Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2571	5.3	警告 Network	WWBN	AVideo	WWBNのAVideoにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-35179	2026-04-24 11:43	2026-04-6	Show	GitHub Exploit DB Packet Storm

2572	8.8	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35196	2026-04-24 11:43	2026-04-14	Show	GitHub Exploit DB Packet Storm

2573	7.5	重要 Local	オラクル	Oracle VM VirtualBox	オラクルのOracle VM VirtualBoxにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35230	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

2574	4.9	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35234	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

2575	4.9	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35235	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

2576	4.9	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35236	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

2577	4.9	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35237	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

2578	4.9	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35238	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

2579	4.9	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35239	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

2580	4.9	警告 Network	オラクル	MySQL Server	オラクルのMySQL Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35240	2026-04-24 11:43	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315581	-		linux	linux_kernel	The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before 2.6.6, does not properly decrement the mm_count counter when an error occurs after the mm_struct for a child process has been activ…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2004-0427	2024-01-27 03:56	2004-07-7	Show	GitHub Exploit DB Packet Storm

315582	-		openbsd	openbsd	Multiple memory leaks in isakmpd in OpenBSD 3.4 and earlier allow remote attackers to cause a denial of service (memory exhaustion) via certain ISAKMP packets, as demonstrated by the Striker ISAKMP P…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2004-0222	2024-01-27 03:55	2004-05-4	Show	GitHub Exploit DB Packet Storm

315583	-		freebsd	freebsd	Memory leak in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service (memory exhaustion) via ICMP echo packets that trigger a bug in ip_output() in which the reference count fo…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2002-0574	2024-01-27 03:55	2002-07-3	Show	GitHub Exploit DB Packet Storm

315584	-		proftpd mandrakesoft debian conectiva	proftpd mandrake_linux debian_linux linux	Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2001-0136	2024-01-27 03:53	2001-03-12	Show	GitHub Exploit DB Packet Storm

315585	5.8	MEDIUM Network	chillcreations	com_ccnewsletter	Directory traversal vulnerability in the ccNewsletter (com_ccnewsletter) component 1.0.5 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter in …	CWE-22 Path Traversal	CVE-2010-0467	2024-01-27 02:44	2010-02-3	Show	GitHub Exploit DB Packet Storm

315586	9.8	CRITICAL Network	debian canonical	lintian debian_linux ubuntu_linux	Multiple directory traversal vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to overwrite arbitrary files or obtain sensitive i…	CWE-22 Path Traversal	CVE-2009-4013	2024-01-27 02:44	2010-02-3	Show	GitHub Exploit DB Packet Storm

315587	7.5	HIGH Network	ibm	websphere_application_server	IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.	CWE-178 Improper Handling of Case Sensitivity	CVE-2000-0497	2024-01-27 02:43	2000-06-8	Show	GitHub Exploit DB Packet Storm

315588	7.5	HIGH Network	unify	ewave_servletexec	Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.	CWE-178 Improper Handling of Case Sensitivity	CVE-2000-0498	2024-01-27 02:43	2000-06-8	Show	GitHub Exploit DB Packet Storm

315589	7.5	HIGH Network	bea	weblogic_server	The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.	CWE-178 Improper Handling of Case Sensitivity	CVE-2000-0499	2024-01-27 02:43	2000-06-8	Show	GitHub Exploit DB Packet Storm

315590	7.1	HIGH Local	iss	blackice_server_protection blackice_pc_protection	BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a …	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2004-1714	2024-01-27 02:21	2004-08-11	Show	GitHub Exploit DB Packet Storm