Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3471 8.5 重要
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41914 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
3472 6.1 警告
Local 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-41915 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
3473 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-41916 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
3474 6.5 警告
Network 		Technitium DNS Server TechnitiumのDNS Serverにおける指定された機能の不適切な提供に関する脆弱性 CWE-684
指定された機能の不適切な提供 		CVE-2026-42255 2026-05-1 10:46 2026-04-26 Show GitHub Exploit DB Packet Storm
3475 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42420 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
3476 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-42421 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
3477 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-42422 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
3478 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける安全でない失敗処理に関する脆弱性 CWE-636
安全でない失敗処理 		CVE-2026-42423 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
3479 5 警告
Local 		OpenClaw OpenClaw OpenClawにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-42424 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
3480 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-42426 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347231 - datakey rainbow_ikey2032_usb_token Datakey Rainbow iKey2032 USB token, when using the CIP client package, does not encrypt communications between the token and the driver, which could allow local users to obtain the PINs of other user… NVD-CWE-Other
CVE-2004-1709 2017-07-11 10:31 2004-08-4 Show GitHub Exploit DB Packet Storm
347232 - andrew_kilpatrick page_cgi page.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the url parameter. NVD-CWE-Other
CVE-2004-1710 2017-07-11 10:31 2004-08-6 Show GitHub Exploit DB Packet Storm
347233 - hp process_resource_manager
workload_manager 		Unknown vulnerability in HP Process Resource Manager (PRM) C.02.01[.01] and earlier, as used by HP-UX Workload Manager (WLM), allows local users to corrupt data files. NVD-CWE-Other
CVE-2004-1713 2017-07-11 10:31 2004-08-10 Show GitHub Exploit DB Packet Storm
347234 - clearswift mimesweeper_for_web Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 allows remote attackers or local users to read arbitrary files via "..\\", "..\", and similar dot dot sequences in the URL. NVD-CWE-Other
CVE-2004-1715 2017-07-11 10:31 2004-08-11 Show GitHub Exploit DB Packet Storm
347235 - clearswift mimesweeper_for_web This was fixed in MIMEsweeper for Web v5.0.4. NVD-CWE-Other
CVE-2004-1715 2017-07-11 10:31 2004-08-11 Show GitHub Exploit DB Packet Storm
347236 - powie pforum Cross-site scripting (XSS) vulnerability in PForum before 1.26 allows remote attackers to inject arbitrary web script or HTML via the (1) IRC Server or (2) AIM ID fields in the user profile. NVD-CWE-Other
CVE-2004-1716 2017-07-11 10:31 2004-08-16 Show GitHub Exploit DB Packet Storm
347237 - gv gv Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orient… NVD-CWE-Other
CVE-2004-1717 2017-07-11 10:31 2004-08-16 Show GitHub Exploit DB Packet Storm
347238 - pedestal_software integrity_protection_driver The ZwOpenSection function in Integrity Protection Driver (IPD) 1.4 and earlier allows local users to cause a denial of service (crash) via an invalid pointer in the "oa" argument. NVD-CWE-Other
CVE-2004-1718 2017-07-11 10:31 2004-08-17 Show GitHub Exploit DB Packet Storm
347239 - merak mail_server Multiple cross-site scripting (XSS) vulnerabilities in Merak Webmail Server 5.2.7 allow remote attackers to inject arbitrary web script or HTML via the (1) category, (2) cserver, (3) ext, (4) global,… NVD-CWE-Other
CVE-2004-1719 2017-07-11 10:31 2004-08-17 Show GitHub Exploit DB Packet Storm
347240 - merak mail_server The (1) address.html and possibly (2) calendar.html pages in Merak Mail Server 5.2.7 allow remote attackers to gain sensitive information via an invalid HTTP request, which reveals the installation p… NVD-CWE-Other
CVE-2004-1720 2017-07-11 10:31 2004-08-17 Show GitHub Exploit DB Packet Storm