Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1221 5.3 警告
Network 		protobufjs project protobufjs protobufjs projectのprotobufjsにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-44294 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1222 6.1 警告
Network 		hono hono honoにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-44455 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1223 6.5 警告
Network 		hono hono honoにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-44456 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1224 5.3 警告
Network 		hono hono honoにおける重要な情報を含むキャッシュの使用に関する脆弱性 CWE-524
重要な情報を含むキャッシュの使用 		CVE-2026-44457 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1225 4.3 警告
Network 		hono hono honoにおける複数の脆弱性 CWE-116
CWE-74
CVE-2026-44458 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1226 3.8
Network 		hono hono honoにおける入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2026-44459 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1227 7.5 重要
Network 		Vercel, Inc. (旧 Zeit, Inc.) Next.js Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-44573 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1228 8.1 重要
Network 		Vercel, Inc. (旧 Zeit, Inc.) Next.js Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-44574 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1229 7.5 重要
Network 		Vercel, Inc. (旧 Zeit, Inc.) Next.js Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-44575 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1230 5.9 警告
Network 		Vercel, Inc. (旧 Zeit, Inc.) Next.js Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-44577 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311751 4.3 MEDIUM
Adjacent 		acronis cyber_protect Excessive attack surface in archive-server service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. NVD-CWE-Other
CVE-2024-49382 2024-10-16 22:53 2024-10-15 Show GitHub Exploit DB Packet Storm
311752 4.3 MEDIUM
Adjacent 		acronis cyber_protect Excessive attack surface in acep-collector service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. NVD-CWE-Other
CVE-2024-49384 2024-10-16 22:52 2024-10-15 Show GitHub Exploit DB Packet Storm
311753 7.8 HIGH
Local 		electronics.jtekt kostac_plc_programming_software Out-of-bounds write vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project f… CWE-787
 Out-of-bounds Write 		CVE-2024-47134 2024-10-16 22:50 2024-10-3 Show GitHub Exploit DB Packet Storm
311754 8.8 HIGH
Network 		rems drag_and_drop_image_upload A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulati… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-9975 2024-10-16 22:44 2024-10-15 Show GitHub Exploit DB Packet Storm
311755 9.8 CRITICAL
Network 		code-projects pharmacy_management_system A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/manage_customer.php?action=search. The manipulatio… CWE-89
SQL Injection 		CVE-2024-9976 2024-10-16 22:42 2024-10-15 Show GitHub Exploit DB Packet Storm
311756 5.5 MEDIUM
Local 		adobe acrobat Acrobat for Edge versions 126.0.2592.81 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerabilit… CWE-125
Out-of-bounds Read 		CVE-2024-39379 2024-10-16 22:38 2024-07-31 Show GitHub Exploit DB Packet Storm
311757 6.8 MEDIUM
Network 		adobe commerce
magento 		Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could l… CWE-22
Path Traversal 		CVE-2024-39406 2024-10-16 22:37 2024-08-14 Show GitHub Exploit DB Packet Storm
311758 4.3 MEDIUM
Network 		adobe commerce
magento 		Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features a… CWE-352
 Origin Validation Error 		CVE-2024-39408 2024-10-16 22:36 2024-08-14 Show GitHub Exploit DB Packet Storm
311759 4.3 MEDIUM
Network 		adobe commerce
magento 		Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features a… CWE-352
 Origin Validation Error 		CVE-2024-39409 2024-10-16 22:35 2024-08-14 Show GitHub Exploit DB Packet Storm
311760 4.3 MEDIUM
Network 		adobe commerce
magento 		Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features a… CWE-352
 Origin Validation Error 		CVE-2024-39410 2024-10-16 22:34 2024-08-14 Show GitHub Exploit DB Packet Storm