Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
61 3.7
Network 		OpenClaw OpenClaw OpenClawにおける競合状態に関する脆弱性 New CWE-362
競合状態 		CVE-2026-41913 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
62 8.5 重要
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41914 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
63 6.1 警告
Local 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 New CWE-184
不完全なブラックリスト 		CVE-2026-41915 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
64 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおけるセッション期限に関する脆弱性 New CWE-613
不適切なセッション期限 		CVE-2026-41916 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
65 6.5 警告
Network 		Technitium DNS Server TechnitiumのDNS Serverにおける指定された機能の不適切な提供に関する脆弱性 New CWE-684
指定された機能の不適切な提供 		CVE-2026-42255 2026-05-1 10:46 2026-04-26 Show GitHub Exploit DB Packet Storm
66 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42420 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
67 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおけるセッション期限に関する脆弱性 New CWE-613
不適切なセッション期限 		CVE-2026-42421 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
68 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2026-42422 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
69 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける安全でない失敗処理に関する脆弱性 New CWE-636
安全でない失敗処理 		CVE-2026-42423 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
70 5 警告
Local 		OpenClaw OpenClaw OpenClawにおけるファイル名やパス名の外部制御に関する脆弱性 New CWE-73
ファイル名やパス名の外部制御 		CVE-2026-42424 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313571 - ibm lotus_notes Argument injection vulnerability in IBM Lotus Notes 6.0.3 and 6.5 allows remote attackers to execute arbitrary code via a notes: URI that uses a UNC network share pathname to provide an alternate not… CWE-88
Argument Injection 		CVE-2004-0480 2024-02-14 02:52 2004-12-6 Show GitHub Exploit DB Packet Storm
313572 - apple mac_os_x Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier allows remote attackers to (1) execute arbitrary code via the ProxyCommand option or (2) conduct port f… CWE-88
Argument Injection 		CVE-2004-0489 2024-02-14 02:52 2004-07-7 Show GitHub Exploit DB Packet Storm
313573 - microsoft outlook Argument injection vulnerability in Microsoft Outlook 2003 SP1 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " (double quote) characters in a ma… CWE-88
Argument Injection 		CVE-2006-2055 2024-02-14 02:51 2006-04-27 Show GitHub Exploit DB Packet Storm
313574 - microsoft internet_explorer Argument injection vulnerability in Internet Explorer 6 for Windows XP SP2 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " (double quote) charac… CWE-88
Argument Injection 		CVE-2006-2056 2024-02-14 02:51 2006-04-27 Show GitHub Exploit DB Packet Storm
313575 - mozilla firefox Argument injection vulnerability in Mozilla Firefox 1.0.6 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " (double quote) characters in a mailto:… CWE-88
Argument Injection 		CVE-2006-2057 2024-02-14 02:51 2006-04-27 Show GitHub Exploit DB Packet Storm
313576 - avantbrowser avant_browser Argument injection vulnerability in Avant Browser 10.1 Build 17 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " (double quote) characters in a m… CWE-88
Argument Injection 		CVE-2006-2058 2024-02-14 02:51 2006-04-27 Show GitHub Exploit DB Packet Storm
313577 - winscp winscp Argument injection vulnerability in WinSCP 3.8.1 build 328 allows remote attackers to upload or download arbitrary files via encoded spaces and double-quote characters in a scp or sftp URI. CWE-88
Argument Injection 		CVE-2006-3015 2024-02-14 02:49 2006-06-15 Show GitHub Exploit DB Packet Storm
313578 - skype skype Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*.78 for Windows allows remote authorized attackers to download arbitrary files via a URL that contains … CWE-88
Argument Injection 		CVE-2006-2312 2024-02-14 02:47 2006-05-20 Show GitHub Exploit DB Packet Storm
313579 - freebsd freebsd The ipfw firewall in FreeBSD 6.0-RELEASE allows remote attackers to cause a denial of service (firewall crash) via ICMP IP fragments that match a reset, reject or unreach action, which leads to an ac… CWE-824
 Access of Uninitialized Pointer 		CVE-2006-0054 2024-02-14 02:43 2006-01-12 Show GitHub Exploit DB Packet Storm
313580 - microsoft windows_2000 The LDAP client on Microsoft Windows 2000 before Update Rollup 1 for SP4 accepts certificates using LDAP Secure Sockets Layer (LDAPS) even when the Certificate Authority (CA) is not trusted, which co… CWE-295
Improper Certificate Validation  		CVE-2005-3170 2024-02-14 02:43 2005-10-6 Show GitHub Exploit DB Packet Storm