Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1481	6.1	警告 Network	The Kyverno Authors	Policy-reporter-ui	The Kyverno AuthorsのPolicy-reporter-uiにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44245	2026-05-28 14:32	2026-05-12	Show	GitHub Exploit DB Packet Storm

1482	8.6	重要 Network	Marginal	v1-core	Marginalのv1-coreにおける数値型間の変換の誤りに関する脆弱性	CWE-681 数値型間の変換の誤り	CVE-2026-4931	2026-05-28 14:32	2026-04-7	Show	GitHub Exploit DB Packet Storm

1483	7.4	重要 Network	Project Jupyter	Jupyter Server	Jupyter Serverにおけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2025-61669	2026-05-28 12:05	2026-05-28	Show	GitHub Exploit DB Packet Storm

1484	-	-	日立	Hitachi Application Server uCosminexus Application Runtime with Java for Apache Tomcat uCosminexus Application Runtime with Java…	Cosminexusにおける複数の脆弱性	-	CVE-2026-22007 CVE-2026-22013 CVE-2026-22016 CVE-2026-22018 CVE-2026-22021 CVE-2026-23865 CVE-2026-34268 CVE-2026-34282	2026-05-27 13:53	2026-05-26	Show	GitHub Exploit DB Packet Storm

1485	-	-	日立	Hitachi Automation Director Hitachi Replication Manager Hitachi Configuration Manager Hitachi Ops Center API Configuration Manager H…	Hitachi Command Suite製品, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics AdvisorおよびHitachi Ops Center製品における複数の脆弱性	-	CVE-2026-22007 CVE-2026-22013 CVE-2026-22016 CVE-2026-22018 CVE-2026-22021 CVE-2026-23865 CVE-2026-34268 CVE-2026-34282	2026-05-27 13:53	2026-05-26	Show	GitHub Exploit DB Packet Storm

1486	-	-	日立	Hitachi Infrastructure Analytics Advisor Hitachi Ops Center Analyzer Hitachi Ops Center Analyzer viewpoint	Hitachi Infrastructure Analytics Advisor，Hitachi Ops Center AnalyzerおよびHitachi Ops Center Analyzer viewpointにおける脆弱性	-	CVE-2026-3314	2026-05-27 13:53	2026-05-26	Show	GitHub Exploit DB Packet Storm

1487	-	-	LMSYS Org	SGLang	SGLangにおける複数の脆弱性	-	CVE-2026-5760 CVE-2026-7301 CVE-2026-7302 CVE-2026-7304	2026-05-27 12:17	2026-05-26	Show	GitHub Exploit DB Packet Storm

1488	-	-	dnsmasq	dnsmasq	dnsmasqにおける複数の脆弱性	-	CVE-2026-2291 CVE-2026-4890 CVE-2026-4891 CVE-2026-4892 CVE-2026-4893 CVE-2026-5172	2026-05-27 12:17	2026-05-26	Show	GitHub Exploit DB Packet Storm

1489	-	-	Linux	Linux Kernel	Linuxカーネルにおける複数の脆弱性	-	CVE-2026-31431 CVE-2026-43284 CVE-2026-43500	2026-05-26 14:07	2026-05-25	Show	GitHub Exploit DB Packet Storm

1490	6.8	警告 Adjacent	日本電気	Aterm CM51FD Aterm MR51FN	NEC AtermシリーズにおけるOSコマンドインジェクションの脆弱性（NV26-003）	CWE-78 OSコマンド・インジェクション	CVE-2026-8652	2026-05-25 15:43	2026-05-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319451	6.5	MEDIUM Network	qnap	qts quts_hero	A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to read the contents of unexpected files and expos…	CWE-22 Path Traversal	CVE-2023-51366	2024-09-11 22:32	2024-09-7	Show	GitHub Exploit DB Packet Storm

319452	4.8	MEDIUM Network	qnap	qts quts_hero	A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to inject malic…	CWE-79 Cross-site Scripting	CVE-2023-50366	2024-09-11 22:31	2024-09-7	Show	GitHub Exploit DB Packet Storm

319453	8.8	HIGH Network	qnap	qts quts_hero	A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute code via a …	CWE-120 CWE-121 Classic Buffer Overflow Stack-based Buffer Overflow	CVE-2023-51367	2024-09-11 22:27	2024-09-7	Show	GitHub Exploit DB Packet Storm

319454	6.5	MEDIUM Network	zoom	workplace workplace_desktop workplace_virtual_desktop_infrastructure rooms	Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access.	CWE-522 Insufficiently Protected Credentials	CVE-2024-39818	2024-09-11 22:27	2024-08-15	Show	GitHub Exploit DB Packet Storm

319455	6.5	MEDIUM Network	terminalfour	terminalfour	A Server-Side Request Forgery (SSRF) vulnerability in Terminalfour before 8.3.19 allows authenticated users to use specific features to access internal services including sensitive information on the…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-22217	2024-09-11 22:19	2024-08-16	Show	GitHub Exploit DB Packet Storm

319456	5.4	MEDIUM Network	yogeshojha	rengine	reNgine is an automated reconnaissance framework for web applications. Versions 2.1.2 and prior are susceptible to Stored Cross-Site Scripting (XSS) attacks. This vulnerability occurs when scanning a…	CWE-79 Cross-site Scripting	CVE-2024-43381	2024-09-11 22:02	2024-08-17	Show	GitHub Exploit DB Packet Storm

319457	9.8	CRITICAL Network	h3c	magic_b1st_firmware	H3C Magic B1ST v100R012 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.	CWE-798 Use of Hard-coded Credentials	CVE-2024-42638	2024-09-11 21:53	2024-08-17	Show	GitHub Exploit DB Packet Storm

319458	7.5	HIGH Network	google	android	In sdpu_compare_uuid_with_attr of sdp_utils.cc, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution pri…	CWE-120 Classic Buffer Overflow	CVE-2024-34727	2024-09-11 21:43	2024-08-16	Show	GitHub Exploit DB Packet Storm

319459	8.2	HIGH Network	xpdfreader	xpdf	In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an uninitialized variable in the DCT decoder. The proof-of-concept PDF file causes a segfault attempting to read fro…	CWE-908 Use of Uninitialized Resource	CVE-2024-7868	2024-09-11 21:40	2024-08-16	Show	GitHub Exploit DB Packet Storm

319460	8.8	HIGH Network	xyzscripts	insert_php_code_snippet	Cross-Site Request Forgery (CSRF) vulnerability in xyzscripts.Com Insert PHP Code Snippet.This issue affects Insert PHP Code Snippet: from n/a through 1.3.6.	CWE-352 Origin Validation Error	CVE-2024-43275	2024-09-11 21:33	2024-08-15	Show	GitHub Exploit DB Packet Storm