Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1851	9.3	緊急 Network	nanobot	nanobot	nanobotにおける WebSocket でのオリジン検証の欠如に関する脆弱性	CWE-1385 WebSocket でのオリジン検証の欠如	CVE-2026-35589	2026-04-27 11:21	2026-04-14	Show	GitHub Exploit DB Packet Storm

1852	8.8	重要 Network	webkul	krayin crm	webkulのkrayin crmにおける複数の脆弱性	CWE-269 CWE-639	CVE-2026-38529	2026-04-27 11:21	2026-04-14	Show	GitHub Exploit DB Packet Storm

1853	8.1	重要 Network	webkul	krayin crm	webkulのkrayin crmにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-38530	2026-04-27 11:21	2026-04-14	Show	GitHub Exploit DB Packet Storm

1854	8.1	重要 Network	webkul	krayin crm	webkulのkrayin crmにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-38532	2026-04-27 11:21	2026-04-14	Show	GitHub Exploit DB Packet Storm

1855	5.4	警告 Network	Istio	Istio	Istioにおける複数の脆弱性	CWE-185 CWE-863	CVE-2026-39350	2026-04-27 11:21	2026-04-15	Show	GitHub Exploit DB Packet Storm

1856	6.5	警告 Network	Project Jupyter	nbconvert	Project Jupyterのnbconvertにおける複数の脆弱性	CWE-22 CWE-73	CVE-2026-39377	2026-04-27 11:21	2026-04-21	Show	GitHub Exploit DB Packet Storm

1857	6.5	警告 Network	Project Jupyter	nbconvert	Project Jupyterのnbconvertにおける複数の脆弱性	CWE-22 CWE-73	CVE-2026-39378	2026-04-27 11:21	2026-04-21	Show	GitHub Exploit DB Packet Storm

1858	7.2	重要 Network	boidcms	boidcms	boidcmsにおけるPHP リモートファイルインクルージョンの脆弱性	CWE-98 PHP リモートファイルインクルージョン	CVE-2026-39387	2026-04-27 11:21	2026-04-14	Show	GitHub Exploit DB Packet Storm

1859	9.9	緊急 Network	openremote	openremote	openremoteにおける複数の脆弱性	CWE-917 CWE-94	CVE-2026-39842	2026-04-27 11:21	2026-04-15	Show	GitHub Exploit DB Packet Storm

1860	10	緊急 Network	Anthropic PBC	Claude Code	Anthropic PBCのClaude Codeにおける複数の脆弱性	CWE-22 CWE-61	CVE-2026-39861	2026-04-27 11:21	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313901	6.5	MEDIUM Network	logsign	unified_secops_platform	Logsign Unified SecOps Platform Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Log…	CWE-22 Path Traversal	CVE-2024-7564	2024-08-8 04:59	2024-08-7	Show	GitHub Exploit DB Packet Storm

313902	4.3	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discreti…	NVD-CWE-noinfo	CVE-2024-7005	2024-08-8 04:56	2024-08-7	Show	GitHub Exploit DB Packet Storm

313903	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTM…	NVD-CWE-Other	CVE-2024-7003	2024-08-8 04:52	2024-08-7	Show	GitHub Exploit DB Packet Storm

313904	8.8	HIGH Network	google	chrome	Use after free in User Education in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a …	CWE-416 Use After Free	CVE-2024-6998	2024-08-8 04:52	2024-08-7	Show	GitHub Exploit DB Packet Storm

313905	8.8	HIGH Network	google	chrome	Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HT…	CWE-416 Use After Free	CVE-2024-6997	2024-08-8 04:51	2024-08-7	Show	GitHub Exploit DB Packet Storm

313906	-		-	-	microweber 2.0.16 was discovered to contain a Cross Site Scripting (XSS) vulnerability via userfiles\modules\settings\admin.php.	-	CVE-2024-41381	2024-08-8 04:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

313907	-		-	-	microweber 2.0.16 was discovered to contain a Cross Site Scripting (XSS) vulnerability via userfiles\modules\tags\add_tagging_tagged.php.	-	CVE-2024-41380	2024-08-8 04:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

313908	-		-	-	In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded signatures are allowed.	-	CVE-2024-42461	2024-08-8 04:35	2024-08-2	Show	GitHub Exploit DB Packet Storm

313909	-		-	-	Concrete CMS versions 9.0.0 through 9.3.2 are affected by a stored XSS vulnerability in the generate dashboard board instance functionality. The Name input field does not check the input sufficiently…	-	CVE-2024-4353	2024-08-8 04:15	2024-08-2	Show	GitHub Exploit DB Packet Storm

313910	-		jetbox	jetbox_cms	PHP remote file inclusion vulnerability in includes/phpdig/libs/search_function.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the relative_script_path param…	NVD-CWE-Other	CVE-2006-4422	2024-08-8 04:15	2006-08-29	Show	GitHub Exploit DB Packet Storm