Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2501 5.4 警告
Network 		wger wger wger Projectのwgerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40353 2026-04-27 10:48 2026-04-17 Show GitHub Exploit DB Packet Storm
2502 7.6 重要
Network 		wger wger wger Projectのwgerにおける複数の脆弱性 CWE-284
CWE-862
CVE-2026-40474 2026-04-27 10:48 2026-04-17 Show GitHub Exploit DB Packet Storm
2503 9 緊急
Network 		Thymeleaf Thymeleaf Thymeleafにおける複数の脆弱性 CWE-1336
CWE-917
CVE-2026-40477 2026-04-27 10:48 2026-04-17 Show GitHub Exploit DB Packet Storm
2504 9 緊急
Network 		Thymeleaf Thymeleaf Thymeleafにおける複数の脆弱性 CWE-1336
CWE-917
CVE-2026-40478 2026-04-27 10:47 2026-04-17 Show GitHub Exploit DB Packet Storm
2505 7.1 重要
Local 		Craig J. Bass (craigjbass) ClearanceKit Craig J. Bass (craigjbass)のClearanceKitにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40599 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2506 4.4 警告
Local 		Craig J. Bass (craigjbass) ClearanceKit Craig J. Bass (craigjbass)のClearanceKitにおける保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-40604 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2507 4.8 警告
Network 		mitmproxy mitmproxy mitmproxyにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-40606 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2508 7.5 重要
Network 		coturn project coturn coturn projectのcoturnにおける不正な型変換に関する脆弱性 CWE-704
不正な型変換またはキャスト 		CVE-2026-40613 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2509 8.8 重要
Network 		goshs goshs goshsにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40876 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2510 7.5 重要
Network 		- NestJSにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-40879 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348001 - isc bind Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges. NVD-CWE-Other
CVE-2001-0010 2008-09-11 04:07 2001-02-12 Show GitHub Exploit DB Packet Storm
348002 - isc bind Buffer overflow in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges. NVD-CWE-Other
CVE-2001-0011 2008-09-11 04:07 2001-02-12 Show GitHub Exploit DB Packet Storm
348003 - isc bind BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variables. NVD-CWE-Other
CVE-2001-0012 2008-09-11 04:07 2001-02-12 Show GitHub Exploit DB Packet Storm
348004 - isc bind Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges. NVD-CWE-Other
CVE-2001-0013 2008-09-11 04:07 2001-02-12 Show GitHub Exploit DB Packet Storm
348005 - guido_frassetto sedum SEDUM 2.1 HTTP server allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP request. NVD-CWE-Other
CVE-2001-0282 2008-09-11 04:07 2001-05-3 Show GitHub Exploit DB Packet Storm
348006 - openbsd openbsd Buffer overflow in IPSEC authentication mechanism for OpenBSD 2.8 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a malformed Authenticati… NVD-CWE-Other
CVE-2001-0284 2008-09-11 04:07 2001-05-3 Show GitHub Exploit DB Packet Storm
348007 - mozilla bugzilla Bugzilla 2.10 allows remote attackers to execute arbitrary commands via shell metacharacters in a username that is then processed by (1) the Bugzilla_login cookie in post_bug.cgi, or (2) the who para… NVD-CWE-Other
CVE-2001-0329 2008-09-11 04:07 2001-06-27 Show GitHub Exploit DB Packet Storm
348008 - imatix xitami Xitami 2.5d4 and earlier allows remote attackers to crash the server via an HTTP request to the /aux directory. NVD-CWE-Other
CVE-2001-0391 2008-09-11 04:07 2001-07-2 Show GitHub Exploit DB Packet Storm
348009 - qpc_software qvt_net
qvt_term_plus 		Buffer overflow in QPC QVT/Net Popd 4.20 in QVT/Net 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via (1) a long username, or (2) a long password. NVD-CWE-Other
CVE-2001-0443 2008-09-11 04:07 2001-07-2 Show GitHub Exploit DB Packet Storm
348010 - xavier_ducrohet felix Felix IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL. NVD-CWE-Other
CVE-2000-1150 2008-09-11 04:06 2001-01-9 Show GitHub Exploit DB Packet Storm