Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3851	6.1	警告 Network	cure53	DOMPurify	cure53のDOMPurifyにおける複数の脆弱性	CWE-183 CWE-79	CVE-2026-41240	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3852	5.4	警告 Network	pretalx	pretalx	pretalxにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41241	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3853	8.1	重要 Network	Project Contour	Contour	Project ContourのContourにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41246	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3854	9.8	緊急 Network	std42	elfinder	std42のelfinderにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-41247	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3855	7.5	重要 Network	joinmastodon	Mastodon	joinmastodonのMastodonにおける行動ワークフローに関する脆弱性	CWE-841 行動ワークフローの不適切な実施	CVE-2026-41259	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3856	9.1	緊急 Network	dgraph	dgraph	dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-41327	2026-04-30 11:01	2026-04-24	Show	GitHub Exploit DB Packet Storm

3857	9.1	緊急 Network	dgraph	dgraph	dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-41328	2026-04-30 11:01	2026-04-24	Show	GitHub Exploit DB Packet Storm

3858	3.7	低 Network	OpenClaw	OpenClaw	OpenClawにおけるインタラクション頻度の制御に関する脆弱性	CWE-799 インタラクション頻度の不適切な制御	CVE-2026-41333	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3859	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける安全でない失敗処理に関する脆弱性	CWE-636 安全でない失敗処理	CVE-2026-41334	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3860	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性	CWE-497 認可されていない制御領域への重要情報の漏えい	CVE-2026-41335	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351421	-	sun	staroffice	StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.	NVD-CWE-Other	CVE-2000-0174	2008-09-11 04:03	2000-03-9	Show	GitHub Exploit DB Packet Storm

351422	-	sun	staroffice	Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command.	NVD-CWE-Other	CVE-2000-0175	2008-09-11 04:03	2000-03-9	Show	GitHub Exploit DB Packet Storm

351423	-	cat_soft	serv-u	The default configuration of Serv-U 2.5d and earlier allows remote attackers to determine the real pathname of the server by requesting a URL for a directory or file that does not exist.	NVD-CWE-Other	CVE-2000-0176	2008-09-11 04:03	2000-02-29	Show	GitHub Exploit DB Packet Storm

351424	-	dnstools_software	dnstools	DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters.	NVD-CWE-Other	CVE-2000-0177	2008-09-11 04:03	2000-03-2	Show	GitHub Exploit DB Packet Storm

351425	-	foundrynet	serveriron	ServerIron switches by Foundry Networks have predictable TCP/IP sequence numbers, which allows remote attackers to spoof or hijack sessions.	NVD-CWE-Other	CVE-2000-0178	2008-09-11 04:03	2000-02-28	Show	GitHub Exploit DB Packet Storm

351426	-	hp	openview_omniback_ii	HP OpenView OmniBack 2.55 allows remote attackers to cause a denial of service via a large number of connections to port 5555.	NVD-CWE-Other	CVE-2000-0179	2008-09-11 04:03	2000-02-28	Show	GitHub Exploit DB Packet Storm

351427	-	checkpoint	firewall-1	Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection.	NVD-CWE-Other	CVE-2000-0181	2008-09-11 04:03	2000-03-11	Show	GitHub Exploit DB Packet Storm

351428	-	michael_sandrof	ircii	Buffer overflow in ircII 4.4 IRC client allows remote attackers to execute commands via the DCC chat capability.	NVD-CWE-Other	CVE-2000-0183	2008-09-11 04:03	2000-03-10	Show	GitHub Exploit DB Packet Storm

351429	-	mandrakesoft redhat	mandrake_linux linux	Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords.	NVD-CWE-Other	CVE-2000-0184	2008-09-11 04:03	2000-03-9	Show	GitHub Exploit DB Packet Storm

351430	-	realnetworks	realserver realserver_g2	RealMedia RealServer reveals the real IP address of a Real Server, even if the address is supposed to be private.	NVD-CWE-Other	CVE-2000-0185	2008-09-11 04:03	2000-03-8	Show	GitHub Exploit DB Packet Storm