Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1531 7.1 重要
Network 		lfprojects Zarf lfprojectsのZarfにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40090 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1532 4.4 警告
Local 		Authzed, Inc. SpiceDB Authzed, Inc.のSpiceDBにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-40091 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1533 5.4 警告
Network 		OpenMage Magento OpenMageのMagentoにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40098 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
1534 7.5 重要
Network 		free5gc free5gc free5GCにおける複数の脆弱性 CWE-285
CWE-636
CVE-2026-40248 2026-04-27 11:21 2026-04-16 Show GitHub Exploit DB Packet Storm
1535 5.8 警告
Network 		free5gc free5gc
udr 		free5GCのfree5GC等の複数製品における例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-40343 2026-04-27 11:21 2026-04-22 Show GitHub Exploit DB Packet Storm
1536 8.8 重要
Network 		OpenMage Magento OpenMageのMagentoにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-40488 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
1537 9.1 緊急
Network 		FreeScout FreeScout FreeScoutにおける複数の脆弱性 CWE-330
CWE-340
CVE-2026-40496 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
1538 8.1 重要
Network 		FreeScout FreeScout FreeScoutにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40497 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
1539 8.8 重要
Network 		PJSIP pjsip PJSIPのpjsipにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40614 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
1540 6.5 警告
Network 		decidim decidim Decidim Free Software AssociationのDecidimにおける不適切な権限設定に関する脆弱性 CWE-266
不適切な権限設定 		CVE-2026-40869 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347411 - university_of_washington imap Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands. NVD-CWE-Other
CVE-2000-0284 2008-09-11 04:04 2000-04-16 Show GitHub Exploit DB Packet Storm
347412 - xfree86_project x11r6 Buffer overflow in XFree86 3.3.x allows local users to execute arbitrary commands via a long -xkbmap parameter. NVD-CWE-Other
CVE-2000-0285 2008-09-11 04:04 2000-04-16 Show GitHub Exploit DB Packet Storm
347413 - redhat linux X fontserver xfs allows local users to cause a denial of service via malformed input to the server. NVD-CWE-Other
CVE-2000-0286 2008-09-11 04:04 2000-04-16 Show GitHub Exploit DB Packet Storm
347414 - cnc technology_bizdb The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter. NVD-CWE-Other
CVE-2000-0287 2008-09-11 04:04 2000-04-12 Show GitHub Exploit DB Packet Storm
347415 - - - Infonautics getdoc.cgi allows remote attackers to bypass the payment phase for accessing documents via a modified form variable. NVD-CWE-Other
CVE-2000-0288 2008-09-11 04:04 2000-04-12 Show GitHub Exploit DB Packet Storm
347416 - debian
linux
redhat 		debian_linux
linux_kernel
linux 		IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established… NVD-CWE-Other
CVE-2000-0289 2008-09-11 04:04 2000-03-27 Show GitHub Exploit DB Packet Storm
347417 - sun staroffice Buffer overflow in Star Office 5.1 allows attackers to cause a denial of service by embedding a long URL within a document. NVD-CWE-Other
CVE-2000-0291 2008-09-11 04:04 2000-04-16 Show GitHub Exploit DB Packet Storm
347418 - suse suse_linux aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa… NVD-CWE-Other
CVE-2000-0293 2008-09-11 04:04 2000-05-2 Show GitHub Exploit DB Packet Storm
347419 - jim_housley healthd Buffer overflow in healthd for FreeBSD allows local users to gain root privileges. NVD-CWE-Other
CVE-2000-0294 2008-09-11 04:04 2000-04-10 Show GitHub Exploit DB Packet Storm
347420 - michael_a._gumienny fcheck fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck. NVD-CWE-Other
CVE-2000-0296 2008-09-11 04:04 2000-03-31 Show GitHub Exploit DB Packet Storm