Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
801	5.3	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-27859	2026-05-7 12:30	2026-03-27	Show	GitHub Exploit DB Packet Storm

802	8.2	重要 Network	Wazuh Inc.	Wazuh	Wazuh Inc.のWazuhにおける複数の脆弱性	CWE-121 CWE-400	CVE-2026-28221	2026-05-7 12:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

803	9.9	緊急 Network	Wazuh Inc.	Wazuh	Wazuh Inc.のWazuhにおける複数の脆弱性	CWE-22 CWE-73	CVE-2026-30893	2026-05-7 12:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

804	9	緊急 Network	angular	Angular CLI	angularのAngular CLIにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-32635	2026-05-7 12:30	2026-03-16	Show	GitHub Exploit DB Packet Storm

805	6.5	警告 Network	Ruby on Rails project	rails	Ruby on Rails projectのRailsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33658	2026-05-7 12:30	2026-03-26	Show	GitHub Exploit DB Packet Storm

806	9.8	緊急 Network	ggml.ai	llama.cpp	ggml.aiのllama.cppにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-34159	2026-05-7 12:30	2026-04-1	Show	GitHub Exploit DB Packet Storm

807	7.8	重要 Local	OpenClaw	OpenClaw	OpenClawにおける許容された入力値の許可リストに関する脆弱性	CWE-183 許容された入力値の許可リスト	CVE-2026-41387	2026-05-7 12:30	2026-04-28	Show	GitHub Exploit DB Packet Storm

808	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不完全な内部状態の区別に関する脆弱性	CWE-372 不完全な内部状態の区別	CVE-2026-41388	2026-05-7 12:30	2026-04-28	Show	GitHub Exploit DB Packet Storm

809	7.3	重要 Local	OpenClaw	OpenClaw	OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性	CWE-807 セキュリティ決定の信頼できない入力への依存	CVE-2026-41390	2026-05-7 12:30	2026-04-28	Show	GitHub Exploit DB Packet Storm

810	6.1	警告 Local	OpenClaw	OpenClaw	OpenClawにおける不完全なブラックリストに関する脆弱性	CWE-184 不完全なブラックリスト	CVE-2026-41391	2026-05-7 12:30	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350841	-	telindus	1120_adsl_router	Telindus 1100 ASDL router running firmware 6.0.x uses weak encryption for UDP session traffic, which allows remote attackers to gain unauthorized access by sniffing and decrypting the administrative …	NVD-CWE-Other	CVE-2002-2133	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

350842	-	peel	peel	haut.php in PEEL 1.0b allows remote attackers to execute arbitrary PHP code by modifying the dirroot parameter to reference a URL on a remote web server that contains the code in a lang.php file.	NVD-CWE-Other	CVE-2002-2134	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

350843	-	alloy d-link eusso linksys wisecom	gl-2422ap-s dwl-900ap\+ gl2422_ap wap11 gl2422ap-0t	GlobalSunTech Wireless Access Points (1) WISECOM GL2422AP-0T, and possibly OEM products such as (2) D-Link DWL-900AP+ B1 2.1 and 2.2, (3) ALLOY GL-2422AP-S, (4) EUSSO GL2422-AP, and (5) LINKSYS WAP11…	NVD-CWE-Other	CVE-2002-2137	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

350844	-	mysimplenews	mysimplenews	The admin.html file in MySimple News 1.0 stores its administrative password in plaintext, which allows remote attackers to gain unauthorized access to the web server by viewing the source of admin.ht…	NVD-CWE-Other	CVE-2002-2143	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

350845	-	free_peers	bearshare	Directory traversal vulnerability in BearShare 4.0.5 and 4.0.6 allows remote attackers to read files outside of the web root by hex-encoding the "/" (forward slash) or "." (dot) characters.	NVD-CWE-Other	CVE-2002-2144	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

350846	-	savant	savant_webserver	Savant Web Server 3.1 and earlier allows remote attackers to bypass authentication for password protected user folders via a URL with a hex encoded space (%20) and a '.' (%2e) at the end of the filen…	NVD-CWE-Other	CVE-2002-2145	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

350847	-	savant	savant_webserver	cgitest.exe in Savant Web Server 3.1 and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request.	NVD-CWE-Other	CVE-2002-2146	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

350848	-	lucent	ascend_max_router ascend_pipeline_router dslterminator	Lucent Ascend MAX Router 5.0 and earlier, Lucent Ascend Pipeline Router 6.0.2 and earlier and Lucent DSLTerminator allows remote attackers to obtain sensitive information such as hostname, MAC, and I…	NVD-CWE-Other	CVE-2002-2148	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

350849	-	lucent	access_point_service_router_1500 access_point_service_router_300 access_point_service_router_600	Buffer overflow in Lucent Access Point 300, 600, and 1500 Service Routers allows remote attackers to cause a denial of service (reboot) via a long HTTP request to the administrative interface.	NVD-CWE-Other	CVE-2002-2149	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

350850	-	juniper	netscreen_screenos	Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UD…	NVD-CWE-Other	CVE-2002-2150	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm