Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3371	8.2	重要 Network	Apache Software Foundation	Apache Thrift	Apache Software FoundationのApache Thriftにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-41604	2026-04-30 10:59	2026-04-28	Show	GitHub Exploit DB Packet Storm

3372	7.3	重要 Network	Apache Software Foundation	Apache Thrift	Apache Software FoundationのApache Thriftにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-41605	2026-04-30 10:59	2026-04-28	Show	GitHub Exploit DB Packet Storm

3373	5.3	警告 Network	Apache Software Foundation	Apache Thrift	Apache Software FoundationのApache Thriftにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-41606	2026-04-30 10:59	2026-04-28	Show	GitHub Exploit DB Packet Storm

3374	6.5	警告 Network	Apache Software Foundation	Apache Thrift	Apache Software FoundationのApache Thriftにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-41607	2026-04-30 10:59	2026-04-28	Show	GitHub Exploit DB Packet Storm

3375	7.5	重要 Network	Apache Software Foundation	Apache Thrift	Apache Software FoundationのApache Thriftにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-41636	2026-04-30 10:59	2026-04-28	Show	GitHub Exploit DB Packet Storm

3376	7.5	重要 Network	Marked project	Marked	Marked projectのMarkedにおける複数の脆弱性	CWE-400 CWE-674 CWE-835	CVE-2026-41680	2026-04-30 10:59	2026-04-24	Show	GitHub Exploit DB Packet Storm

3377	9.8	緊急 Network	Apache Software Foundation	Apache Pony Mail	Apache Software FoundationのApache Pony MailにおけるHTTP リクエストスマグリングに関する脆弱性	CWE-444 HTTP リクエストスマグリング	CVE-2026-41873	2026-04-30 10:59	2026-04-28	Show	GitHub Exploit DB Packet Storm

3378	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41908	2026-04-30 10:58	2026-04-23	Show	GitHub Exploit DB Packet Storm

3379	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41909	2026-04-30 10:58	2026-04-23	Show	GitHub Exploit DB Packet Storm

3380	8.8	重要 Network	GitHub	Enterprise Server	GitHubのEnterprise Serverにおける不正な正規表現に関する脆弱性	CWE-185 不正な正規表現	CVE-2026-4296	2026-04-30 10:58	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348551	-	twiki	twiki	TWiki 01-Dec-2000 up to 4.0.3 allows remote attackers to bypass the upload filter and execute arbitrary code via filenames with double extensions such as ".php.en", ".php.1", and other allowed extens…	NVD-CWE-Other	CVE-2006-3336	2011-03-8 11:38	2006-07-6	Show	GitHub Exploit DB Packet Storm

348552	-	phpmaillist	phpmaillist	Cross-site scripting (XSS) vulnerability in maillist.php in PHPMailList 1.8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the email parameter.	NVD-CWE-Other	CVE-2006-3482	2011-03-8 11:38	2006-07-11	Show	GitHub Exploit DB Packet Storm

348553	-	adaptive_technology_resource_centre	atutor	Multiple cross-site scripting (XSS) vulnerabilities in ATutor before 1.5.3 allow remote attackers to inject arbitrary web script or HTML via the (1) show_courses or (2) current_cat parameters to (a) …	NVD-CWE-Other	CVE-2006-3484	2011-03-8 11:38	2006-07-11	Show	GitHub Exploit DB Packet Storm

348554	-	apple	xsan mac_os_x mac_os_x_server	Buffer overflow in the Xsan Filesystem driver on Mac OS X 10.4.7 and OS X Server 10.4.7 allows local users with Xsan write access, to execute arbitrary code via unspecified vectors related to "proces…	NVD-CWE-Other	CVE-2006-3506	2011-03-8 11:38	2006-08-22	Show	GitHub Exploit DB Packet Storm

348555	-	apple	xsan mac_os_x mac_os_x_server	This vulnerability is addressed in the following product release: Apple, Xsan, 1.4	NVD-CWE-Other	CVE-2006-3506	2011-03-8 11:38	2006-08-22	Show	GitHub Exploit DB Packet Storm

348556	-	apple	mac_os_x mac_os_x_server	Multiple stack-based buffer overflows in the AirPort wireless driver on Apple Mac OS X 10.3.9 and 10.4.7 allow physically proximate attackers to execute arbitrary code by injecting crafted frames int…	NVD-CWE-Other	CVE-2006-3507	2011-03-8 11:38	2006-09-22	Show	GitHub Exploit DB Packet Storm

348557	-	apple	mac_os_x mac_os_x_server	Heap-based buffer overflow in the AirPort wireless driver on Apple Mac OS X 10.4.7 allows physically proximate attackers to cause a denial of service (crash), gain privileges, and execute arbitrary c…	NVD-CWE-Other	CVE-2006-3508	2011-03-8 11:38	2006-09-22	Show	GitHub Exploit DB Packet Storm

348558	-	apple	mac_os_x mac_os_x_server	Integer overflow in the API for the AirPort wireless driver on Apple Mac OS X 10.4.7 might allow physically proximate attackers to cause a denial of service (crash) or execute arbitrary code in third…	NVD-CWE-Other	CVE-2006-3509	2011-03-8 11:38	2006-09-22	Show	GitHub Exploit DB Packet Storm

348559	-	nullsoft	shoutcast_server	Directory traversal vulnerability in Nullsoft SHOUTcast DSP before 1.9.6 filters directory traversal sequences before decoding, which allows remote attackers to read arbitrary files via encoded dot d…	NVD-CWE-Other	CVE-2006-3534	2011-03-8 11:38	2006-07-13	Show	GitHub Exploit DB Packet Storm

348560	-	nullsoft	shoutcast_server	This vulnerability is addressed in the following product releases: Nullsoft, SHOUTcast DSP, 1.9.6 Nullsoft, SHOUTcast DSP, 1.9.7	NVD-CWE-Other	CVE-2006-3534	2011-03-8 11:38	2006-07-13	Show	GitHub Exploit DB Packet Storm