Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1541 9.8 緊急
Network 		goshs goshs goshsにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-40884 2026-04-30 12:28 2026-04-21 Show GitHub Exploit DB Packet Storm
1542 8.8 重要
Network 		goshs goshs goshsにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-40885 2026-04-30 12:28 2026-04-21 Show GitHub Exploit DB Packet Storm
1543 7.5 重要
Network 		gomarkdown markdown gomarkdownのMarkdownにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-40890 2026-04-30 12:28 2026-04-21 Show GitHub Exploit DB Packet Storm
1544 10 緊急
Network 		WWBN AVideo WWBNのAVideoにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-40911 2026-04-30 12:28 2026-04-21 Show GitHub Exploit DB Packet Storm
1545 5.4 警告
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40923 2026-04-30 12:27 2026-04-21 Show GitHub Exploit DB Packet Storm
1546 6.5 警告
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-40924 2026-04-30 12:27 2026-04-21 Show GitHub Exploit DB Packet Storm
1547 7.5 重要
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおける引数の挿入または変更に関する脆弱性 CWE-88
引数の挿入または変更 		CVE-2026-40938 2026-04-30 12:27 2026-04-21 Show GitHub Exploit DB Packet Storm
1548 6.5 警告
Network 		Apache Software Foundation ActiveMQ Web
Apache ActiveMQ 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-79
CWE-79
CWE-915
CVE-2026-41043 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
1549 8.8 重要
Network 		Apache Software Foundation Apache ActiveMQ
ActiveMQ Broker 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-20
CWE-94
CVE-2026-41044 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
1550 8.2 重要
Network 		oauth2_proxy project oauth2_proxy oauth2_proxy projectのoauth2_proxyにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-41059 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313601 9.8 CRITICAL
Network 		demozx gf_cms A vulnerability was found in demozx gf_cms 1.0/1.0.1. It has been classified as critical. This affects the function init of the file internal/logic/auth/auth.go of the component JWT Authentication. T… CWE-798
 Use of Hard-coded Credentials 		CVE-2024-8005 2024-08-22 00:49 2024-08-20 Show GitHub Exploit DB Packet Storm
313602 9.8 CRITICAL
Network 		newlib_project newlib An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling in the _gettimeofday function. CWE-190
 Integer Overflow or Wraparound 		CVE-2024-30949 2024-08-22 00:48 2024-08-21 Show GitHub Exploit DB Packet Storm
313603 - - - The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not sanitise and escape user inputs, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks against admins - CVE-2024-6843 2024-08-22 00:35 2024-08-19 Show GitHub Exploit DB Packet Storm
313604 5.4 MEDIUM
Network 		adonesevangelista laravel_property_management_system A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/no… CWE-79
Cross-site Scripting 		CVE-2024-7945 2024-08-22 00:25 2024-08-20 Show GitHub Exploit DB Packet Storm
313605 8.8 HIGH
Network 		adonesevangelista laravel_property_management_system A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been classified as critical. Affected is the function UpdateDocumentsRequest of the file DocumentsController.p… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-7944 2024-08-22 00:24 2024-08-20 Show GitHub Exploit DB Packet Storm
313606 - - - Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/domain_management.php?whitelist_add - CVE-2024-42612 2024-08-21 23:35 2024-08-21 Show GitHub Exploit DB Packet Storm
313607 8.8 HIGH
Network 		siamonhasan warehouse_inventory_system A Cross-Site Request Forgery (CSRF) in the component add_product.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges. CWE-352
 Origin Validation Error 		CVE-2024-42577 2024-08-21 23:35 2024-08-20 Show GitHub Exploit DB Packet Storm
313608 - - - Typecho v1.3.0 was discovered to contain a race condition vulnerability in the post commenting function. This vulnerability allows attackers to post several comments before the spam protection checks… - CVE-2024-35539 2024-08-21 23:35 2024-08-20 Show GitHub Exploit DB Packet Storm
313609 7.5 HIGH
Network 		tamparongj_03 online_graduate_tracer_system A vulnerability, which was classified as problematic, was found in SourceCodester Online Graduate Tracer System 1.0. Affected is an unknown function of the file /tracking/admin/exportcs.php. The mani… NVD-CWE-noinfo
CVE-2024-7843 2024-08-21 23:13 2024-08-16 Show GitHub Exploit DB Packet Storm
313610 7.5 HIGH
Network 		tamparongj_03 online_graduate_tracer_system A vulnerability, which was classified as problematic, has been found in SourceCodester Online Graduate Tracer System 1.0. This issue affects some unknown processing of the file /tracking/admin/export… NVD-CWE-noinfo
CVE-2024-7842 2024-08-21 23:13 2024-08-16 Show GitHub Exploit DB Packet Storm