Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1651	4.3	警告 Network	Torchbox	Wagtail	TorchboxのWagtailにおける不十分なパーミッションまたは特権の不適切な処理に関する脆弱性	CWE-280 権限管理不備	CVE-2026-44198	2026-05-14 10:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

1652	6.5	警告 Network	Torchbox	Wagtail	TorchboxのWagtailにおける不十分なパーミッションまたは特権の不適切な処理に関する脆弱性	CWE-280 権限管理不備	CVE-2026-44199	2026-05-14 10:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

1653	6.5	警告 Network	Torchbox	Wagtail	TorchboxのWagtailにおける不十分なパーミッションまたは特権の不適切な処理に関する脆弱性	CWE-280 権限管理不備	CVE-2026-44200	2026-05-14 10:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

1654	5.3	警告 Network	Torchbox	Wagtail	TorchboxのWagtailにおける不十分なパーミッションまたは特権の不適切な処理に関する脆弱性	CWE-280 権限管理不備	CVE-2026-44201	2026-05-14 10:15	2026-05-11	Show	GitHub Exploit DB Packet Storm

1655	7.5	重要 Network	JetBrains	TeamCity	JetBrainsのTeamCityにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-44413	2026-05-14 10:15	2026-05-11	Show	GitHub Exploit DB Packet Storm

1656	5.3	警告 Network	uriparser project	uriparser	uriparser projectのuriparserにおける数値打ち切り誤差に関する脆弱性	CWE-197 数値打ち切り誤差	CVE-2026-44927	2026-05-14 10:15	2026-05-8	Show	GitHub Exploit DB Packet Storm

1657	5.3	警告 Network	uriparser project	uriparser	uriparser projectのuriparserにおける常に不適切な制御フローの実装に関する脆弱性	CWE-670 常に不適切な制御フローの実装	CVE-2026-44928	2026-05-14 10:15	2026-05-8	Show	GitHub Exploit DB Packet Storm

1658	9.8	緊急 Network	digiwin	easyflow .net	digiwinのeasyflow .netにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-5963	2026-05-14 10:15	2026-04-20	Show	GitHub Exploit DB Packet Storm

1659	9.8	緊急 Network	digiwin	easyflow .net	digiwinのeasyflow .netにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-5964	2026-05-14 10:15	2026-04-20	Show	GitHub Exploit DB Packet Storm

1660	8.1	重要 Network	teamt5	threatsonar anti-ransomware	TeamT5 Inc.のThreatSonar Anti-Ransomwareにおける複数の脆弱性	CWE-22 CWE-23	CVE-2026-5966	2026-05-14 10:15	2026-04-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312031	9.8	CRITICAL Network	-	-	AIM LINE Marketing Platform from Esi Technology does not properly validate a specific query parameter. When the LINE Campaign Module is enabled, unauthenticated remote attackers can inject arbitrary …	CWE-89 SQL Injection	CVE-2024-9982	2024-10-15 17:15	2024-10-15	Show	GitHub Exploit DB Packet Storm

312032	7.3	HIGH Network	-	-	The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.1. This is due to the software allowi…	CWE-94 Code Injection	CVE-2024-9837	2024-10-15 17:15	2024-10-15	Show	GitHub Exploit DB Packet Storm

312033	-		-	-	Rejected reason: Unable to reproduce.	-	CVE-2024-1342	2024-10-15 07:15	2024-02-17	Show	GitHub Exploit DB Packet Storm

312034	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-9823. Reason: This candidate is a reservation duplicate of CVE-2024-9823. Notes: All CVE users should reference CV…	-	CVE-2023-45817	2024-10-15 03:15	2024-10-15	Show	GitHub Exploit DB Packet Storm

312035	-		-	-	External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls.Thi…	CWE-73 CWE-732 External Control of File Name or Path Incorrect Permission Assignment for Critical Resource	CVE-2024-9142	2024-10-15 01:35	2024-09-25	Show	GitHub Exploit DB Packet Storm

312036	-		-	-	Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-48251. Reason: This candidate is a reservation duplicate of CVE-2024-48251. Notes: All CVE users should reference CVE-2024-4825…	-	CVE-2024-48261	2024-10-15 00:15	2024-10-15	Show	GitHub Exploit DB Packet Storm

312037	-		-	-	Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.	-	CVE-2024-40616	2024-10-15 00:15	2024-10-15	Show	GitHub Exploit DB Packet Storm

312038	6.5	MEDIUM Network	adobe	commerce magento commerce_b2b	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in Privilege escalation. A low-privileged attacke…	CWE-863 Incorrect Authorization	CVE-2024-45132	2024-10-14 20:15	2024-10-10	Show	GitHub Exploit DB Packet Storm

312039	5.4	MEDIUM Network	adobe	commerce magento commerce_b2b	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged at…	CWE-863 Incorrect Authorization	CVE-2024-45131	2024-10-14 20:15	2024-10-10	Show	GitHub Exploit DB Packet Storm

312040	5.4	MEDIUM Network	adobe	commerce magento commerce_b2b	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged at…	CWE-863 Incorrect Authorization	CVE-2024-45128	2024-10-14 20:15	2024-10-10	Show	GitHub Exploit DB Packet Storm