Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2271 5.5 警告
Local 		フォーティネット FortiClientEMS フォーティネットのFortiClientEMSにおけるハードコードされた暗号鍵の使用に関する脆弱性 CWE-321
ハードコードされた暗号鍵の使用 		CVE-2026-39810 2026-04-23 10:11 2026-04-14 Show GitHub Exploit DB Packet Storm
2272 4.9 警告
Network 		フォーティネット Fortiweb フォーティネットのFortiwebにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-39811 2026-04-23 10:11 2026-04-14 Show GitHub Exploit DB Packet Storm
2273 4.8 警告
Network 		フォーティネット FortiSandbox
FortiSandbox Cloud 		フォーティネットのFortiSandbox等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-39812 2026-04-23 10:11 2026-04-14 Show GitHub Exploit DB Packet Storm
2274 6.7 警告
Local 		フォーティネット Fortiweb フォーティネットのFortiwebにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-39814 2026-04-23 10:11 2026-04-14 Show GitHub Exploit DB Packet Storm
2275 4.1 警告
Network 		Weblate Weblate Weblateにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-39845 2026-04-23 10:11 2026-04-15 Show GitHub Exploit DB Packet Storm
2276 5.9 警告
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 CWE-400
CWE-662
CVE-2026-39865 2026-04-23 10:11 2026-04-8 Show GitHub Exploit DB Packet Storm
2277 6.1 警告
Local 		jqlang jq jqlangのjqにおける複数の脆弱性 CWE-125
CWE-476
CWE-843
CVE-2026-39956 2026-04-23 10:11 2026-04-13 Show GitHub Exploit DB Packet Storm
2278 7.2 重要
Network 		citeum opencti citeumのopenctiにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性 CWE-1336
テンプレートエンジンで使用される特殊な要素の不適切な無効化 		CVE-2026-39980 2026-04-23 10:11 2026-04-9 Show GitHub Exploit DB Packet Storm
2279 6.1 警告
Network 		McGill University LORIS (Longitudinal Online Research and Imaging System) McGill UniversityのLORIS (Longitudinal Online Research and Imaging System)におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-39985 2026-04-23 10:11 2026-04-9 Show GitHub Exploit DB Packet Storm
2280 5.3 警告
Network 		Apache Software Foundation Apache Log4cxx Apache Software FoundationのApache Log4cxxにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-40023 2026-04-23 10:11 2026-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314801 - microsoft windows_7
windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The Authenticode Signature verification functionality in cabview.dll in Cabinet File Viewer Shell Extension 5.1, 6.0, and 6.1 in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 200… CWE-20
 Improper Input Validation  		CVE-2010-0487 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314802 - microsoft windows_7
windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The WinVerifyTrust function in Authenticode Signature Verification 5.1, 6.0, and 6.1 in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, … CWE-20
 Improper Input Validation  		CVE-2010-0486 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314803 - microsoft windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		Multiple stack-based buffer overflows in the MPEG Layer-3 audio codecs in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow rem… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0480 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314804 - microsoft windows_7
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The SMB client in Microsoft Windows Server 2003 SP2, Vista Gold, SP1, and SP2, and Windows Server 2008 Gold and SP2 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code… CWE-399
 Resource Management Errors 		CVE-2010-0476 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314805 - microsoft windows_7
windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The SMB client in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly… CWE-399
 Resource Management Errors 		CVE-2010-0269 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314806 - microsoft windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 does not properly validate a registry-key argument to an unspecified … CWE-20
 Improper Input Validation  		CVE-2010-0234 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314807 - microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista 		Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, leading to memory corruption, aka "HTM… CWE-94
Code Injection 		CVE-2010-0807 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm
314808 - microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_7
windows_2000 		Cross-domain vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via … CWE-200
Information Exposure 		CVE-2010-0494 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm
314809 - microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_7 		Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly ini… CWE-94
Code Injection 		CVE-2010-0490 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm
314810 - microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_2000 		Race condition in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a crafted HTML document that triggers memory corruption, aka "Race Condit… CWE-362
Race Condition 		CVE-2010-0489 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm