Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2841 5.9 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-22737 2026-04-24 11:33 2026-03-20 Show GitHub Exploit DB Packet Storm
2842 7.2 重要
Network 		デル PowerProtect DP Series Appliance
data domain operating system 		デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-23774 2026-04-24 11:33 2026-04-20 Show GitHub Exploit DB Packet Storm
2843 8.7 重要
Network 		decidim decidim Decidim Free Software AssociationのDecidimにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-23891 2026-04-24 11:33 2026-04-13 Show GitHub Exploit DB Packet Storm
2844 4.9 警告
Network 		OctoberCMS October OctoberCMSのOctoberにおける複数の脆弱性 CWE-200
CWE-94
CVE-2026-25125 2026-04-24 11:33 2026-04-14 Show GitHub Exploit DB Packet Storm
2845 6.7 警告
Network 		フォーティネット FortiSandbox
FortiSandbox Cloud 		フォーティネットのFortiSandbox等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-25691 2026-04-24 11:33 2026-04-14 Show GitHub Exploit DB Packet Storm
2846 6.1 警告
Local 		Zulip Zulip Zulipにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-26058 2026-04-24 11:33 2026-04-3 Show GitHub Exploit DB Packet Storm
2847 8.8 重要
Network 		デル PowerProtect DP Series Appliance
data domain operating system 		デルのdata domain operating system等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-26944 2026-04-24 11:33 2026-04-20 Show GitHub Exploit DB Packet Storm
2848 6.1 警告
Network 		Jeremiah Lowin FastMCP Jeremiah LowinのFastMCPにおけるフィルタリングの回避に関する脆弱性 CWE-441
フィルタリング回避 		CVE-2026-27124 2026-04-24 11:33 2026-04-3 Show GitHub Exploit DB Packet Storm
2849 2.7
Network 		フォーティネット FortiSandbox
FortiSandbox Cloud 		フォーティネットのFortiSandbox等の複数製品における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-27316 2026-04-24 11:33 2026-04-14 Show GitHub Exploit DB Packet Storm
2850 6.3 警告
Network 		OpenPrinting CUPS OpenPrintingのCUPSにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-27447 2026-04-24 11:32 2026-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348521 - cisco 675_router Cisco 675 routers running CBOS allow remote attackers to establish telnet sessions if an exec or superuser password has not been set. NVD-CWE-Other
CVE-1999-0889 2008-09-9 21:36 1999-07-1 Show GitHub Exploit DB Packet Storm
348522 - ihtml_merchant ihtml_merchant iHTML Merchant allows remote attackers to obtain sensitive information or execute commands via a code parsing error. NVD-CWE-Other
CVE-1999-0890 2008-09-9 21:36 1999-09-16 Show GitHub Exploit DB Packet Storm
348523 - realnetworks realserver_g2 Buffer overflow in RealNetworks RealServer administration utility allows remote attackers to execute arbitrary commands via a long username and password. NVD-CWE-Other
CVE-1999-0896 2008-09-9 21:36 1999-11-4 Show GitHub Exploit DB Packet Storm
348524 - byte_fusion bftelnet Buffer overflow in BFTelnet allows remote attackers to cause a denial of service via a long username. NVD-CWE-Other
CVE-1999-0904 2008-09-9 21:36 1999-11-3 Show GitHub Exploit DB Packet Storm
348525 - axent raptor_firewall Denial of service in Axent Raptor firewall via malformed zero-length IP options. NVD-CWE-Other
CVE-1999-0905 2008-09-9 21:36 1999-10-21 Show GitHub Exploit DB Packet Storm
348526 - suse suse_linux Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable. NVD-CWE-Other
CVE-1999-0906 2008-09-9 21:36 1999-09-23 Show GitHub Exploit DB Packet Storm
348527 - proftpd_project proftpd Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories. NVD-CWE-Other
CVE-1999-0911 2008-09-9 21:36 1999-08-27 Show GitHub Exploit DB Packet Storm
348528 - freebsd freebsd FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files. NVD-CWE-Other
CVE-1999-0912 2008-09-9 21:36 1999-09-22 Show GitHub Exploit DB Packet Storm
348529 - debian debian_linux Buffer overflow in the FTP client in the Debian GNU/Linux netstd package. NVD-CWE-Other
CVE-1999-0914 2008-09-9 21:36 1999-01-3 Show GitHub Exploit DB Packet Storm
348530 - pacific_software url_live URL Live! web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. NVD-CWE-Other
CVE-1999-0915 2008-09-9 21:36 1999-10-28 Show GitHub Exploit DB Packet Storm