Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1181	8.2	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける複数の脆弱性	CWE-184 CWE-73	CVE-2026-40893	2026-05-20 13:31	2026-05-14	Show	GitHub Exploit DB Packet Storm

1182	7.8	重要 Local	George Nachman	iTerm2	George NachmanのiTerm2における信頼できない制御領域からの機能の組み込みに関する脆弱性	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-41253	2026-05-20 13:31	2026-04-18	Show	GitHub Exploit DB Packet Storm

1183	8.2	重要 Network	Quantum Nous	New API	Quantum NousのNew APIにおける複数の脆弱性	CWE-1188 CWE-345 CWE-863	CVE-2026-41432	2026-05-20 13:31	2026-05-8	Show	GitHub Exploit DB Packet Storm

1184	8.8	重要 Network	anyscale	ray	anyscaleのrayにおける複数の脆弱性	CWE-502 CWE-94	CVE-2026-41486	2026-05-20 13:31	2026-05-8	Show	GitHub Exploit DB Packet Storm

1185	4.4	警告 Local	cilium	cilium	ciliumにおける複数の脆弱性	CWE-200 CWE-312 CWE-312	CVE-2026-41520	2026-05-20 13:31	2026-05-8	Show	GitHub Exploit DB Packet Storm

1186	7	重要 Local	VMware	VMware Fusion	VMwareのVMware FusionにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-41702	2026-05-20 13:31	2026-05-15	Show	GitHub Exploit DB Packet Storm

1187	4.3	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-42006	2026-05-20 13:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

1188	4.3	警告 Network	getkirby	kirby	getkirbyのkirbyにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42051	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

1189	6.5	警告 Network	getkirby	kirby	getkirbyのkirbyにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42069	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

1190	6.5	警告 Network	getkirby	kirby	getkirbyのkirbyにおける複数の脆弱性	CWE-862 CWE-863	CVE-2026-42137	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2751	-		-	-	Wine ships a .desktop file that registers itself as a MIME handler for EXE files and several other Windows executable file types. In some configurations, handling of an EXE file causes that file to b…	CWE-669 Incorrect Resource Transfer Between Spheres	CVE-2026-48831	2026-05-27 05:19	2026-05-25	Show	GitHub Exploit DB Packet Storm

2752	3.5	LOW Network	-	-	action/cookie.php in ecrire in SPIP before 4.4.15 is prone to an open redirect vulnerability.	CWE-601 Open Redirect	CVE-2026-48832	2026-05-27 05:19	2026-05-25	Show	GitHub Exploit DB Packet Storm

2753	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in bPlugins Tiktok Feed allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Tiktok Feed: from n/a through 1.0.24.	CWE-862 Missing Authorization	CVE-2026-24520	2026-05-27 05:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

2754	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Magepeople inc. Taxi Booking Manager for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Taxi Booking M…	CWE-862 Missing Authorization	CVE-2026-25426	2026-05-27 05:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

2755	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Magepeople inc. WpBookingly allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WpBookingly: from n/a through 1.2.9.	CWE-862 Missing Authorization	CVE-2026-25444	2026-05-27 05:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

2756	6.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Magepeople inc. WpTravelly allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WpTravelly: from n/a through 2.1.5.	CWE-862 Missing Authorization	CVE-2026-27331	2026-05-27 05:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

2757	7.3	HIGH Network	-	-	A flaw has been found in itsourcecode Student Transcript Processing System 1.0. This vulnerability affects unknown code of the file /admin/modules/student/trans.php. Executing a manipulation of the a…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9574	2026-05-27 05:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

2758	7.3	HIGH Network	-	-	A vulnerability has been found in itsourcecode Student Transcript Processing System 1.0. This issue affects some unknown processing of the file /admin/modules/class/index.php?view=view. The manipulat…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9575	2026-05-27 05:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

2759	9.8	CRITICAL Network	litespeedtech	litespeed_cpanel_plugin litespeed_whm_plugin	LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possibly to root), as exploited in the wild in May 2026. Detection is best done via a command line of grep -rE "cpanel_jsona…	CWE-266 Incorrect Privilege Assignment	CVE-2026-48172	2026-05-27 05:19	2026-05-21	Show	GitHub Exploit DB Packet Storm

2760	7.5	HIGH Network	-	-	D-Link DIR601 2.02NA contains a credential disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive configuration data by manipulating the table_name parameter in POST req…	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2018-25358	2026-05-27 05:16	2026-05-24	Show	GitHub Exploit DB Packet Storm