915
CVE-2026-41043 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
814 8.8 重要
Network 		Apache Software Foundation Apache ActiveMQ
ActiveMQ Broker 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-20
CWE-94
CVE-2026-41044 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
815 8.2 重要
Network 		oauth2_proxy project oauth2_proxy oauth2_proxy projectのoauth2_proxyにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-41059 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
816 7.5 重要
Network 		lxml lxml lxmlにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-41066 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
817 7.7 重要
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41068 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
818 8.8 重要
Network 		pyLoad pyLoad pyLoadにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-41133 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
819 8.2 重要
Network 		Minio Inc. Minio Minio Inc.のMinioにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-41145 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
820 9.8 緊急
Network 		JetBrains Junie JetBrainsのJunieにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-41153 2026-04-30 12:27 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347271 - steve_grimm un-cgi Directory traversal vulnerability in Un-CGI 1.9 and earlier allows remote attackers to execute arbitrary code via a .. (dot dot) in an HTML form. NVD-CWE-Other
CVE-2001-1242 2008-09-11 04:10 2001-07-17 Show GitHub Exploit DB Packet Storm
347272 - vwebserver vwebserver vWebServer 1.2.0 allows remote attackers to view arbitrary ASP scripts via a request for an ASP script that ends with a URL-encoded space character (%20). NVD-CWE-Other
CVE-2001-1248 2008-09-11 04:10 2001-06-29 Show GitHub Exploit DB Packet Storm
347273 - vwebserver vwebserver vWebServer 1.2.0 allows remote attackers to cause a denial of service via a URL that contains MS-DOS device names. NVD-CWE-Other
CVE-2001-1249 2008-09-11 04:10 2001-06-29 Show GitHub Exploit DB Packet Storm
347274 - vwebserver vwebserver vWebServer 1.2.0 allows remote attackers to cause a denial of service (hang) via a small number of long URL requests, possibly due to a buffer overflow. NVD-CWE-Other
CVE-2001-1250 2008-09-11 04:10 2001-06-29 Show GitHub Exploit DB Packet Storm
347275 - max_feoktistov
vwebserver 		small_http_server
vwebserver 		SmallHTTP 1.204 through 3.00 beta 8 allows remote attackers to cause a denial of service via multiple long URL requests. NVD-CWE-Other
CVE-2001-1251 2008-09-11 04:10 2001-06-29 Show GitHub Exploit DB Packet Storm
347276 - pgp keyserver Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin fo… NVD-CWE-Other
CVE-2001-1252 2008-09-11 04:10 2001-09-28 Show GitHub Exploit DB Packet Storm
347277 - com2001 alexis_server Web Access component for COM2001 Alexis 2.0 and 2.1 in InternetPBX sends username and voice mail passwords in the clear via a Java applet that sends the information to port 8888 of the server, which … NVD-CWE-Other
CVE-2001-1254 2008-09-11 04:10 2001-09-27 Show GitHub Exploit DB Packet Storm
347278 - zope zope Zope before 2.2.4 allows partially trusted users to bypass security controls for certain methods by accessing the methods through the fmt attribute of dtml-var tags. NVD-CWE-Other
CVE-2001-1278 2008-09-11 04:10 2001-10-10 Show GitHub Exploit DB Packet Storm
347279 - lbl tcpdump Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that tri… NVD-CWE-Other
CVE-2001-1279 2008-09-11 04:10 2001-07-17 Show GitHub Exploit DB Packet Storm
347280 - ipswitch imail POP3 Server for Ipswitch IMail 7.04 and earlier generates different responses to valid and invalid user names, which allows remote attackers to determine users on the system. NVD-CWE-Other
CVE-2001-1280 2008-09-11 04:10 2001-10-12 Show GitHub Exploit DB Packet Storm