Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2601	5.3	警告 Network	Apache Software Foundation	Apache log4net	Apache Software FoundationのApache log4netにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-40021	2026-04-24 11:42	2026-04-10	Show	GitHub Exploit DB Packet Storm

2602	5.3	警告 Network	Daniel Gatis	Rembg	Daniel GatisのRembgにおける複数の脆弱性	CWE-22 CWE-73	CVE-2026-40086	2026-04-24 11:42	2026-04-10	Show	GitHub Exploit DB Packet Storm

2603	5.4	警告 Network	FUTO	Immich	FUTOのImmichにおける複数の脆弱性	CWE-601 CWE-79	CVE-2026-40096	2026-04-24 11:42	2026-04-15	Show	GitHub Exploit DB Packet Storm

2604	8.2	重要 Network	XWiki	xwiki	XWikiのxwikiにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-40104	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

2605	6.1	警告 Network	XWiki	xwiki	XWikiのxwikiにおけるクロスサイトスクリプティングの脆弱性	CWE-80 クロスサイトスクリプティング (Basic XSS)	CVE-2026-40105	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

2606	6.1	警告 Network	Prometheus	Prometheus	Prometheusにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40179	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

2607	7.5	重要 Network	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-40192	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

2608	8.2	重要 Network	maddy project	maddy	maddy projectのmaddyにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-40193	2026-04-24 11:41	2026-04-16	Show	GitHub Exploit DB Packet Storm

2609	7.1	重要 Local	OpenEXR	OpenEXR	OpenEXRにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-40244	2026-04-24 11:41	2026-04-21	Show	GitHub Exploit DB Packet Storm

2610	7.1	重要 Local	OpenEXR	OpenEXR	OpenEXRにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-40250	2026-04-24 11:41	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348311	-	deerfield	mdaemon	Denial of service in MDaemon WorldClient and WebConfig services via a long URL.	NVD-CWE-Other	CVE-1999-0844	2008-09-9 21:36	1999-11-24	Show	GitHub Exploit DB Packet Storm

348312	-	isc	bind	Denial of service in BIND named via maxdname.	NVD-CWE-Other	CVE-1999-0849	2008-09-9 21:36	1999-11-10	Show	GitHub Exploit DB Packet Storm

348313	-	endymion	mailman_webmail	The default permissions for Endymion MailMan allow local users to read email or modify files.	NVD-CWE-Other	CVE-1999-0850	2008-09-9 21:36	1999-12-2	Show	GitHub Exploit DB Packet Storm

348314	-	ibm	websphere_application_server	IBM WebSphere sets permissions that allow a local user to modify a deinstallation script or its data files stored in /usr/bin.	NVD-CWE-Other	CVE-1999-0852	2008-09-9 21:36	1999-12-2	Show	GitHub Exploit DB Packet Storm

348315	-	netscape	enterprise_server fasttrack_server	Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure.	NVD-CWE-Other	CVE-1999-0853	2008-09-9 21:36	1999-12-1	Show	GitHub Exploit DB Packet Storm

348316	-	freebsd	freebsd	Buffer overflow in FreeBSD gdc program.	NVD-CWE-Other	CVE-1999-0855	2008-09-9 21:36	1999-12-1	Show	GitHub Exploit DB Packet Storm

348317	-	freebsd	freebsd	FreeBSD gdc program allows local users to modify files via a symlink attack.	NVD-CWE-Other	CVE-1999-0857	2008-09-9 21:36	1999-12-1	Show	GitHub Exploit DB Packet Storm

348318	-	paul_vixie caldera debian redhat	vixie_cron openlinux debian_linux linux	Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.	NVD-CWE-Other	CVE-1999-0872	2008-09-9 21:36	1999-08-25	Show	GitHub Exploit DB Packet Storm

348319	-	sky_communications	skyfull	Buffer overflow in Skyfull mail server via MAIL FROM command.	NVD-CWE-Other	CVE-1999-0873	2008-09-9 21:36	1999-10-30	Show	GitHub Exploit DB Packet Storm

348320	-	beroftpd washington_university	beroftpd wu-ftpd	Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR.	NVD-CWE-Other	CVE-1999-0878	2008-09-9 21:36	1999-08-22	Show	GitHub Exploit DB Packet Storm