Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
531	8.1	重要 Network	Project Contour	Contour	Project ContourのContourにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-41246	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

532	9.8	緊急 Network	std42	elfinder	std42のelfinderにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-41247	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

533	7.5	重要 Network	joinmastodon	Mastodon	joinmastodonのMastodonにおける行動ワークフローに関する脆弱性 New	CWE-841 行動ワークフローの不適切な実施	CVE-2026-41259	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

534	9.1	緊急 Network	dgraph	dgraph	dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 New	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-41327	2026-04-30 11:01	2026-04-24	Show	GitHub Exploit DB Packet Storm

535	9.1	緊急 Network	dgraph	dgraph	dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 New	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-41328	2026-04-30 11:01	2026-04-24	Show	GitHub Exploit DB Packet Storm

536	3.7	低 Network	OpenClaw	OpenClaw	OpenClawにおけるインタラクション頻度の制御に関する脆弱性　 New	CWE-799 インタラクション頻度の不適切な制御	CVE-2026-41333	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

537	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける安全でない失敗処理に関する脆弱性 New	CWE-636 安全でない失敗処理	CVE-2026-41334	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

538	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性 New	CWE-497 認可されていない制御領域への重要情報の漏えい	CVE-2026-41335	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

539	7.8	重要 Local	OpenClaw	OpenClaw	OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 New	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-41336	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

540	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-41337	2026-04-30 11:01	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349021	-	digital	ultrix	Vulnerability in /usr/bin/mail in DEC ULTRIX before 4.2 allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1415	2008-09-6 05:19	1991-08-23	Show	GitHub Exploit DB Packet Storm

349022	-	mirabilis	icq_web_front	ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server responses when a file exists ("4…	NVD-CWE-Other	CVE-1999-1418	2008-09-6 05:19	1999-05-1	Show	GitHub Exploit DB Packet Storm

349023	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table e…	NVD-CWE-Other	CVE-1999-1424	2008-09-6 05:19	1997-11-10	Show	GitHub Exploit DB Packet Storm

349024	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files.	NVD-CWE-Other	CVE-1999-1426	2008-09-6 05:19	1997-11-10	Show	GitHub Exploit DB Packet Storm

349025	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges.	NVD-CWE-Other	CVE-1999-1427	2008-09-6 05:19	1997-11-10	Show	GitHub Exploit DB Packet Storm

349026	-	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the save option in the Database Manager, which is running with setgid bin privileges.	NVD-CWE-Other	CVE-1999-1428	2008-09-6 05:19	1997-11-10	Show	GitHub Exploit DB Packet Storm

349027	-	sun	sunos	Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.	NVD-CWE-Other	CVE-1999-1438	2008-09-6 05:19	1991-02-22	Show	GitHub Exploit DB Packet Storm

349028	-	sun	sunos	SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device.	NVD-CWE-Other	CVE-1999-1449	2008-09-6 05:19	1997-05-19	Show	GitHub Exploit DB Packet Storm

349029	-	cisco	ios	Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enab…	NVD-CWE-Other	CVE-1999-1466	2008-09-6 05:19	1992-12-10	Show	GitHub Exploit DB Packet Storm

349030	-	bsd	bsd	Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain root privileges by specifying a long shell or GECOS field.	NVD-CWE-Other	CVE-1999-1471	2008-09-6 05:19	1989-01-1	Show	GitHub Exploit DB Packet Storm