Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1061	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Microsoft Word Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-122 CWE-843 CWE-908	CVE-2026-40364	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

1062	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Microsoft Word Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40366	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

1063	8.4	重要 Local	マイクロソフト	Microsoft Office Office Long Term Servicing Channel (LTSC) Microsoft 365 Apps Microsoft SharePoint Server Microsoft Word	Microsoft Word のリモートでコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-40367	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

1064	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40418	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

1065	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40419	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

1066	8.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-40420	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

1067	5.8	警告 Network	traefik	traefik	traefikにおける送信データへの重要な情報の挿入に関する脆弱性	CWE-201 送信データへの重要な情報の挿入	CVE-2026-41181	2026-05-21 10:52	2026-05-15	Show	GitHub Exploit DB Packet Storm

1068	7.5	重要 Network	DHTMLX	PDF Export Module	DHTMLXのPDF Export Moduleにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41552	2026-05-21 10:52	2026-05-15	Show	GitHub Exploit DB Packet Storm

1069	9.1	緊急 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-41919	2026-05-21 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

1070	9.1	緊急 Network	LangGenius, Inc.	Dify	LangGenius, Inc.のDifyにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-41947	2026-05-21 10:52	2026-05-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319171	5.3	MEDIUM Network	online_railway_reservation_system_project	online_railway_reservation_system	A vulnerability was found in CodeAstro Online Railway Reservation System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/assets/. The manipulation…	NVD-CWE-Other	CVE-2024-7912	2024-08-20 01:16	2024-08-19	Show	GitHub Exploit DB Packet Storm

319172	7.2	HIGH Network	dahuasecurity	nvr4104-4ks2\/l_firmware nvr4108-4ks2\/l_firmware nvr4116-4ks2\/l_firmware nvr4104-p-4ks2\/l_firmware nvr4108-p-4ks2\/l_firmware nvr4108-8p-4ks2\/l_firmware nvr4116-8p-4ks2\/l_firmw…	A vulnerability has been found in Dahua products.After obtaining the administrator's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities…	NVD-CWE-noinfo	CVE-2024-39946	2024-08-20 01:16	2024-07-31	Show	GitHub Exploit DB Packet Storm

319173	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid…	-	CVE-2022-4425	2024-08-20 01:15	2024-08-20	Show	GitHub Exploit DB Packet Storm

319174	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid…	-	CVE-2022-4411	2024-08-20 01:15	2024-08-20	Show	GitHub Exploit DB Packet Storm

319175	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid…	-	CVE-2022-4404	2024-08-20 01:15	2024-08-20	Show	GitHub Exploit DB Packet Storm

319176	9.8	CRITICAL Network	dahuasecurity	nvr4104-4ks2\/l_firmware nvr4108-4ks2\/l_firmware nvr4116-4ks2\/l_firmware nvr4104-p-4ks2\/l_firmware nvr4108-p-4ks2\/l_firmware nvr4108-8p-4ks2\/l_firmware nvr4116-8p-4ks2\/l_firmw…	A vulnerability has been found in Dahua products. Attackers can send carefully crafted data packets to the interface with vulnerabilities to initiate device initialization.	NVD-CWE-noinfo	CVE-2024-39950	2024-08-20 01:15	2024-07-31	Show	GitHub Exploit DB Packet Storm

319177	9.8	CRITICAL Network	angeljudesuarez	billing_system	A vulnerability was found in itsourcecode Billing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /addclient1.php. The manipulation of the argument l…	CWE-89 SQL Injection	CVE-2024-7913	2024-08-20 01:14	2024-08-19	Show	GitHub Exploit DB Packet Storm

319178	5.4	MEDIUM Network	oretnom23	yoga_class_registration_system	A vulnerability classified as problematic has been found in SourceCodester Yoga Class Registration System 1.0. Affected is an unknown function of the file /php-ycrs/classes/SystemSettings.php. The ma…	CWE-79 Cross-site Scripting	CVE-2024-7914	2024-08-20 01:12	2024-08-19	Show	GitHub Exploit DB Packet Storm

319179	7.5	HIGH Network	dahuasecurity	nvr4104-4ks2\/l_firmware nvr4108-4ks2\/l_firmware nvr4116-4ks2\/l_firmware nvr4104-p-4ks2\/l_firmware nvr4108-p-4ks2\/l_firmware nvr4108-8p-4ks2\/l_firmware nvr4116-8p-4ks2\/l_firmw…	A vulnerability has been found in Dahua products.Attackers can send carefully crafted data packets to the interface with vulnerabilities, causing the device to crash.	NVD-CWE-noinfo	CVE-2024-39944	2024-08-20 01:12	2024-07-31	Show	GitHub Exploit DB Packet Storm

319180	8.8	HIGH Network	dlink	dns-120_firmware dnr-202l_firmware dns-315l_firmware dns-320_firmware dns-320l_firmware dns-320lw_firmware dns-321_firmware dnr-322l_firmware dns-323_firmware dns-325_firmw…	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340…	CWE-120 Classic Buffer Overflow	CVE-2024-7832	2024-08-20 01:02	2024-08-15	Show	GitHub Exploit DB Packet Storm