Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1871	6.1	警告 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-41255	2026-05-18 11:31	2026-05-13	Show	GitHub Exploit DB Packet Storm

1872	9.8	緊急 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-41293	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

1873	5	警告 Local	マイクロソフト	Visual Studio Code	マイクロソフトのVisual Studio Codeにおける複数の脆弱性	CWE-200 CWE-59 CWE-79 CWE-79	CVE-2026-41610	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

1874	3.3	低 Local	マイクロソフト	Visual Studio Code	Visual Studio Code のリモートでコードが実行される脆弱性	CWE-77 CWE-79 CWE-80	CVE-2026-41611	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

1875	8.8	重要 Network	マイクロソフト	Visual Studio Code	マイクロソフトのVisual Studio Codeにおける複数の脆弱性	CWE-384 CWE-384 CWE-78	CVE-2026-41613	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

1876	7.4	重要 Network	マイクロソフト	Microsoft Authenticator	Microsoft Authenticator の情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2026-41615	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

1877	6.5	警告 Network	Distribution	Distribution	Distributionにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41888	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

1878	7.5	重要 Network	Signal K	Signal K Server	Signal KのSignal K Serverにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-41893	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

1879	9.8	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-42031	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

1880	9.1	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42032	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311421	8.8	HIGH Network	nikoarroyocuraza	online_furniture_shopping_project	A SQL injection vulnerability in orderview1.php of Itsourcecode Online Furniture Shopping Project 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2024-50970	2024-11-19 05:35	2024-11-14	Show	GitHub Exploit DB Packet Storm

311422	7.8	HIGH Local	microsoft	excel office 365_apps office_long_term_servicing_channel	Microsoft Excel Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-49028	2024-11-19 05:34	2024-11-13	Show	GitHub Exploit DB Packet Storm

311423	7.8	HIGH Local	microsoft	office 365_apps office_long_term_servicing_channel	Microsoft Office Graphics Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-49032	2024-11-19 05:31	2024-11-13	Show	GitHub Exploit DB Packet Storm

311424	7.8	HIGH Local	microsoft	office 365_apps office_long_term_servicing_channel	Microsoft Office Graphics Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-49031	2024-11-19 05:31	2024-11-13	Show	GitHub Exploit DB Packet Storm

311425	4.8	MEDIUM Network	mayurik	hospital_management_system	A vulnerability was found in SourceCodester Hospital Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /vm/doctor/edit-doc.php.…	CWE-79 Cross-site Scripting	CVE-2024-11102	2024-11-19 05:00	2024-11-12	Show	GitHub Exploit DB Packet Storm

311426	7.8	HIGH Local	dell	smartfabric_os10	Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could…	NVD-CWE-noinfo	CVE-2024-48837	2024-11-19 04:48	2024-11-12	Show	GitHub Exploit DB Packet Storm

311427	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Add a check for memory allocation __alloc_pbl() can return error when memory allocation fails. Driver is not checki…	NVD-CWE-noinfo	CVE-2024-50209	2024-11-19 04:44	2024-11-8	Show	GitHub Exploit DB Packet Storm

311428	-		-	-	SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery (CSRF) via the Socifi wifi portal. The application does not contain a CSRF token and request validation. An attacker can Add…	-	CVE-2021-27701	2024-11-19 04:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

311429	-		-	-	SOCIFI Socifi Guest wifi as SAAS wifi portal is affected by Insecure Permissions. Any authorized customer with partner mode can switch to another customer dashboard and perform actions like modify us…	-	CVE-2021-27700	2024-11-19 04:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

311430	8.8	HIGH Network	microsoft	sql_server_2016 sql_server_2017 sql_server_2019	SQL Server Native Client Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-38255	2024-11-19 04:35	2024-11-13	Show	GitHub Exploit DB Packet Storm