Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3771 7.4 重要
Network 		OpenClaw OpenClaw OpenClawにおける認証時の IP アドレスへの依存に関する脆弱性 CWE-291
認証時の IP アドレスへの依存 		CVE-2026-3690 2026-04-30 12:29 2026-04-11 Show GitHub Exploit DB Packet Storm
3772 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-3691 2026-04-30 12:29 2026-04-11 Show GitHub Exploit DB Packet Storm
3773 7.3 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. w30e ファームウェア Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-38834 2026-04-30 12:29 2026-04-21 Show GitHub Exploit DB Packet Storm
3774 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. w30e ファームウェア Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-38835 2026-04-30 12:29 2026-04-21 Show GitHub Exploit DB Packet Storm
3775 5.4 警告
Network 		pyLoad pyLoad pyLoadにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40071 2026-04-30 12:29 2026-04-9 Show GitHub Exploit DB Packet Storm
3776 6.5 警告
Network 		getkirby kirby getkirbyのkirbyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40099 2026-04-30 12:29 2026-04-24 Show GitHub Exploit DB Packet Storm
3777 5.4 警告
Network 		Auth0 Inc. nextjs-auth0 Auth0 Inc.のnextjs-auth0における複数の脆弱性 CWE-362
CWE-863
CVE-2026-40155 2026-04-30 12:29 2026-04-17 Show GitHub Exploit DB Packet Storm
3778 5.5 警告
Local 		systemd project systemd systemd projectのsystemdにおける不適切な動作順序に関する脆弱性 CWE-696
不適切な動作順序 		CVE-2026-40223 2026-04-30 12:29 2026-04-10 Show GitHub Exploit DB Packet Storm
3779 7.3 重要
Local 		systemd project systemd systemd projectのsystemdにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40224 2026-04-30 12:29 2026-04-10 Show GitHub Exploit DB Packet Storm
3780 6.4 警告
Physics 		systemd project systemd systemd projectのsystemdにおける領域間での誤ったリソース移動に関する脆弱性 CWE-669
領域間での誤ったリソース移動 		CVE-2026-40225 2026-04-30 12:28 2026-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347441 - zyxel prestige
zynos 		ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does not require a password to access rpFWUpload.html, which allows remote attackers… NVD-CWE-Other
CVE-2004-1540 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347442 - van_dyke_technologies securecrt SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share. NVD-CWE-Other
CVE-2004-1541 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347443 - raven_software soldier_of_fortune Buffer overflow in Soldier of Fortune II 1.03 Gold and earlier allows remote attackers to cause a denial of service (server or client crash) via a long (1) query or (2) reply. NVD-CWE-Other
CVE-2004-1542 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347444 - korweblog korweblog Directory traversal vulnerability in viewimg.php in KorWeblog 1.6.2-cvs and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in the path parameter. NVD-CWE-Other
CVE-2004-1543 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347445 - jspwiki jspwiki Cross-site scripting (XSS) vulnerability in Search.jsp in JSPWiki 2.1.120-cvs and earlier allows remote attackers to execute arbitrary web script as other users via the query parameter. NVD-CWE-Other
CVE-2004-1544 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347446 - moniwiki moniwiki UploadFile.php in MoniWiki 1.0.9.2 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.hwp, which allows remote attackers to upload and … NVD-CWE-Other
CVE-2004-1545 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347447 - alt-n mdaemon Multiple buffer overflows in MDaemon 6.5.1 allow remote attackers to cause a denial of service (application crash) via a long (1) SAML, SOML, SEND, or MAIL command to the SMTP server or (2) LIST comm… NVD-CWE-Other
CVE-2004-1546 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347448 - onnuri_infotek activepost_standard The file server in ActivePost Standard 3.1 and earlier allows remote authenticated users to cause a denial of service (application crash) via a long filename, possibly triggering a buffer overflow. NVD-CWE-Other
CVE-2004-1547 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347449 - onnuri_infotek activepost_standard Directory traversal vulnerability in the file server in ActivePost Standard 3.1 allows remote authenticated users to upload arbitrary files via a .. (dot dot) in the filename. NVD-CWE-Other
CVE-2004-1548 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347450 - onnuri_infotek activepost_standard The conference menu in ActivePost Standard 3.1 sends passwords of password-protected rooms in cleartext, which could allow remote attackers to gain sensitive information by sniffing the network conne… NVD-CWE-Other
CVE-2004-1549 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm