Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2781 7.5 重要
Network 		Eaton Intelligent Power Protector EatonのIntelligent Power Protectorにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-22616 2026-04-24 11:33 2026-04-16 Show GitHub Exploit DB Packet Storm
2782 7.4 重要
Network 		Eaton Intelligent Power Protector EatonのIntelligent Power ProtectorにおけるHTTPS セッション内の Secure 属性がない重要な Cookie に関する脆弱性 CWE-614
HTTPS セッション内の Secure 属性がない重要な Cookie 		CVE-2026-22617 2026-04-24 11:33 2026-04-16 Show GitHub Exploit DB Packet Storm
2783 7.1 重要
Network 		Eaton Intelligent Power Protector EatonのIntelligent Power Protectorにおけるセキュリティチェックに関する脆弱性 CWE-358
不適切に実装されたセキュリティチェック 		CVE-2026-22618 2026-04-24 11:33 2026-04-16 Show GitHub Exploit DB Packet Storm
2784 9.9 緊急
Network 		Eaton Intelligent Power Protector EatonのIntelligent Power Protectorにおける制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-22619 2026-04-24 11:33 2026-04-16 Show GitHub Exploit DB Packet Storm
2785 8.1 重要
Network 		VMware Spring Boot VMwareのSpring Bootにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-22733 2026-04-24 11:33 2026-03-20 Show GitHub Exploit DB Packet Storm
2786 2.6
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるリソースのロックに関する脆弱性 CWE-667
不適切なロック 		CVE-2026-22735 2026-04-24 11:33 2026-03-20 Show GitHub Exploit DB Packet Storm
2787 5.9 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-22737 2026-04-24 11:33 2026-03-20 Show GitHub Exploit DB Packet Storm
2788 7.2 重要
Network 		デル PowerProtect DP Series Appliance
data domain operating system 		デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-23774 2026-04-24 11:33 2026-04-20 Show GitHub Exploit DB Packet Storm
2789 8.7 重要
Network 		decidim decidim Decidim Free Software AssociationのDecidimにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-23891 2026-04-24 11:33 2026-04-13 Show GitHub Exploit DB Packet Storm
2790 4.9 警告
Network 		OctoberCMS October OctoberCMSのOctoberにおける複数の脆弱性 CWE-200
CWE-94
CVE-2026-25125 2026-04-24 11:33 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348671 - allaire coldfusion_server The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly. NVD-CWE-Other
CVE-1999-0455 2008-09-9 21:34 1999-12-25 Show GitHub Exploit DB Packet Storm
348672 - debian debian_linux Linux ftpwatch program allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-0457 2008-09-9 21:34 1999-01-17 Show GitHub Exploit DB Packet Storm
348673 - l0pht l0phtcrack L0phtcrack 2.5 used temporary files in the system TEMP directory which could contain password information. NVD-CWE-Other
CVE-1999-0458 2008-09-9 21:34 1999-01-6 Show GitHub Exploit DB Packet Storm
348674 - suse suse_linux suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing a setuid script in a mountable file system, e.g. a CD-ROM or floppy … NVD-CWE-Other
CVE-1999-0462 2008-09-9 21:34 1999-03-17 Show GitHub Exploit DB Packet Storm
348675 - l0pht l0phtcrack Remote attackers can perform a denial of service using IRIX fcagent. NVD-CWE-Other
CVE-1999-0463 2008-09-9 21:34 1998-12-1 Show GitHub Exploit DB Packet Storm
348676 - netbsd netbsd The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device. NVD-CWE-Other
CVE-1999-0466 2008-09-9 21:34 1999-04-21 Show GitHub Exploit DB Packet Storm
348677 - novell netware A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted. NVD-CWE-Other
CVE-1999-0470 2008-09-9 21:34 1999-04-9 Show GitHub Exploit DB Packet Storm
348678 - andrew_tridgell rsync The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred. NVD-CWE-Other
CVE-1999-0473 2008-09-9 21:34 1999-04-7 Show GitHub Exploit DB Packet Storm
348679 - sendmail sendmail Denial of service in HP-UX sendmail 8.8.6 related to accepting connections. NVD-CWE-Other
CVE-1999-0478 2008-09-9 21:34 1998-12-1 Show GitHub Exploit DB Packet Storm
348680 - netscape
hp 		enterprise_server
hp-ux 		Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems. NVD-CWE-Other
CVE-1999-0479 2008-09-9 21:34 1999-03-1 Show GitHub Exploit DB Packet Storm