Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
91 9.1 緊急
Network 		axios project axios axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 New CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2026-42264 2026-05-15 11:00 2026-05-8 Show GitHub Exploit DB Packet Storm
92 5.7 警告
Network 		Kimai project kimai Kimai projectのKimaiにおけるCSV ファイル内の数式要素の中和に関する脆弱性 New CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2026-42267 2026-05-15 11:00 2026-05-8 Show GitHub Exploit DB Packet Storm
93 7.5 重要
Network 		The Go Project Go The Go ProjectのGoにおける不特定の脆弱性 New CWE-noinfo
情報不足 		CVE-2026-42499 2026-05-15 11:00 2026-05-7 Show GitHub Exploit DB Packet Storm
94 7.5 重要
Network 		The Go Project Go The Go ProjectのGoにおけるデジタル署名の検証に関する脆弱性 New CWE-347
デジタル署名の不適切な検証 		CVE-2026-42501 2026-05-15 11:00 2026-05-7 Show GitHub Exploit DB Packet Storm
95 9.1 緊急
Network 		Grav CMS grav Grav CMSのgravにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-42608 2026-05-15 11:00 2026-05-11 Show GitHub Exploit DB Packet Storm
96 5.4 警告
Network 		Open edX openedx Open edXのopenedxにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42857 2026-05-15 11:00 2026-05-11 Show GitHub Exploit DB Packet Storm
97 9.9 緊急
Network 		Open edX openedx Open edXのopenedxにおけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-42858 2026-05-15 11:00 2026-05-11 Show GitHub Exploit DB Packet Storm
98 7.5 重要
Network 		マイクロソフト Microsoft Outlook Microsoft Outlook for iOS の改ざんの脆弱性 New CWE-77
コマンドインジェクション 		CVE-2026-42893 2026-05-15 11:00 2026-05-12 Show GitHub Exploit DB Packet Storm
99 7.5 重要
Network 		マイクロソフト .NET ASP.NET Core のサービス拒否の脆弱性 New CWE-835
無限ループ 		CVE-2026-42899 2026-05-15 11:00 2026-05-12 Show GitHub Exploit DB Packet Storm
100 8.6 重要
Network 		Linux Linux Kernel LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性 New CWE-908
初期化されていないリソースの使用 		CVE-2026-43139 2026-05-15 11:00 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352781 - maximizer maximizer_enterprise By design, Maximizer Enterprise 4 calendar and address book program allows arbitrary users to modify the calendar of other users when the calendar is being shared. NVD-CWE-Other
CVE-1999-1172 2008-09-6 05:18 1999-01-14 Show GitHub Exploit DB Packet Storm
352782 - sysadmin_magazine man.sh Vulnerability in man.sh CGI script, included in May 1998 issue of SysAdmin Magazine, allows remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-1999-1179 2008-09-6 05:18 1998-05-15 Show GitHub Exploit DB Packet Storm
352783 - sgi irix Vulnerability in On-Line Customer Registration software for IRIX 6.2 through 6.4 allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-1181 2008-09-6 05:18 1998-09-29 Show GitHub Exploit DB Packet Storm
352784 - admiral_systems emailclub Buffer overflow in POP3 server of Admiral Systems EmailClub 1.05 allows remote attackers to execute arbitrary commands via a long "From" header in an e-mail message. NVD-CWE-Other
CVE-1999-1190 2008-09-6 05:18 1999-11-15 Show GitHub Exploit DB Packet Storm
352785 - hummingbird exceed Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed data to port 6000. NVD-CWE-Other
CVE-1999-1196 2008-09-6 05:18 1999-04-7 Show GitHub Exploit DB Packet Storm
352786 - hummingbird exceed Upgrade to a non-vulnerable version of Exceed (Hummingbird Exceed 6.0.1 Hummingbird Exceed 6.0.2 Hummingbird Exceed 6.1) NVD-CWE-Other
CVE-1999-1196 2008-09-6 05:18 1999-04-7 Show GitHub Exploit DB Packet Storm
352787 - sun sunos TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect console output and input, which could allow a local user to gain privileges. NVD-CWE-Other
CVE-1999-1197 2008-09-6 05:18 1990-12-20 Show GitHub Exploit DB Packet Storm
352788 - next next BuildDisk program on NeXT systems before 2.0 does not prompt users for the root password, which allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-1198 2008-09-6 05:18 1990-10-3 Show GitHub Exploit DB Packet Storm
352789 - linux linux_kernel Denial of service in Linux 2.2.0 running the ldd command on a core file. NVD-CWE-Other
CVE-1999-0400 2008-09-6 05:17 1999-01-26 Show GitHub Exploit DB Packet Storm
352790 - linux linux_kernel Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any non-privileged port. NVD-CWE-Other
CVE-1999-0451 2008-09-6 05:17 1999-01-19 Show GitHub Exploit DB Packet Storm