Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1101 5.4 警告
Network 		Istio Istio Istioにおける複数の脆弱性 CWE-185
CWE-863
CVE-2026-39350 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1102 6.5 警告
Network 		Project Jupyter nbconvert Project Jupyterのnbconvertにおける複数の脆弱性 CWE-22
CWE-73
CVE-2026-39377 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
1103 6.5 警告
Network 		Project Jupyter nbconvert Project Jupyterのnbconvertにおける複数の脆弱性 CWE-22
CWE-73
CVE-2026-39378 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
1104 7.2 重要
Network 		boidcms boidcms boidcmsにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2026-39387 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
1105 9.9 緊急
Network 		openremote openremote openremoteにおける複数の脆弱性 CWE-917
CWE-94
CVE-2026-39842 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1106 10 緊急
Network 		Anthropic PBC Claude Code Anthropic PBCのClaude Codeにおける複数の脆弱性 CWE-22
CWE-61
CVE-2026-39861 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
1107 8.1 重要
Network 		Suyog Sonwalkar MCP Server Kubernetes Suyog SonwalkarのMCP Server Kubernetesにおける引数の挿入または変更に関する脆弱性 CWE-88
引数の挿入または変更 		CVE-2026-39884 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1108 6.5 警告
Network 		jqlang jq jqlangのjqにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-39979 2026-04-27 11:21 2026-04-13 Show GitHub Exploit DB Packet Storm
1109 5.5 警告
Local 		Linux Foundation Sigstore Timestamp Authority Linux FoundationのSigstore Timestamp Authorityにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-39984 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1110 7.1 重要
Network 		lfprojects Zarf lfprojectsのZarfにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40090 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314131 - microsoft internet_explorer
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_2000 		Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and… NVD-CWE-Other
CVE-2010-0555 2023-12-8 03:38 2010-02-5 Show GitHub Exploit DB Packet Storm
314132 - microsoft internet_explorer Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) i… CWE-94
Code Injection 		CVE-2010-0246 2023-12-8 03:38 2010-01-23 Show GitHub Exploit DB Packet Storm
314133 - microsoft internet_explorer Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) i… CWE-94
Code Injection 		CVE-2010-0245 2023-12-8 03:38 2010-01-23 Show GitHub Exploit DB Packet Storm
314134 - microsoft internet_explorer Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly ini… CWE-94
Code Injection 		CVE-2010-0244 2023-12-8 03:38 2010-01-23 Show GitHub Exploit DB Packet Storm
314135 - microsoft internet_explorer
windows_7
windows_server_2003
windows_server_2008
windows_vista
windows_xp
windows_2000
windows_2003_server 		The URL validation functionality in Microsoft Internet Explorer 5.01, 6, 6 SP1, 7 and 8, and the ShellExecute API function in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, does not properly … CWE-94
Code Injection 		CVE-2010-0027 2023-12-8 03:38 2010-01-23 Show GitHub Exploit DB Packet Storm
314136 - - - Rejected reason: CVE request originates from private repository - CVE-2023-49787 2023-12-8 03:15 2023-12-8 Show GitHub Exploit DB Packet Storm
314137 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it's a duplicate of CVE-2023-39169. - CVE-2023-39170 2023-12-8 00:15 2023-12-8 Show GitHub Exploit DB Packet Storm
314138 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it's a duplicate of CVE-2023-39167. - CVE-2023-39168 2023-12-7 23:15 2023-12-7 Show GitHub Exploit DB Packet Storm
314139 9.8 CRITICAL
Network 		- - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2022-28958 2023-11-30 06:15 2022-05-18 Show GitHub Exploit DB Packet Storm
314140 - acme_labs thttpd Multiple buffer overflows in htpasswd, as used in Acme thttpd 2.25b, and possibly other products such as Apache, might allow local users to gain privileges via (1) a long command line argument and (2… NVD-CWE-Other
CVE-2006-1078 2023-11-29 02:15 2006-03-9 Show GitHub Exploit DB Packet Storm