Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2731	8.8	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおける複数の脆弱性	CWE-284 CWE-639 CWE-915	CVE-2026-41277	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

2732	7.5	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-41278	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

2733	7.5	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-41279	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

2734	4.3	警告 Adjacent	OpenBSD	OpenBSD	OpenBSDにおける複数の脆弱性	CWE-1284 CWE-835	CVE-2026-41285	2026-04-27 10:46	2026-04-21	Show	GitHub Exploit DB Packet Storm

2735	9.8	緊急 Network	WWBN	AVideo	WWBNのAVideoにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-41304	2026-04-27 10:46	2026-04-22	Show	GitHub Exploit DB Packet Storm

2736	4.3	警告 Network	pretix	pretix	pretix GmbHのpretixにおける隔離または分類に関する脆弱性	CWE-653 不適切な隔離または分類	CVE-2026-5600	2026-04-27 10:46	2026-04-8	Show	GitHub Exploit DB Packet Storm

2737	7.2	重要 Network	mintplexlabs	anythingllm	mintplexlabsのanythingllmにおけるパストラバーサルの脆弱性	CWE-29 パストラバーサル (/../filename)	CVE-2026-5627	2026-04-27 10:46	2026-04-7	Show	GitHub Exploit DB Packet Storm

2738	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-6919	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

2739	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-6920	2026-04-27 10:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

2740	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-6921	2026-04-27 10:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316311	7.5	HIGH Network	symantec	norton_antivirus	Norton Anti-Virus (NAV) allows remote attackers to bypass content filtering via attachments whose Content-Type and Content-Disposition headers are mixed upper and lower case, which is ignored by some…	CWE-178 Improper Handling of Case Sensitivity	CVE-2002-0485	2024-02-2 11:17	2002-08-12	Show	GitHub Exploit DB Packet Storm

316312	7.5	HIGH Network	netscape	fasttrack_server	Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.	CWE-178 Improper Handling of Case Sensitivity	CVE-1999-0239	2024-02-2 11:16	1998-01-1	Show	GitHub Exploit DB Packet Storm

316313	9.8	CRITICAL Network	sir	gnuboard	The file extension check in GNUBoard 3.40 and earlier only verifies extensions that contain all lowercase letters, which allows remote attackers to upload arbitrary files via file extensions that inc…	CWE-178 Improper Handling of Case Sensitivity	CVE-2005-0269	2024-02-2 11:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

316314	9.8	CRITICAL Network	apache	http_server	Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.	CWE-178 Improper Handling of Case Sensitivity	CVE-2001-0766	2024-02-2 11:13	2001-10-18	Show	GitHub Exploit DB Packet Storm

316315	7.5	HIGH Network	cmfperception	liteserve	Perception LiteServe 1.25 allows remote attackers to obtain source code of CGI scripts via URLs that contain MS-DOS conventions such as (1) upper case letters or (2) 8.3 file names.	CWE-178 Improper Handling of Case Sensitivity	CVE-2001-0795	2024-02-2 11:12	2001-10-18	Show	GitHub Exploit DB Packet Storm

316316	7.8	HIGH Local	microsoft	windows_2000	Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which coul…	CWE-178 Improper Handling of Case Sensitivity	CVE-2001-1238	2024-02-2 11:11	2001-07-16	Show	GitHub Exploit DB Packet Storm

316317	7.5	HIGH Network	transsoft	broker_ftp_server	Transsoft Broker 5.9.5.0 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file that points to the target file.	CWE-59 Link Following	CVE-2001-1042	2024-02-2 11:05	2001-07-2	Show	GitHub Exploit DB Packet Storm

316318	7.5	HIGH Network	qualcomm	eudora	Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."	CWE-59 Link Following	CVE-2000-0342	2024-02-2 11:05	2000-04-28	Show	GitHub Exploit DB Packet Storm

316319	7.5	HIGH Network	argosoft	ftp_server	ArGoSoft FTP Server 1.2.2.2 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file that points to the target file.	CWE-59 Link Following	CVE-2001-1043	2024-02-2 11:04	2001-07-1	Show	GitHub Exploit DB Packet Storm

316320	6.5	MEDIUM Network	mozilla	mozilla firefox	Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to overwrite arbitrary files by tricking the user into downloading a .LNK (link) file twice, which overwrites the file …	CWE-59 Link Following	CVE-2005-0587	2024-02-2 11:03	2005-03-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed