Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1681	9.1	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43117	2026-05-11 11:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

1682	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43118	2026-05-11 11:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

1683	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-43124	2026-05-11 11:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

1684	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-43125	2026-05-11 11:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

1685	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43126	2026-05-11 11:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

1686	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2026-43127	2026-05-11 11:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

1687	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける二重解放に関する脆弱性	CWE-415 二重解放	CVE-2026-43128	2026-05-11 11:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

1688	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43129	2026-05-11 11:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

1689	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43130	2026-05-11 11:06	2026-05-6	Show	GitHub Exploit DB Packet Storm

1690	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-43131	2026-05-11 11:06	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312401	8.8	HIGH Network	piwebsolution	product_enquiry_for_woocommerce	The Product Enquiry for WooCommerce, WooCommerce product catalog plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.2.33.32 via deserialization of untr…	CWE-502 Deserialization of Untrusted Data	CVE-2024-8922	2024-10-5 04:11	2024-09-27	Show	GitHub Exploit DB Packet Storm

312402	6.1	MEDIUM Network	stellarwp	the_events_calendar	The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via RSVP name field in all versions up to, and including, 6.6.3 due to insufficient input sanitization and ou…	CWE-79 Cross-site Scripting	CVE-2024-6931	2024-10-5 04:08	2024-09-27	Show	GitHub Exploit DB Packet Storm

312403	5.4	MEDIUM Network	leap13	premium_addons_for_elementor	The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient…	CWE-79 Cross-site Scripting	CVE-2024-8681	2024-10-5 04:04	2024-09-27	Show	GitHub Exploit DB Packet Storm

312404	5.4	MEDIUM Network	codesupply	absolute_reviews	The Absolute Reviews plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Name' field of a custom post criteria in all versions up to, and including, 1.1.3 due to insufficient i…	CWE-79 Cross-site Scripting	CVE-2024-8965	2024-10-5 04:04	2024-09-27	Show	GitHub Exploit DB Packet Storm

312405	8.8	HIGH Network	advantech	adam-5630_firmware	Advantech ADAM-5630 contains a cross-site request forgery (CSRF) vulnerability. It allows an attacker to partly circumvent the same origin policy, which is designed to prevent different websites fro…	CWE-352 Origin Validation Error	CVE-2024-28948	2024-10-5 03:58	2024-09-28	Show	GitHub Exploit DB Packet Storm

312406	5.4	MEDIUM Network	hyumika	openstreetmap	The OSM – OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's osm_map and osm_map_v3 shortcodes in all versions up to, and including, 6.1.0 due to insuffi…	CWE-79 Cross-site Scripting	CVE-2024-8991	2024-10-5 03:56	2024-09-27	Show	GitHub Exploit DB Packet Storm

312407	5.4	MEDIUM Network	fastlinemedia	beaver_builder	The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Button Group module in all versions up to, and including, 2.8.3.6 due to…	CWE-79 Cross-site Scripting	CVE-2024-9049	2024-10-5 03:53	2024-09-27	Show	GitHub Exploit DB Packet Storm

312408	4.3	MEDIUM Network	bg5sbk	minicms	A vulnerability was found in bg5sbk MiniCMS 1.11. It has been classified as problematic. Affected is an unknown function of the file page-edit.php. The manipulation leads to cross-site request forger…	CWE-352 Origin Validation Error	CVE-2024-9282	2024-10-5 03:33	2024-09-27	Show	GitHub Exploit DB Packet Storm

312409	7.5	HIGH Network	amirraminfar	dozzle	Dozzle is a realtime log viewer for docker containers. Before version 8.5.3, the app uses sha-256 as the hash for passwords, which leaves users susceptible to rainbow table attacks. The app switches …	CWE-326 Inadequate Encryption Strength	CVE-2024-47182	2024-10-5 03:31	2024-09-27	Show	GitHub Exploit DB Packet Storm

312410	8.2	HIGH Network	openpetra	openpetra	Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMCommon.asmx function.	CWE-79 Cross-site Scripting	CVE-2024-40510	2024-10-5 03:28	2024-09-28	Show	GitHub Exploit DB Packet Storm