Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
171 4.4 警告
Local 		OpenClaw OpenClaw OpenClawにおける変数の安全ではないデフォルト値への初期化に関する脆弱性 New CWE-453
変数の安全ではないデフォルト値への初期化 		CVE-2026-41330 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
172 9.8 緊急
Network 		socialengine socialengine socialengineにおけるSQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2026-41460 2026-04-30 12:26 2026-04-23 Show GitHub Exploit DB Packet Storm
173 8.5 重要
Network 		socialengine socialengine socialengineにおけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41461 2026-04-30 12:26 2026-04-23 Show GitHub Exploit DB Packet Storm
174 7.7 重要
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける到達可能なアサーションに関する脆弱性 New CWE-617
到達可能なアサーション 		CVE-2026-41485 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
175 4 警告
Local 		The GnuPG Project Libgcrypt The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性 New CWE-787
境界外書き込み 		CVE-2026-41990 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
176 7.4 重要
Network 		axios project axios axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 New CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2026-42033 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
177 5.3 警告
Network 		axios project axios axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42034 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
178 7.4 重要
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 New CWE-113
CWE-1321
CVE-2026-42035 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
179 5.3 警告
Network 		axios project axios axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42036 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
180 5.3 警告
Network 		axios project axios axios projectのaxiosにおけるCRLF インジェクションの脆弱性 New CWE-93
CRLF インジェクション 		CVE-2026-42037 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349251 - sun sunos TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect console output and input, which could allow a local user to gain privileges. NVD-CWE-Other
CVE-1999-1197 2008-09-6 05:18 1990-12-20 Show GitHub Exploit DB Packet Storm
349252 - next next BuildDisk program on NeXT systems before 2.0 does not prompt users for the root password, which allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-1198 2008-09-6 05:18 1990-10-3 Show GitHub Exploit DB Packet Storm
349253 - linux linux_kernel Denial of service in Linux 2.2.0 running the ldd command on a core file. NVD-CWE-Other
CVE-1999-0400 2008-09-6 05:17 1999-01-26 Show GitHub Exploit DB Packet Storm
349254 - linux linux_kernel Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any non-privileged port. NVD-CWE-Other
CVE-1999-0451 2008-09-6 05:17 1999-01-19 Show GitHub Exploit DB Packet Storm
349255 - linux linux_kernel Buffer overflow in Linux autofs module through long directory names allows local users to perform a denial of service. NVD-CWE-Other
CVE-1999-0460 2008-09-6 05:17 1999-02-19 Show GitHub Exploit DB Packet Storm
349256 - allaire coldfusion_server The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not restrict access to the server properly. NVD-CWE-Other
CVE-1999-0477 2008-09-6 05:17 1999-12-25 Show GitHub Exploit DB Packet Storm
349257 - netscape enterprise_server
fasttrack_server 		Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request. NVD-CWE-Other
CVE-1999-0744 2008-09-6 05:17 2000-01-4 Show GitHub Exploit DB Packet Storm
349258 - oracle database_server Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP. NVD-CWE-Other
CVE-1999-0784 2008-09-6 05:17 2001-03-12 Show GitHub Exploit DB Packet Storm
349259 - freebsd freebsd TCP RST denial of service in FreeBSD. NVD-CWE-Other
CVE-1999-0053 2008-09-6 05:16 1998-10-13 Show GitHub Exploit DB Packet Storm
349260 - ssh ssh A race condition in the authentication agent mechanism of sshd 1.2.17 allows an attacker to steal another user's credentials. NVD-CWE-Other
CVE-1999-0248 2008-09-6 05:16 1999-01-1 Show GitHub Exploit DB Packet Storm