Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2841 5.9 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-22737 2026-04-24 11:33 2026-03-20 Show GitHub Exploit DB Packet Storm
2842 7.2 重要
Network 		デル PowerProtect DP Series Appliance
data domain operating system 		デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-23774 2026-04-24 11:33 2026-04-20 Show GitHub Exploit DB Packet Storm
2843 8.7 重要
Network 		decidim decidim Decidim Free Software AssociationのDecidimにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-23891 2026-04-24 11:33 2026-04-13 Show GitHub Exploit DB Packet Storm
2844 4.9 警告
Network 		OctoberCMS October OctoberCMSのOctoberにおける複数の脆弱性 CWE-200
CWE-94
CVE-2026-25125 2026-04-24 11:33 2026-04-14 Show GitHub Exploit DB Packet Storm
2845 6.7 警告
Network 		フォーティネット FortiSandbox
FortiSandbox Cloud 		フォーティネットのFortiSandbox等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-25691 2026-04-24 11:33 2026-04-14 Show GitHub Exploit DB Packet Storm
2846 6.1 警告
Local 		Zulip Zulip Zulipにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-26058 2026-04-24 11:33 2026-04-3 Show GitHub Exploit DB Packet Storm
2847 8.8 重要
Network 		デル PowerProtect DP Series Appliance
data domain operating system 		デルのdata domain operating system等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-26944 2026-04-24 11:33 2026-04-20 Show GitHub Exploit DB Packet Storm
2848 6.1 警告
Network 		Jeremiah Lowin FastMCP Jeremiah LowinのFastMCPにおけるフィルタリングの回避に関する脆弱性 CWE-441
フィルタリング回避 		CVE-2026-27124 2026-04-24 11:33 2026-04-3 Show GitHub Exploit DB Packet Storm
2849 2.7
Network 		フォーティネット FortiSandbox
FortiSandbox Cloud 		フォーティネットのFortiSandbox等の複数製品における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-27316 2026-04-24 11:33 2026-04-14 Show GitHub Exploit DB Packet Storm
2850 6.3 警告
Network 		OpenPrinting CUPS OpenPrintingのCUPSにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-27447 2026-04-24 11:32 2026-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348881 - rockliffe mailsite Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long query_string parameter in the HTTP GET request. NVD-CWE-Other
CVE-2000-0398 2008-09-11 04:04 2000-05-24 Show GitHub Exploit DB Packet Storm
348882 - alt-n mdaemon Buffer overflow in MDaemon POP server allows remote attackers to cause a denial of service via a long user name. NVD-CWE-Other
CVE-2000-0399 2008-09-11 04:04 2000-05-24 Show GitHub Exploit DB Packet Storm
348883 - atstake antisniff Buffer overflow in L0pht AntiSniff allows remote attackers to execute arbitrary commands via a malformed DNS response packet. NVD-CWE-Other
CVE-2000-0405 2008-09-11 04:04 2000-05-16 Show GitHub Exploit DB Packet Storm
348884 - netscape communicator Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web… NVD-CWE-Other
CVE-2000-0406 2008-09-11 04:04 2000-05-10 Show GitHub Exploit DB Packet Storm
348885 - netscape communicator Netscape 4.73 and earlier follows symlinks when it imports a new certificate, which allows local users to overwrite files of the user importing the certificate. NVD-CWE-Other
CVE-2000-0409 2008-09-11 04:04 2000-05-10 Show GitHub Exploit DB Packet Storm
348886 - allaire coldfusion_server ColdFusion Server 4.5.1 allows remote attackers to cause a denial of service by making repeated requests to a CFCACHE tagged cache file that is not stored in memory. NVD-CWE-Other
CVE-2000-0410 2008-09-11 04:04 2000-05-10 Show GitHub Exploit DB Packet Storm
348887 - napster knapster The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname … NVD-CWE-Other
CVE-2000-0412 2008-09-11 04:04 1999-05-1 Show GitHub Exploit DB Packet Storm
348888 - hp hp-ux
vvos 		Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables. NVD-CWE-Other
CVE-2000-0414 2008-09-11 04:04 2000-05-4 Show GitHub Exploit DB Packet Storm
348889 - cayman 3220-h_dsl_router
gatorsurf 		The HTTP administration interface to the Cayman 3220-H DSL router allows remote attackers to cause a denial of service via a long username or password. NVD-CWE-Other
CVE-2000-0417 2008-09-11 04:04 2000-05-17 Show GitHub Exploit DB Packet Storm
348890 - cayman 3220-h_dsl_router
gatorsurf 		The Cayman 3220-H DSL router allows remote attackers to cause a denial of service via oversized ICMP echo (ping) requests. NVD-CWE-Other
CVE-2000-0418 2008-09-11 04:04 2000-05-23 Show GitHub Exploit DB Packet Storm