Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1741	8.8	重要 Network	Lawnchair	Lawnchair	Lawnchairにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-39866	2026-04-27 11:27	2026-04-21	Show	GitHub Exploit DB Packet Storm

1742	6.1	警告 Network	NetFoundry	zrok	NetFoundryのzrokにおける複数の脆弱性	CWE-116 CWE-79	CVE-2026-40302	2026-04-27 11:27	2026-04-17	Show	GitHub Exploit DB Packet Storm

1743	7.5	重要 Network	NetFoundry	zrok	NetFoundryのzrokにおける複数の脆弱性	CWE-400 CWE-789	CVE-2026-40303	2026-04-27 11:27	2026-04-17	Show	GitHub Exploit DB Packet Storm

1744	5.3	警告 Network	NetFoundry	zrok	NetFoundryのzrokにおける複数の脆弱性	CWE-284 CWE-863	CVE-2026-40304	2026-04-27 11:27	2026-04-17	Show	GitHub Exploit DB Packet Storm

1745	8.8	重要 Network	HKUDS	OpenHarness	HKUDSのOpenHarnessにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-40502	2026-04-27 11:27	2026-04-16	Show	GitHub Exploit DB Packet Storm

1746	6.5	警告 Network	HKUDS	OpenHarness	HKUDSのOpenHarnessにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40503	2026-04-27 11:27	2026-04-16	Show	GitHub Exploit DB Packet Storm

1747	8.8	重要 Network	FreePBX	API Module	FreePBXのAPI ModuleにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-40520	2026-04-27 11:26	2026-04-21	Show	GitHub Exploit DB Packet Storm

1748	6.1	警告 Network	Yusuke Inuzuka (yuin)	goldmark	Yusuke Inuzuka (yuin)のgoldmarkにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-5160	2026-04-27 11:26	2026-04-15	Show	GitHub Exploit DB Packet Storm

1749	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-0186	2026-04-27 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

1750	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-3922	2026-04-27 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313781	5.3	MEDIUM Network	likeshop	likeshop	An IP Spoofing vulnerability has been discovered in Likeshop up to 2.5.7.20210811. This issue allows an attacker to replace their real IP address with any arbitrary IP address, specifically by adding…	CWE-290 Authentication Bypass by Spoofing	CVE-2024-41432	2024-08-9 00:02	2024-08-8	Show	GitHub Exploit DB Packet Storm

313782	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayed_work() and ceph_monc_stop() The way the delayed work is handled in ceph_monc_stop() is prone to…	CWE-416 Use After Free	CVE-2024-42232	2024-08-9 00:02	2024-08-8	Show	GitHub Exploit DB Packet Storm

313783	3.3	LOW Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: filemap: replace pte_offset_map() with pte_offset_map_nolock() The vmf->ptl in filemap_fault_recheck_pte_none() is still set from…	NVD-CWE-noinfo	CVE-2024-42233	2024-08-8 23:56	2024-08-8	Show	GitHub Exploit DB Packet Storm

313784	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: s390/mm: Add NULL pointer check to crst_table_free() base_crst_free() crst_table_free() used to work with NULL pointers before th…	CWE-476 NULL Pointer Dereference	CVE-2024-42235	2024-08-8 23:55	2024-08-8	Show	GitHub Exploit DB Packet Storm

313785	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm: fix crashes from deferred split racing folio migration Even on 6.10-rc6, I've been seeing elusive "Bad page state"s (often on…	CWE-415 Double Free	CVE-2024-42234	2024-08-8 23:55	2024-08-8	Show	GitHub Exploit DB Packet Storm

313786	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Return error if block header overflows file Return an error from cs_dsp_power_up() if a block header is longer …	CWE-120 Classic Buffer Overflow	CVE-2024-42238	2024-08-8 23:54	2024-08-8	Show	GitHub Exploit DB Packet Storm

313787	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Validate payload length before processing block Move the payload length check in cs_dsp_load() and cs_dsp_coeff…	CWE-834 Excessive Iteration	CVE-2024-42237	2024-08-8 23:54	2024-08-8	Show	GitHub Exploit DB Packet Storm

313788	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() Userspace provided string 's' could trivially have the length …	CWE-787 Out-of-bounds Write	CVE-2024-42236	2024-08-8 23:54	2024-08-8	Show	GitHub Exploit DB Packet Storm

313789	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: Fail bpf_timer_cancel when callback is being cancelled Given a schedule: timer1 cb timer2 cb bpf_timer_cancel(timer2); b…	CWE-667 Improper Locking	CVE-2024-42239	2024-08-8 23:54	2024-08-8	Show	GitHub Exploit DB Packet Storm

313790	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Revert "sched/fair: Make sure to try to detach at least one movable task" This reverts commit b0defa7ae03ecf91b8bfd10ede430cff12f…	CWE-667 Improper Locking	CVE-2024-42245	2024-08-8 23:53	2024-08-8	Show	GitHub Exploit DB Packet Storm