Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1471 7.5 重要
Network 		pillarjs multiparty pillarjsのmultipartyにおける複数の脆弱性 CWE-1321
CWE-248
CVE-2026-8161 2026-05-15 10:53 2026-05-12 Show GitHub Exploit DB Packet Storm
1472 7.5 重要
Network 		pillarjs multiparty pillarjsのmultipartyにおける例外的な状態の処理に関する脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2026-8162 2026-05-15 10:53 2026-05-12 Show GitHub Exploit DB Packet Storm
1473 5.3 警告
Network 		Leon Timmermans Crypt::Argon2 Leon TimmermansのCrypt::Argon2における複数の脆弱性 CWE-126
CWE-191
CVE-2026-8463 2026-05-15 10:53 2026-05-13 Show GitHub Exploit DB Packet Storm
1474 7.2 重要
Network 		IBM IBM Security Verify Directory IBMのIBM Security Verify Directoryにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2025-36074 2026-05-15 10:53 2026-04-23 Show GitHub Exploit DB Packet Storm
1475 8.8 重要
Local 		- アップルのmacOSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-43524 2026-05-15 10:53 2026-05-12 Show GitHub Exploit DB Packet Storm
1476 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2025-71287 2026-05-15 10:53 2026-05-6 Show GitHub Exploit DB Packet Storm
1477 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2025-71288 2026-05-15 10:53 2026-05-6 Show GitHub Exploit DB Packet Storm
1478 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71289 2026-05-15 10:53 2026-05-6 Show GitHub Exploit DB Packet Storm
1479 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2025-71290 2026-05-15 10:53 2026-05-6 Show GitHub Exploit DB Packet Storm
1480 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2025-71291 2026-05-15 10:53 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311741 6.1 MEDIUM
Network 		nerdpress smart_custom_404_error_page The Smart Custom 404 Error Page plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via $_SERVER['REQUEST_URI'] in all versions up to, and including, 11.4.7 due to insufficient input… CWE-79
Cross-site Scripting 		CVE-2024-9204 2024-10-16 23:26 2024-10-4 Show GitHub Exploit DB Packet Storm
311742 9.8 CRITICAL
Network 		wavelog wavelog Wavelog 1.8.5 allows Oqrs_model.php get_worked_modes station_id SQL injectioin. CWE-89
SQL Injection 		CVE-2024-48257 2024-10-16 23:24 2024-10-15 Show GitHub Exploit DB Packet Storm
311743 8.8 HIGH
Network 		dlink dir-619l_firmware A vulnerability classified as critical has been found in D-Link DIR-619L B1 2.06. Affected is the function formResetStatistic of the file /goform/formResetStatistic. The manipulation of the argument … CWE-120
Classic Buffer Overflow 		CVE-2024-9784 2024-10-16 23:12 2024-10-10 Show GitHub Exploit DB Packet Storm
311744 8.1 HIGH
Network 		shilpisoft client_dashboard This vulnerability exists in Shilpi Client Dashboard due to implementation of inadequate authentication mechanism in the login module wherein access to any users account is granted with just their co… NVD-CWE-Other
CVE-2024-47652 2024-10-16 23:12 2024-10-4 Show GitHub Exploit DB Packet Storm
311745 5.7 MEDIUM
Network 		enalean tuleap Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.40, Tuleap Enterprise Edition 15.13-3, and Tuleap Enterprise Edition 15… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2024-46988 2024-10-16 23:07 2024-10-15 Show GitHub Exploit DB Packet Storm
311746 5.4 MEDIUM
Network 		ultimatemember ultimate_member The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's '… CWE-79
Cross-site Scripting 		CVE-2024-8519 2024-10-16 23:06 2024-10-4 Show GitHub Exploit DB Packet Storm
311747 4.8 MEDIUM
Network 		enalean tuleap Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.37, Tuleap Enterprise Edition 15.13-3, and Tuleap Enterprise Edition 15… CWE-79
Cross-site Scripting 		CVE-2024-46980 2024-10-16 23:05 2024-10-15 Show GitHub Exploit DB Packet Storm
311748 7.5 HIGH
Network 		acronis cyber_protect Cleartext transmission of sensitive information in acep-collector service. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2024-49387 2024-10-16 22:58 2024-10-15 Show GitHub Exploit DB Packet Storm
311749 9.1 CRITICAL
Network 		acronis cyber_protect Sensitive information manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-49388 2024-10-16 22:57 2024-10-15 Show GitHub Exploit DB Packet Storm
311750 4.3 MEDIUM
Adjacent 		acronis cyber_protect Excessive attack surface in acep-importer service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. NVD-CWE-Other
CVE-2024-49383 2024-10-16 22:53 2024-10-15 Show GitHub Exploit DB Packet Storm