Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1101 5.4 警告
Network 		Istio Istio Istioにおける複数の脆弱性 CWE-185
CWE-863
CVE-2026-39350 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1102 6.5 警告
Network 		Project Jupyter nbconvert Project Jupyterのnbconvertにおける複数の脆弱性 CWE-22
CWE-73
CVE-2026-39377 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
1103 6.5 警告
Network 		Project Jupyter nbconvert Project Jupyterのnbconvertにおける複数の脆弱性 CWE-22
CWE-73
CVE-2026-39378 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
1104 7.2 重要
Network 		boidcms boidcms boidcmsにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2026-39387 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
1105 9.9 緊急
Network 		openremote openremote openremoteにおける複数の脆弱性 CWE-917
CWE-94
CVE-2026-39842 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1106 10 緊急
Network 		Anthropic PBC Claude Code Anthropic PBCのClaude Codeにおける複数の脆弱性 CWE-22
CWE-61
CVE-2026-39861 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
1107 8.1 重要
Network 		Suyog Sonwalkar MCP Server Kubernetes Suyog SonwalkarのMCP Server Kubernetesにおける引数の挿入または変更に関する脆弱性 CWE-88
引数の挿入または変更 		CVE-2026-39884 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1108 6.5 警告
Network 		jqlang jq jqlangのjqにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-39979 2026-04-27 11:21 2026-04-13 Show GitHub Exploit DB Packet Storm
1109 5.5 警告
Local 		Linux Foundation Sigstore Timestamp Authority Linux FoundationのSigstore Timestamp Authorityにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-39984 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1110 7.1 重要
Network 		lfprojects Zarf lfprojectsのZarfにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40090 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349371 - webteacher webdata Webteachers Webdata allows remote attackers with valid Webdata accounts to read arbitrary files by posting a request to import the file into the WebData database. NVD-CWE-Other
CVE-2000-1017 2008-09-6 05:22 2000-12-11 Show GitHub Exploit DB Packet Storm
349372 - checkpoint firewall-1 Check Point Firewall-1 session agent 3.0 through 4.1 generates different error messages for invalid user names versus invalid passwords, which allows remote attackers to determine valid usernames and… NVD-CWE-Other
CVE-2000-1037 2008-09-6 05:22 2000-12-11 Show GitHub Exploit DB Packet Storm
349373 - lotus domino Multiple buffer overflows in the ESMTP service of Lotus Domino 5.0.2c and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via long (1) "RCPT TO," (2) "… NVD-CWE-Other
CVE-2000-1046 2008-09-6 05:22 2000-12-11 Show GitHub Exploit DB Packet Storm
349374 - sonicwall soho_firewall The web server for the SonicWALL SOHO firewall allows remote attackers to cause a denial of service via an empty GET or POST request. NVD-CWE-Other
CVE-2000-1098 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
349375 - trlinux postaci_webmail The default configuration for PostACI webmail system installs the /includes/global.inc configuration file within the web root, which allows remote attackers to read sensitive information such as data… NVD-CWE-Other
CVE-2000-1100 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
349376 - texas_imperial_software wftpd Directory traversal vulnerability in Winsock FTPd (WFTPD) 3.00 and 2.41 with the "Restrict to home directory" option enabled allows local users to escape the home directory via a "/../" string, a var… NVD-CWE-Other
CVE-2000-1101 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
349377 - ptlink ptlink_irc_services
ptlink_ircd 		PTlink IRCD 3.5.3 and PTlink Services 1.8.1 allow remote attackers to cause a denial of service (server crash) via "mode +owgscfxeb" and "oper" commands. NVD-CWE-Other
CVE-2000-1102 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
349378 - bsdi bsd_os rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on the command li… NVD-CWE-Other
CVE-2000-1103 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
349379 - microsoft indexing_service The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the existence of files on visiting Windows 2000 sy… NVD-CWE-Other
CVE-2000-1105 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm
349380 - ibm net.data document.d2w CGI program in the IBM Net.Data db2www package allows remote attackers to determine the physical path of the web server by sending a nonexistent command to the program. NVD-CWE-Other
CVE-2000-1110 2008-09-6 05:22 2001-01-9 Show GitHub Exploit DB Packet Storm