Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
851 7.5 重要
Network 		Apache Software Foundation Apache Tomcat Apache Software FoundationのApache Tomcatにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41284 2026-05-18 12:15 2026-05-12 Show GitHub Exploit DB Packet Storm
852 6.5 警告
Network 		liquidjs liquidjs liquidjsにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-41311 2026-05-18 12:15 2026-05-9 Show GitHub Exploit DB Packet Storm
853 5.3 警告
Network 		n8n-MCP n8n-MCP n8n-MCPにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-41495 2026-05-18 12:15 2026-05-8 Show GitHub Exploit DB Packet Storm
854 6.2 警告
Local 		マイクロソフト Microsoft 365 Copilot M365 Copilot for Desktop のスプーフィングの脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41614 2026-05-18 12:15 2026-05-12 Show GitHub Exploit DB Packet Storm
855 6.1 警告
Network 		Open Source Geospatial Foundation MapServer Open Source Geospatial FoundationのMapServerにおけるクロスサイトスクリプティングの脆弱性 CWE-80
クロスサイトスクリプティング (Basic XSS) 		CVE-2026-42030 2026-05-18 12:15 2026-05-8 Show GitHub Exploit DB Packet Storm
856 6.5 警告
Network 		argoproj Argo Workflows Argo Project AuthorsのArgo WorkflowsにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-42183 2026-05-18 12:14 2026-05-9 Show GitHub Exploit DB Packet Storm
857 7.5 重要
Network 		russh project
warpgate project		 russh
warpgate 		russh project等の複数ベンダの製品における複数の脆弱性 CWE-770
CWE-789
CVE-2026-42189 2026-05-18 12:14 2026-05-8 Show GitHub Exploit DB Packet Storm
858 7.5 重要
Network 		OWASP ModSecurity OWASPのModSecurityにおける複数の脆弱性 CWE-191
CWE-248
CVE-2026-42268 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
859 4.3 警告
Network 		n8n-MCP n8n-MCP n8n-MCPにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-42282 2026-05-18 12:14 2026-05-8 Show GitHub Exploit DB Packet Storm
860 7.5 重要
Network 		argoproj Argo Workflows Argo Project AuthorsのArgo Workflowsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42294 2026-05-18 12:14 2026-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318951 - - - Rejected reason: This is unused. - CVE-2023-42775 2024-02-15 03:15 2024-02-15 Show GitHub Exploit DB Packet Storm
318952 - - - Rejected reason: This is unused. - CVE-2023-42665 2024-02-15 03:15 2024-02-15 Show GitHub Exploit DB Packet Storm
318953 - - - Rejected reason: This is unused. - CVE-2023-42437 2024-02-15 03:15 2024-02-15 Show GitHub Exploit DB Packet Storm
318954 - - - Rejected reason: This is unused. - CVE-2023-39450 2024-02-15 03:15 2024-02-15 Show GitHub Exploit DB Packet Storm
318955 - - - Rejected reason: This is unused. - CVE-2023-38262 2024-02-15 03:15 2024-02-15 Show GitHub Exploit DB Packet Storm
318956 - - - Rejected reason: This is unused. - CVE-2023-38137 2024-02-15 03:15 2024-02-15 Show GitHub Exploit DB Packet Storm
318957 7.8 HIGH
Local 		microsoft windows_2000 Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sen… CWE-306
Missing Authentication for Critical Function 		CVE-2004-0213 2024-02-15 02:25 2004-08-6 Show GitHub Exploit DB Packet Storm
318958 7.5 HIGH
Network 		dlink dwl-900ap\+_firmware D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote attackers to access the TFTP server without authentication and read the config.img file, which contains sensitive information such as the admi… CWE-306
Missing Authentication for Critical Function 		CVE-2002-1810 2024-02-15 02:25 2002-12-31 Show GitHub Exploit DB Packet Storm
318959 - andynorman gnuserv gnuserv before 3.12, as shipped with XEmacs, does not properly check the specified length of an X Windows MIT-MAGIC-COOKIE cookie, which allows remote attackers to execute arbitrary commands via a bu… CWE-120
Classic Buffer Overflow 		CVE-2001-0191 2024-02-15 02:25 2001-05-3 Show GitHub Exploit DB Packet Storm
318960 - awstats
canonical
debian 		awstats
ubuntu_linux
debian_linux 		Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $u… CWE-94
Code Injection 		CVE-2005-1527 2024-02-15 01:58 2005-08-15 Show GitHub Exploit DB Packet Storm