Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3851	6.1	警告 Network	cure53	DOMPurify	cure53のDOMPurifyにおける複数の脆弱性	CWE-183 CWE-79	CVE-2026-41240	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3852	5.4	警告 Network	pretalx	pretalx	pretalxにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41241	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3853	8.1	重要 Network	Project Contour	Contour	Project ContourのContourにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41246	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3854	9.8	緊急 Network	std42	elfinder	std42のelfinderにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-41247	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3855	7.5	重要 Network	joinmastodon	Mastodon	joinmastodonのMastodonにおける行動ワークフローに関する脆弱性	CWE-841 行動ワークフローの不適切な実施	CVE-2026-41259	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3856	9.1	緊急 Network	dgraph	dgraph	dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-41327	2026-04-30 11:01	2026-04-24	Show	GitHub Exploit DB Packet Storm

3857	9.1	緊急 Network	dgraph	dgraph	dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-41328	2026-04-30 11:01	2026-04-24	Show	GitHub Exploit DB Packet Storm

3858	3.7	低 Network	OpenClaw	OpenClaw	OpenClawにおけるインタラクション頻度の制御に関する脆弱性	CWE-799 インタラクション頻度の不適切な制御	CVE-2026-41333	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3859	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける安全でない失敗処理に関する脆弱性	CWE-636 安全でない失敗処理	CVE-2026-41334	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

3860	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性	CWE-497 認可されていない制御領域への重要情報の漏えい	CVE-2026-41335	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351461	-	qnx	qnx	The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords.	NVD-CWE-Other	CVE-2000-0250	2008-09-11 04:03	2000-04-14	Show	GitHub Exploit DB Packet Storm

351462	-	hp	hp-ux vvos	HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses.	NVD-CWE-Other	CVE-2000-0251	2008-09-11 04:03	2000-04-6	Show	GitHub Exploit DB Packet Storm

351463	-	nbase-xyplex	edgeblaster	The Nbase-Xyplex EdgeBlaster router allows remote attackers to cause a denial of service via a scan for the FormMail CGI program.	NVD-CWE-Other	CVE-2000-0255	2008-09-11 04:03	2000-04-5	Show	GitHub Exploit DB Packet Storm

351464	-	redhat	linux	The X font server xfs in Red Hat Linux 6.x allows an attacker to cause a denial of service via a malformed request.	NVD-CWE-Other	CVE-2000-0263	2008-09-11 04:03	2000-04-16	Show	GitHub Exploit DB Packet Storm

351465	-	cisco	catos	Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password.	NVD-CWE-Other	CVE-2000-0267	2008-09-11 04:03	2000-04-20	Show	GitHub Exploit DB Packet Storm

351466	-	cisco	ios accesspath as5200 as5300 as5800 system_controller_3640 voice_gateway_as5800 3660_router 7100_router 7200_router 7500_router ubr7200	Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot.	NVD-CWE-Other	CVE-2000-0268	2008-09-11 04:03	2000-04-20	Show	GitHub Exploit DB Packet Storm

351467	-	symantec	pcanywhere	PCAnywhere allows remote attackers to cause a denial of service by terminating the connection before PCAnywhere provides a login prompt.	NVD-CWE-Other	CVE-2000-0273	2008-09-11 04:03	2000-04-9	Show	GitHub Exploit DB Packet Storm

351468	-	cryptocard	cryptoadmin	CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN.	NVD-CWE-Other	CVE-2000-0275	2008-09-11 04:03	2000-04-10	Show	GitHub Exploit DB Packet Storm

351469	-	saleslogix	corporation_eviewer	The SalesLogix Eviewer allows remote attackers to cause a denial of service by accessing the URL for the slxweb.dll administration program, which does not authenticate the user.	NVD-CWE-Other	CVE-2000-0278	2008-09-11 04:03	2000-08-3	Show	GitHub Exploit DB Packet Storm

351470	-	be	beos	BeOS allows remote attackers to cause a denial of service via malformed packets whose length field is less than the length of the headers.	NVD-CWE-Other	CVE-2000-0279	2008-09-11 04:03	2000-04-7	Show	GitHub Exploit DB Packet Storm