Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2081	6.5	警告 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-31378	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2082	6.1	警告 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおける複数の脆弱性	CWE-22 CWE-79 CWE-94	CVE-2026-31379	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2083	6.5	警告 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性	CWE-917 言語構文の表現に使用される特殊な要素の不適切な無効化	CVE-2026-31380	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2084	5.3	警告 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2026-31387	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2085	5.3	警告 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-31388	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2086	8.8	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-31435	2026-05-21 10:53	2026-04-22	Show	GitHub Exploit DB Packet Storm

2087	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-31436	2026-05-21 10:53	2026-04-22	Show	GitHub Exploit DB Packet Storm

2088	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-31437	2026-05-21 10:53	2026-04-22	Show	GitHub Exploit DB Packet Storm

2089	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-31438	2026-05-21 10:53	2026-04-22	Show	GitHub Exploit DB Packet Storm

2090	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31439	2026-05-21 10:53	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312891	4.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.8. This is due to missing or incorrect nonce validation …	CWE-352 Origin Validation Error	CVE-2024-11143	2024-11-19 00:03	2024-11-13	Show	GitHub Exploit DB Packet Storm

312892	6.1	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'dir' parameter in all versions up to, and including, 2.1.7 due to insufficient input …	CWE-79 Cross-site Scripting	CVE-2024-10684	2024-11-19 00:03	2024-11-13	Show	GitHub Exploit DB Packet Storm

312893	4.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the update_assistant() function in all versions up to,…	CWE-862 Missing Authorization	CVE-2024-10531	2024-11-19 00:02	2024-11-13	Show	GitHub Exploit DB Packet Storm

312894	4.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the add_new_assistant() function in all versions up to…	CWE-862 Missing Authorization	CVE-2024-10530	2024-11-18 23:59	2024-11-13	Show	GitHub Exploit DB Packet Storm

312895	5.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_assistant() function in all versions up to,…	CWE-862 Missing Authorization	CVE-2024-10529	2024-11-18 23:59	2024-11-13	Show	GitHub Exploit DB Packet Storm

312896	-		-	-	The theme.php file in SDCMS 2.8 has a command execution vulnerability that allows for the execution of system commands	-	CVE-2024-50809	2024-11-18 23:35	2024-11-9	Show	GitHub Exploit DB Packet Storm

312897	-		-	-	An Improper Authorization (Access Control Misconfiguration) vulnerability in MGT-COMMERCE GmbH CloudPanel v2.0.0 to v2.4.2 allows low-privilege users to bypass access controls and gain unauthorized a…	-	CVE-2024-44765	2024-11-18 23:35	2024-11-9	Show	GitHub Exploit DB Packet Storm

312898	-		-	-	All versions of the package jsonpath-plus are vulnerable to Remote Code Execution (RCE) due to improper input sanitization. An attacker can execute aribitrary code on the system by exploiting the uns…	-	CVE-2024-21534	2024-11-18 20:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

312899	-		-	-	AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes a public IP address within network traffic. The attacker must know the victim's AnyDesk ID.	-	CVE-2024-52940	2024-11-18 14:15	2024-11-18	Show	GitHub Exploit DB Packet Storm

312900	-		-	-	Software installed and run as a non-privileged user may conduct improper GPU system calls to gain access to the graphics buffers of a parent process.	-	CVE-2024-43704	2024-11-18 14:15	2024-11-18	Show	GitHub Exploit DB Packet Storm