Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
991 6.6 警告
Local 		Veeam one サムスンのOneにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-40449 2026-04-30 12:13 2026-04-22 Show GitHub Exploit DB Packet Storm
992 6.6 警告
Local 		Veeam one サムスンのOneにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-40450 2026-04-30 12:13 2026-04-22 Show GitHub Exploit DB Packet Storm
993 8.2 重要
Network 		UltraDAG UltraDAG UltraDAGにおける複数の脆弱性 CWE-460
CWE-696
CVE-2026-40583 2026-04-30 12:13 2026-04-21 Show GitHub Exploit DB Packet Storm
994 7.5 重要
Network 		RansomLook RansomLook RansomLookにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-40584 2026-04-30 12:13 2026-04-21 Show GitHub Exploit DB Packet Storm
995 5.6 警告
Local 		Home Assistant Ecosystem Home Assistant Command-line Interface (hass-cli) Home Assistant EcosystemのHome Assistant Command-line Interface (hass-cli)における複数の脆弱性 CWE-1336
CWE-94
CVE-2026-40602 2026-04-30 12:13 2026-04-21 Show GitHub Exploit DB Packet Storm
996 5.5 警告
Local 		Dayuan Jiang (DayuanJiang) Next AI Draw.io Dayuan Jiang (DayuanJiang)のNext AI Draw.ioにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-40608 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
997 8.1 重要
Network 		Zcash Foundation Zebra-consensus
Zebrad 		Zcash FoundationのZebra-consensus等の複数製品における誤った要素を使用した比較に関する脆弱性 CWE-1025
誤った要素を使用した比較 		CVE-2026-40880 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
998 7.5 重要
Network 		Zcash Foundation zebra-network
Zebrad 		Zcash Foundationのzebra-network等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-40881 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
999 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40888 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
1000 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40889 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313211 5.4 MEDIUM
Network 		pmweb pmweb A vulnerability has been found in PMWeb 7.2.00 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Web Application Firewall. The manipulation le… CWE-79
Cross-site Scripting 		CVE-2024-7466 2024-08-7 02:27 2024-08-5 Show GitHub Exploit DB Packet Storm
313212 8.8 HIGH
Network 		siamonhasan warehouse_inventory_system A vulnerability was found in OSWAPP Warehouse Inventory System 1.0/2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /change_password.ph… CWE-352
 Origin Validation Error 		CVE-2024-7460 2024-08-7 02:19 2024-08-5 Show GitHub Exploit DB Packet Storm
313213 8.8 HIGH
Network 		siamonhasan warehouse_inventory_system A vulnerability was found in OSWAPP Warehouse Inventory System 1.0/2.0. It has been classified as problematic. Affected is an unknown function of the file /edit_account.php. The manipulation leads to… CWE-352
 Origin Validation Error 		CVE-2024-7459 2024-08-7 02:14 2024-08-5 Show GitHub Exploit DB Packet Storm
313214 9.8 CRITICAL
Network 		eladmin eladmin A vulnerability was found in elunez eladmin up to 2.7 and classified as critical. This issue affects some unknown processing of the file /api/deploy/upload /api/database/upload of the component Datab… CWE-22
Path Traversal 		CVE-2024-7458 2024-08-7 02:12 2024-08-5 Show GitHub Exploit DB Packet Storm
313215 - - - PrivX before 34.0 allows data exfiltration and denial of service via the REST API. This is fixed in minor versions 33.1, 32.3, 31.3, and later, and in major version 34.0 and later, - CVE-2024-30170 2024-08-7 01:35 2024-08-6 Show GitHub Exploit DB Packet Storm
313216 - - - Unexpected marking work at the start of sweeping could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, and Firefox ESR < 128.1. - CVE-2024-7527 2024-08-7 01:35 2024-08-6 Show GitHub Exploit DB Packet Storm
313217 - - - A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. This vulnerability affects Firefox < 129 and Firefox ESR < 128.1. - CVE-2024-7520 2024-08-7 01:35 2024-08-6 Show GitHub Exploit DB Packet Storm
313218 7.5 HIGH
Network 		- - Transient DOS during music playback of ALAC content. - CVE-2024-21479 2024-08-7 01:31 2024-08-6 Show GitHub Exploit DB Packet Storm
313219 6.5 MEDIUM
Network 		- - Information disclosure while handling beacon probe frame during scan entry generation in client side. - CVE-2024-21467 2024-08-7 01:31 2024-08-6 Show GitHub Exploit DB Packet Storm
313220 6.5 MEDIUM
Network 		- - Information disclosure while handling beacon or probe response frame in STA. - CVE-2024-21459 2024-08-7 01:31 2024-08-6 Show GitHub Exploit DB Packet Storm