Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1341	5.4	警告 Network	WSO2	WSO2 API Manager	WSO2のWSO2 API Managerにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4867	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

1342	7.5	重要 Network	WSO2	WSO2 API Manager	WSO2のWSO2 API ManagerにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2024-8010	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

1343	5.4	警告 Network	WSO2	WSO2 Identity Server	WSO2のWSO2 Identity Serverにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2025-12624	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

1344	8.2	重要 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるHTTP リクエストスマグリングに関する脆弱性	CWE-444 HTTP リクエストスマグリング	CVE-2025-31958	2026-04-24 11:34	2026-04-21	Show	GitHub Exploit DB Packet Storm

1345	5.3	警告 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)における重要な情報の平文での送信に関する脆弱性	CWE-319 重要な情報の平文での送信	CVE-2025-31981	2026-04-24 11:34	2026-04-21	Show	GitHub Exploit DB Packet Storm

1346	6.1	警告 Network	WSO2	WSO2 API Manager WSO2 Identity Server	WSO2のWSO2 API Manager等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-6024	2026-04-24 11:34	2026-04-16	Show	GitHub Exploit DB Packet Storm

1347	6.5	警告 Network	フォーティネット	FortiOS FortiPAM FortiProxy FortiSwitch Manager	フォーティネットのFortiOS等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-61624	2026-04-24 11:34	2026-04-14	Show	GitHub Exploit DB Packet Storm

1348	5.4	警告 Network	フォーティネット	FortiSandbox FortiSandbox Cloud	フォーティネットのFortiSandbox等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-61886	2026-04-24 11:34	2026-04-14	Show	GitHub Exploit DB Packet Storm

1349	5.3	警告 Network	Apache Software Foundation	Apache Doris-MCP-Server	Apache Software FoundationのApache Doris-MCP-ServerにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-66335	2026-04-24 11:34	2026-04-20	Show	GitHub Exploit DB Packet Storm

1350	6.5	警告 Network	フォーティネット	FortiManager Cloud FortiAnalyzer FortiAnalyzer Cloud FortiManager	フォーティネットのFortiAnalyzer等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-68649	2026-04-24 11:34	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349001	-	cray	unicos	Vulnerability in accton in Cray UNICOS 6.1 and 6.0 allows local users to read arbitrary files and modify system accounting configuration.	NVD-CWE-Other	CVE-1999-1300	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm

349002	-	freebsd	freebsd	A design flaw in the Z-Modem protocol allows the remote sender of a file to execute arbitrary programs on the client, as implemented in rz in the rzsz module of FreeBSD before 2.1.5, and possibly oth…	NVD-CWE-Other	CVE-1999-1301	2008-09-6 05:19	1996-07-16	Show	GitHub Exploit DB Packet Storm

349003	-	cisco	ios	Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.	NVD-CWE-Other	CVE-1999-1306	2008-09-6 05:19	1992-12-10	Show	GitHub Exploit DB Packet Storm

349004	-	novell	unixware	Vulnerability in urestore in Novell UnixWare 1.1 allows local users to gain root privileges.	NVD-CWE-Other	CVE-1999-1307	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm

349005	-	dec	dec_openvms	Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow local users to gain privileges or cause a denial of service.	NVD-CWE-Other	CVE-1999-1315	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm

349006	-	novell	netware	Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing.	NVD-CWE-Other	CVE-1999-1320	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm

349007	-	mit	kerberos	Buffer overflow in ssh 1.2.26 client with Kerberos V enabled could allow remote attackers to cause a denial of service or execute arbitrary commands via a long DNS hostname that is not properly handl…	NVD-CWE-Other	CVE-1999-1321	2008-09-6 05:19	1998-11-5	Show	GitHub Exploit DB Packet Storm

349008	-	microsoft	windows_2000 windows_nt	When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to b…	NVD-CWE-Other	CVE-1999-1358	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm

349009	-	microsoft	windows_nt	When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT does not properly enforce policies for global groups, which could allow users to bypass restrictions…	NVD-CWE-Other	CVE-1999-1359	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm

349010	-	microsoft	windows_nt	Windows NT 4.0 allows local users to cause a denial of service via a user mode application that closes a handle that was opened in kernel mode, which causes a crash when the kernel attempts to close …	NVD-CWE-Other	CVE-1999-1360	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm