Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2031 6.5 警告
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40160 2026-04-21 10:44 2026-04-10 Show GitHub Exploit DB Packet Storm
2032 8.1 重要
Network 		b3log SiYuan B3logのSiYuanにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-40259 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2033 8.4 重要
Local 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品における複数の脆弱性 CWE-426
CWE-94
CVE-2026-40287 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2034 9.8 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品における複数の脆弱性 CWE-78
CWE-94
CVE-2026-40288 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2035 9.1 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-40289 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2036 9.8 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-40315 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2037 8.5 重要
Network 		b3log SiYuan B3logのSiYuanにおけるパストラバーサルの脆弱性 CWE-24
パストラバーサル (../filedir) 		CVE-2026-40318 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2038 9 緊急
Network 		b3log SiYuan B3logのSiYuanにおける複数の脆弱性 CWE-79
CWE-94
CVE-2026-40322 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
2039 7.2 重要
Network 		フォーティネット Fortiweb フォーティネットのFortiwebにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-40688 2026-04-21 10:44 2026-04-14 Show GitHub Exploit DB Packet Storm
2040 6.5 警告
Network 		DataEase DataEase DataEaseにおける許容された入力値の許可リストに関する脆弱性 CWE-183
許容された入力値の許可リスト 		CVE-2026-40899 2026-04-21 10:44 2026-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348351 - apple
kde 		safari
konqueror_embedded 		Safari 1.0 Beta 2 (v73) and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates. NVD-CWE-Other
CVE-2003-0355 2008-09-6 05:34 2003-06-9 Show GitHub Exploit DB Packet Storm
348352 - stichting_mathematisch_centrum nethack nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code. NVD-CWE-Other
CVE-2003-0359 2008-09-6 05:34 2003-07-24 Show GitHub Exploit DB Packet Storm
348353 - debian debian_linux Multiple buffer overflows in gPS before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code. NVD-CWE-Other
CVE-2003-0360 2008-09-6 05:34 2003-06-9 Show GitHub Exploit DB Packet Storm
348354 - debian debian_linux gPS before 1.1.0 does not properly follow the rgpsp connection source acceptation policy as specified in the rgpsp.conf file, which could allow unauthorized remote attackers to connect to rgpsp. NVD-CWE-Other
CVE-2003-0361 2008-09-6 05:34 2003-06-9 Show GitHub Exploit DB Packet Storm
348355 - debian debian_linux Buffer overflow in gPS before 0.10.2 may allow local users to cause a denial of service (SIGSEGV) in rgpsp via long command lines. NVD-CWE-Other
CVE-2003-0362 2008-09-6 05:34 2003-06-9 Show GitHub Exploit DB Packet Storm
348356 - licq licq Format string vulnerability in LICQ 1.2.6, 1.0.3 and possibly other versions allows remote attackers to perform unknown actions via format string specifiers. NVD-CWE-Other
CVE-2003-0363 2008-09-6 05:34 2003-12-31 Show GitHub Exploit DB Packet Storm
348357 - lysator lyskom-server lyskom-server 2.0.7 and earlier allows unauthenticated users to cause a denial of service (CPU consumption) via a large query. NVD-CWE-Other
CVE-2003-0366 2008-09-6 05:34 2003-07-24 Show GitHub Exploit DB Packet Storm
348358 - apple mac_os_x The Kerberos login authentication feature in Mac OS X, when used with an LDAPv3 server and LDAP bind authentication, may send cleartext passwords to the LDAP server when the AuthenticationAuthority a… NVD-CWE-Other
CVE-2003-0378 2008-09-6 05:34 2003-06-16 Show GitHub Exploit DB Packet Storm
348359 - atftpd atftpd Buffer overflow in atftp daemon (atftpd) 0.6.1 and earlier, and possibly later versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long fi… NVD-CWE-Other
CVE-2003-0380 2008-09-6 05:34 2003-07-2 Show GitHub Exploit DB Packet Storm
348360 - norman_ramsey noweb Multiple vulnerabilities in noweb 2.9 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files via multiple vectors including the noroff script. NVD-CWE-Other
CVE-2003-0381 2008-09-6 05:34 2003-07-24 Show GitHub Exploit DB Packet Storm