Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1201 4.8 警告
Network 		IBM IBM Guardium Data Protection IBMのIBM Guardium Data Protectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4919 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
1202 8.6 重要
Network 		HashiCorp Vault HashiCorpのVaultにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-5052 2026-04-30 12:25 2026-04-17 Show GitHub Exploit DB Packet Storm
1203 6.5 警告
Network 		Rapid7 velociraptor Rapid7のvelociraptorにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-5329 2026-04-30 12:25 2026-04-9 Show GitHub Exploit DB Packet Storm
1204 7.5 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-5477 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
1205 5.9 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-5500 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
1206 8.1 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-5501 2026-04-30 12:24 2026-04-10 Show GitHub Exploit DB Packet Storm
1207 9.1 緊急
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-5503 2026-04-30 12:24 2026-04-9 Show GitHub Exploit DB Packet Storm
1208 9 緊急
Network 		craftycontrol crafty controller craftycontrolのcrafty controllerにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-5652 2026-04-30 12:24 2026-04-21 Show GitHub Exploit DB Packet Storm
1209 7.5 重要
Network 		HashiCorp Vault HashiCorpのVaultにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-5807 2026-04-30 12:24 2026-04-17 Show GitHub Exploit DB Packet Storm
1210 7.1 重要
Local 		radare radare2 radareのradare2におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-6940 2026-04-30 12:24 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313211 5.4 MEDIUM
Network 		friendica friendica Friendica 2024.03 is vulnerable to Cross Site Scripting (XSS) in settings/profile via the homepage, xmpp, and matrix parameters. CWE-79
Cross-site Scripting 		CVE-2024-39094 2024-08-21 22:31 2024-08-20 Show GitHub Exploit DB Packet Storm
313212 7.5 HIGH
Network 		keyfactor command Keyfactor Command 10.5.x before 10.5.1 and 11.5.x before 11.5.1 allows SQL Injection which could result in information disclosure. CWE-89
SQL Injection 		CVE-2024-34458 2024-08-21 22:31 2024-08-20 Show GitHub Exploit DB Packet Storm
313213 7.5 HIGH
Network 		keyfactor aws_orchestrator Keyfactor AWS Orchestrator through 2.0 allows Information Disclosure. NVD-CWE-noinfo
CVE-2024-42006 2024-08-21 22:26 2024-08-20 Show GitHub Exploit DB Packet Storm
313214 8.8 HIGH
Network 		pligg pligg_cms Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=clearall CWE-352
 Origin Validation Error 		CVE-2024-42603 2024-08-21 22:21 2024-08-21 Show GitHub Exploit DB Packet Storm
313215 8.8 HIGH
Network 		pligg pligg_cms Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=avatars CWE-352
 Origin Validation Error 		CVE-2024-42609 2024-08-21 22:12 2024-08-21 Show GitHub Exploit DB Packet Storm
313216 8.8 HIGH
Network 		pligg pligg_cms Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=database CWE-352
 Origin Validation Error 		CVE-2024-42607 2024-08-21 22:12 2024-08-21 Show GitHub Exploit DB Packet Storm
313217 8.8 HIGH
Network 		pligg pligg_cms Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_log.php?clear=1 CWE-352
 Origin Validation Error 		CVE-2024-42606 2024-08-21 22:12 2024-08-21 Show GitHub Exploit DB Packet Storm
313218 8.8 HIGH
Network 		pligg pligg_cms Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/edit_page.php?link_id=1 CWE-352
 Origin Validation Error 		CVE-2024-42605 2024-08-21 22:12 2024-08-21 Show GitHub Exploit DB Packet Storm
313219 8.8 HIGH
Network 		pligg pligg_cms Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=install&widget=akismet CWE-352
 Origin Validation Error 		CVE-2024-42613 2024-08-21 22:11 2024-08-21 Show GitHub Exploit DB Packet Storm
313220 8.8 HIGH
Network 		pligg pligg_cms Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/admin_page.php?link_id=1&mode=delete CWE-352
 Origin Validation Error 		CVE-2024-42611 2024-08-21 22:11 2024-08-21 Show GitHub Exploit DB Packet Storm