Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Impact Show	Exploit PoC Search
221	9.1	緊急 Network	Technostrobe	HI-LED-WR120-G2 Firmware	TechnostrobeのHI-LED-WR120-G2 Firmwareにおける複数の脆弱性 New	CWE-862 CWE-863	CVE-2026-5574	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

222	7.1	重要 Local	レッドハット Xiph.Org	Red Hat Enterprise Linux Theora	レッドハット等の複数ベンダの製品における境界外読み取りに関する脆弱性 New	CWE-125 境界外読み取り	CVE-2026-5673	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

223	9.8	緊急 Network	Sipeed	Picoclaw	SipeedのPicoclawにおける複数の脆弱性 New	CWE-74 CWE-77	CVE-2026-6987	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

224	8.8	重要 Network	Coze	Coze Studio	CozeのCoze Studioにおける複数の脆弱性 New	CWE-74 CWE-89	CVE-2026-7023	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

225	7.3	重要 Network	ShadowCloneLabs	Glutamate MCP Servers	ShadowCloneLabsのGlutamate MCP Serversにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-7094	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

226	5.4	警告 Network	helpy.io	helpy	helpy.ioのhelpyにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40229	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

227	5.4	警告 Network	helpy.io	helpy	helpy.ioのhelpyにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40230	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

228	7.5	重要 Network	Exim Development	Exim	Exim DevelopmentのEximにおける指定された機能の不適切な提供に関する脆弱性 New	CWE-684 指定された機能の不適切な提供	CVE-2026-40684	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

229	9.8	緊急 Network	Exim Development	Exim	Exim DevelopmentのEximにおける複数の脆弱性 New	CWE-684 CWE-787	CVE-2026-40685	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

230	5.3	警告 Network	Exim Development	Exim	Exim DevelopmentのEximにおける境界外読み取りに関する脆弱性 New	CWE-125 境界外読み取り	CVE-2026-40686	2026-05-7 12:00	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350351	-	sendmail	sendmail	Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129.	NVD-CWE-Other	CVE-1999-1592	2008-09-6 05:19	1999-12-31	Show	GitHub Exploit DB Packet Storm

350352	-	allaire	coldfusion_server	Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls.	NVD-CWE-Other	CVE-1999-0923	2008-09-6 05:18	2001-03-12	Show	GitHub Exploit DB Packet Storm

350353	-	apache	http_server	Apache allows remote attackers to conduct a denial of service via a large number of MIME headers.	NVD-CWE-Other	CVE-1999-0926	2008-09-6 05:18	1999-09-3	Show	GitHub Exploit DB Packet Storm

350354	-	hp	vvos	HP VirtualVault with the PHSS_17692 patch allows unprivileged processes to bypass access restrictions via the Trusted Gateway Proxy (TGP).	NVD-CWE-Other	CVE-1999-0992	2008-09-6 05:18	2000-01-18	Show	GitHub Exploit DB Packet Storm

350355	-	millenux_gmbh university_of_washington redhat	anonftp wu-ftpd linux	wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.	NVD-CWE-Other	CVE-1999-0997	2008-09-6 05:18	1999-12-20	Show	GitHub Exploit DB Packet Storm

350356	-	lotus	domino	SMTP component of Lotus Domino 4.6.1 on AS/400, and possibly other operating systems, allows a remote attacker to crash the mail server via a long string.	NVD-CWE-Other	CVE-1999-1012	2008-09-6 05:18	1999-05-4	Show	GitHub Exploit DB Packet Storm

350357	-	cisco	resource_manager	Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which may expose sensitive information, to local users such as user IDs, passwords and SNMP community st…	NVD-CWE-Other	CVE-1999-1042	2008-09-6 05:18	1999-12-31	Show	GitHub Exploit DB Packet Storm

350358	-	matt_wright	formhandler.cgi	Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to…	NVD-CWE-Other	CVE-1999-1051	2008-09-6 05:18	1999-11-16	Show	GitHub Exploit DB Packet Storm

350359	-	apache matt_wright	http_server matt_wright_guestbook	guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1…	NVD-CWE-Other	CVE-1999-1053	2008-09-6 05:18	1999-09-13	Show	GitHub Exploit DB Packet Storm

350360	-	digital	vms	VMS 4.0 through 5.3 allows local users to gain privileges via the ANALYZE/PROCESS_DUMP dcl command.	NVD-CWE-Other	CVE-1999-1057	2008-09-6 05:18	1990-10-25	Show	GitHub Exploit DB Packet Storm