Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1561 5.3 警告
Network 		MediaWiki MediaWiki MediaWikiにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-34093 2026-05-20 13:20 2026-05-11 Show GitHub Exploit DB Packet Storm
1562 3.8
Network 		MediaWiki MediaWiki MediaWikiにおける誤った領域へのリソースの漏えいに関する脆弱性 CWE-668
誤った領域へのリソースの漏えい 		CVE-2026-34094 2026-05-20 13:20 2026-05-11 Show GitHub Exploit DB Packet Storm
1563 8.1 重要
Network 		Apache Software Foundation Apache Flink Apache Software FoundationのApache Flinkにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-35194 2026-05-20 13:20 2026-05-15 Show GitHub Exploit DB Packet Storm
1564 4.3 警告
Network 		マイクロソフト Microsoft Edge Microsoft Edge (Chromium ベース) for Android のスプーフィングの脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-35429 2026-05-20 13:20 2026-05-12 Show GitHub Exploit DB Packet Storm
1565 7.8 重要
Local 		Linux Foundation Automotive Grade Linux Linux FoundationのAutomotive Grade Linuxにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-37525 2026-05-20 13:20 2026-05-1 Show GitHub Exploit DB Packet Storm
1566 7.8 重要
Local 		Linux Foundation Automotive Grade Linux Linux FoundationのAutomotive Grade Linuxにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-37526 2026-05-20 13:20 2026-05-1 Show GitHub Exploit DB Packet Storm
1567 9.8 緊急
Network 		Linux Foundation Automotive Grade Linux Linux FoundationのAutomotive Grade Linuxにおける複数の脆弱性 CWE-22
CWE-367
CVE-2026-37531 2026-05-20 13:20 2026-05-1 Show GitHub Exploit DB Packet Storm
1568 6.5 警告
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-40016 2026-05-20 13:20 2026-05-12 Show GitHub Exploit DB Packet Storm
1569 4.3 警告
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品におけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-40020 2026-05-20 13:20 2026-05-12 Show GitHub Exploit DB Packet Storm
1570 7.8 重要
Local 		マイクロソフト Azure Connected Machine Agent Azure Connected Machine Agent の特権の昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40381 2026-05-20 13:20 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319191 - - - An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a me… - CVE-2024-45169 2024-08-23 00:35 2024-08-22 Show GitHub Exploit DB Packet Storm
319192 - - - The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command and control) server. Unauthenticated sessions remain open, causing resource consumption. For example, a… - CVE-2024-45163 2024-08-23 00:35 2024-08-22 Show GitHub Exploit DB Packet Storm
319193 - - - Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the book_id parameter at admin_room_history.php. - CVE-2024-42552 2024-08-23 00:35 2024-08-20 Show GitHub Exploit DB Packet Storm
319194 9.8 CRITICAL
Network 		secom dr.id_access_control Dr.ID Access Control System from SECOM does not properly validate a specific page parameter, allowing unauthenticated remote attackers to inject SQL commands to read, modify, and delete database cont… CWE-89
SQL Injection 		CVE-2024-7731 2024-08-22 23:40 2024-08-14 Show GitHub Exploit DB Packet Storm
319195 9.8 CRITICAL
Network 		traccar traccar Use of Default Credentials vulnerability in Tananaev Solutions Traccar Server on Administrator Panel modules allows Authentication Abuse.This issue affects the privileged transactions implemented by … CWE-287
Improper Authentication 		CVE-2024-7746 2024-08-22 23:40 2024-08-14 Show GitHub Exploit DB Packet Storm
319196 5.5 MEDIUM
Local 		fortinet fortios An improper access control vulnerability [CWE-284] in FortiOS 7.4.0 through 7.4.3, 7.2.5 through 7.2.7, 7.0.12 through 7.0.14 and 6.4.x may allow an attacker who has already successfully obtained wri… NVD-CWE-Other
CVE-2024-36505 2024-08-22 23:36 2024-08-14 Show GitHub Exploit DB Packet Storm
319197 - - - An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Data is transferred over a raw socket without any authentication mechanism. Thus, communication endpoints are not verifiable. - CVE-2024-45168 2024-08-22 23:35 2024-08-22 Show GitHub Exploit DB Packet Storm
319198 - - - An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a me… - CVE-2024-45166 2024-08-22 23:35 2024-08-22 Show GitHub Exploit DB Packet Storm
319199 9.8 CRITICAL
Network 		arajajyothibabu school_management_system School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at dtmarks.php. CWE-89
SQL Injection 		CVE-2024-42573 2024-08-22 23:35 2024-08-20 Show GitHub Exploit DB Packet Storm
319200 7.8 HIGH
Local 		fortinet fortimanager
fortianalyzer 		A unverified password change in Fortinet FortiManager versions 7.0.0 through 7.0.10, versions 7.2.0 through 7.2.4, and versions 7.4.0 through 7.4.1, as well as Fortinet FortiAnalyzer versions 7.0.0 t… NVD-CWE-Other
CVE-2024-21757 2024-08-22 23:34 2024-08-14 Show GitHub Exploit DB Packet Storm