Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3641	7.4	重要 Network	OpenProject	OpenProject	OpenProjectにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-33667	2026-04-30 11:03	2026-04-15	Show	GitHub Exploit DB Packet Storm

3642	6.7	警告 Local	デル	data domain operating system	デルのdata domain operating systemにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-35154	2026-04-30 11:03	2026-04-20	Show	GitHub Exploit DB Packet Storm

3643	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける指定された機能の不適切な提供に関する脆弱性	CWE-684 指定された機能の不適切な提供	CVE-2026-35379	2026-04-30 11:03	2026-04-22	Show	GitHub Exploit DB Packet Storm

3644	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-35380	2026-04-30 11:03	2026-04-22	Show	GitHub Exploit DB Packet Storm

3645	10	緊急 Network	マイクロソフト	Microsoft Entra ID	Microsoft Entra ID Entitlement Management Spoofing Vulnerability	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-35431	2026-04-30 11:03	2026-04-23	Show	GitHub Exploit DB Packet Storm

3646	5.3	警告 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35484	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

3647	7.5	重要 Network	oobabooga	TextGen	oobaboogaのTextGenにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35485	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

3648	8.8	重要 Network	Pi-hole	FTLDNS	Pi-holeのFTLDNSにおける複数の脆弱性	CWE-78 CWE-93	CVE-2026-35517	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

3649	8.8	重要 Network	Pi-hole	FTLDNS	Pi-holeのFTLDNSにおける複数の脆弱性	CWE-78 CWE-93	CVE-2026-35518	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

3650	8.8	重要 Network	Pi-hole	FTLDNS	Pi-holeのFTLDNSにおける複数の脆弱性	CWE-78 CWE-93	CVE-2026-35519	2026-04-30 11:03	2026-04-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348731	-	-	-	The Java Web Server would allow remote users to obtain the source code for CGI programs.	NVD-CWE-Other	CVE-1999-0283	2016-10-18 10:59	1999-01-1	Show	GitHub Exploit DB Packet Storm

348732	-	-	-	Internet Explorer 4.01 allows remote attackers to read local files and spoof web pages via a "%01" character in an "about:" Javascript URL, which causes Internet Explorer to use the domain specified …	NVD-CWE-Other	CVE-1999-0347	2016-10-18 10:59	1999-01-26	Show	GitHub Exploit DB Packet Storm

348733	-	microsoft	site_server	MS Site Server 2.0 with IIS 4 can allow users to upload content, including ASP, to the target web site, thus allowing them to execute commands remotely.	NVD-CWE-Other	CVE-1999-0360	2016-10-18 10:59	1999-01-30	Show	GitHub Exploit DB Packet Storm

348734	-	fms_inc. microsoft	total_vb_sourcebook access	Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data.	NVD-CWE-Other	CVE-1999-0364	2016-10-18 10:59	1999-01-1	Show	GitHub Exploit DB Packet Storm

348735	-	eric_allman	sendmail	Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers.	NVD-CWE-Other	CVE-1999-0393	2016-10-18 10:59	1999-01-1	Show	GitHub Exploit DB Packet Storm

348736	-	cyrix	linux	A bug in Cyrix CPUs on Linux allows local users to perform a denial of service.	NVD-CWE-Other	CVE-1999-0403	2016-10-18 10:59	1999-02-1	Show	GitHub Exploit DB Packet Storm

348737	-	microsoft	internet_information_server	By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.	NVD-CWE-Other	CVE-1999-0407	2016-10-18 10:59	1999-02-9	Show	GitHub Exploit DB Packet Storm

348738	-	-	-	Denial of service in SMTP applications such as Sendmail, when a remote attacker (e.g. spammer) uses many "RCPT TO" commands in the same connection.	NVD-CWE-Other	CVE-1999-0418	2016-10-18 10:59	1999-03-8	Show	GitHub Exploit DB Packet Storm

348739	-	ibm	lotus_notes	The Lotus Notes 4.5 client may send a copy of encrypted mail in the clear across the network if the user does not set the "Encrypt Saved Mail" preference.	NVD-CWE-Other	CVE-1999-0429	2016-10-18 10:59	1999-03-1	Show	GitHub Exploit DB Packet Storm

348740	-	netscape sun	communicator navigator java	The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages.	NVD-CWE-Other	CVE-1999-0440	2016-10-18 10:59	1999-03-1	Show	GitHub Exploit DB Packet Storm