Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1391	8.2	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける不完全なブラックリストに関する脆弱性	CWE-184 不完全なブラックリスト	CVE-2026-42590	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

1392	8.2	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42591	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

1393	5.3	警告 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける複数の脆弱性	CWE-367 CWE-918	CVE-2026-42592	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

1394	5.3	警告 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける複数の脆弱性	CWE-22 CWE-73	CVE-2026-42593	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

1395	7.5	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-42594	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

1396	8.6	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42595	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

1397	9.4	緊急 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42596	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

1398	5.9	警告 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける複数の脆弱性	CWE-73 CWE-918	CVE-2026-42597	2026-05-20 13:28	2026-05-14	Show	GitHub Exploit DB Packet Storm

1399	9.8	緊急 Network	Espressif Systems	ESP32 Arduino	Espressif SystemsのESP32 Arduinoにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-42854	2026-05-20 13:28	2026-05-12	Show	GitHub Exploit DB Packet Storm

1400	4.3	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-4286	2026-05-20 13:28	2026-05-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311181	-	-	-	Jpress until v5.1.1 has arbitrary file uploads on the windows platform, and the construction of non-standard file formats such as .jsp. can lead to arbitrary command execution	-	CVE-2024-50919	2024-11-20 01:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311182	-	-	-	A NULL pointer dereference in the component libPdfCore.dll of Wondershare PDF Reader v1.0.9.2544 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.	-	CVE-2024-48294	2024-11-20 01:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311183	-	-	-	Incorrect access control in QuickHeal Antivirus Pro 24.1.0.182 and earlier allows authenticated attackers with low-level privileges to arbitrarily modify antivirus settings.	-	CVE-2024-48293	2024-11-20 01:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311184	-	-	-	An issue in the wssrvc.exe service of QuickHeal Antivirus Pro Version v24.0 and Quick Heal Total Security v24.0 allows authenticated attackers to escalate privileges.	-	CVE-2024-48292	2024-11-20 01:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311185	-	-	-	Mastodon 4.1.x before 4.1.17 and 4.2.x before 4.2.9 allows a bypass of rate limiting via a crafted HTTP request header.	-	CVE-2023-49952	2024-11-20 01:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311186	-	-	-	An issue was discovered in Veritas NetBackup before 10.5. This only applies to NetBackup components running on a Windows Operating System. If a user executes specific NetBackup commands or an attacke…	-	CVE-2024-52945	2024-11-20 01:35	2024-11-18	Show	GitHub Exploit DB Packet Storm

311187	-	-	-	An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24698. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Sit…	-	CVE-2024-52944	2024-11-20 01:35	2024-11-18	Show	GitHub Exploit DB Packet Storm

311188	-	-	-	In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings bypass due to a missing permission check. This could lead to local escalation of privilege allowing u…	-	CVE-2017-13314	2024-11-20 01:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

311189	-	-	-	In ElementaryStreamQueue::dequeueAccessUnitMPEG4Video of ESQueue.cpp, there is a possible infinite loop leading to resource exhaustion due to an incorrect bounds check. This could lead to remote deni…	-	CVE-2017-13313	2024-11-20 01:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

311190	-	-	-	In createFromParcel of MediaCas.java, there is a possible parcel read/write mismatch due to improper input validation. This could lead to local escalation of privilege where an app can start an activ…	-	CVE-2017-13312	2024-11-20 01:35	2024-11-16	Show	GitHub Exploit DB Packet Storm