Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3741 9.8 緊急
Network 		Grokability, Inc. Snipe-IT Grokability, Inc.のSnipe-ITにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-37709 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
3742 6.5 警告
Local 		Linux Containers LXC Linux ContainersのLXCにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39402 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
3743 8.8 重要
Network 		Pi-hole FTLDNS Pi-holeのFTLDNSにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-39849 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
3744 7.5 重要
Network 		- アップルのmacOSにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-39871 2026-05-14 10:19 2026-05-11 Show GitHub Exploit DB Packet Storm
3745 8.8 重要
Network 		Anthropic PBC Claude Code Anthropic PBCのClaude Codeにおける複数の脆弱性 CWE-20
CWE-77
CWE-noinfo
CVE-2026-40068 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
3746 7.5 重要
Network 		OpenMRS OpenMRS OpenMRSにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40075 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
3747 7.8 重要
Local 		デル Dell ObjectScale
elastic cloud storage 		デルのelastic cloud storage等の複数製品におけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-40636 2026-05-14 10:19 2026-05-11 Show GitHub Exploit DB Packet Storm
3748 6.7 警告
Local 		デル insightiq デルのinsightiqにおける不要な特権による実行に関する脆弱性 CWE-250
不要な特権による実行 		CVE-2026-40638 2026-05-14 10:19 2026-05-12 Show GitHub Exploit DB Packet Storm
3749 7.5 重要
Network 		VMware Spring Cloud Config VMwareのSpring Cloud Configにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-40981 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
3750 9.1 緊急
Network 		VMware Spring Cloud Config VMwareのSpring Cloud Configにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40982 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
358001 - ralf_hoffmann worker_filemanager Worker Filemanager 1.0 through 2.7 sets the permissions on the destination directory to world-readable and executable while copying data, which could allow local users to obtain sensitive information. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2003-1460 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
358002 - tomi_manninen linuxnode Buffer overflow in LinuxNode (node) before 0.3.2 allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2003-0707 2008-09-6 05:35 2003-10-20 Show GitHub Exploit DB Packet Storm
358003 - tomi_manninen linuxnode Format string vulnerability in LinuxNode (node) before 0.3.2 may allow attackers to cause a denial of service or execute arbitrary code. NVD-CWE-Other
CVE-2003-0708 2008-09-6 05:35 2003-10-20 Show GitHub Exploit DB Packet Storm
358004 - compaq tru64 ssh on HP Tru64 UNIX 5.1B and 5.1A does not properly handle RSA signatures when digital certificates and RSA keys are used, which could allow local and remote attackers to gain privileges. NVD-CWE-Other
CVE-2003-0724 2008-09-6 05:35 2003-10-20 Show GitHub Exploit DB Packet Storm
358005 - realnetworks helix_universal_server
realserver 		Buffer overflow in the RTSP protocol parser for the View Source plug-in (vsrcplin.so or vsrcplin3260.dll) for RealNetworks Helix Universal Server 9 and RealSystem Server 8, 7 and RealServer G2 allows… NVD-CWE-Other
CVE-2003-0725 2008-09-6 05:35 2003-10-20 Show GitHub Exploit DB Packet Storm
358006 - cisco resource_manager
resource_manager_essentials
ciscoworks_common_management_foundation
ciscoworks_cd1 		CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to obtain restricted information and possibly gain administrative privileges by changing the "guest" user to the Ad… NVD-CWE-Other
CVE-2003-0732 2008-09-6 05:35 2003-10-20 Show GitHub Exploit DB Packet Storm
358007 - bea liquid_data
weblogic_integration
weblogic_server 		Multiple cross-site scripting (XSS) vulnerabilities in WebLogic Integration 7.0 and 2.0, Liquid Data 1.1, and WebLogic Server and Express 5.1 through 7.0, allow remote attackers to execute arbitrary … NVD-CWE-Other
CVE-2003-0733 2008-09-6 05:35 2003-10-20 Show GitHub Exploit DB Packet Storm
358008 - hp openview Various Distributed Computing Environment (DCE) implementations, including HP OpenView, allow remote attackers to cause a denial of service (process hang or termination) via certain malformed inputs,… NVD-CWE-Other
CVE-2003-0746 2008-09-6 05:35 2003-10-20 Show GitHub Exploit DB Packet Storm
358009 - sap internet_transaction_server Cross-site scripting (XSS) vulnerability in wgate.dll for SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to insert arbitrary web script and steal cookies via the ~servi… NVD-CWE-Other
CVE-2003-0749 2008-09-6 05:35 2003-10-20 Show GitHub Exploit DB Packet Storm
358010 - attila-php.net attilaphp SQL injection vulnerability in global.php3 of AttilaPHP 3.0, and possibly earlier versions, allows remote attackers to bypass authentication via a modified cook_id parameter. NVD-CWE-Other
CVE-2003-0752 2008-09-6 05:35 2003-10-20 Show GitHub Exploit DB Packet Storm