Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2131 8.3 重要
Network 		flowiseai flowise flowiseaiのflowiseにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41271 2026-04-27 10:46 2026-04-23 Show GitHub Exploit DB Packet Storm
2132 7.1 重要
Network 		flowiseai flowise flowiseaiのflowiseにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41272 2026-04-27 10:46 2026-04-23 Show GitHub Exploit DB Packet Storm
2133 8.2 重要
Network 		flowiseai flowise flowiseaiのflowiseにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-41273 2026-04-27 10:46 2026-04-23 Show GitHub Exploit DB Packet Storm
2134 7.5 重要
Network 		flowiseai flowise flowiseaiのflowiseにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2026-41275 2026-04-27 10:46 2026-04-23 Show GitHub Exploit DB Packet Storm
2135 9.8 緊急
Network 		flowiseai flowise flowiseaiのflowiseにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-41276 2026-04-27 10:46 2026-04-23 Show GitHub Exploit DB Packet Storm
2136 8.8 重要
Network 		flowiseai flowise flowiseaiのflowiseにおける複数の脆弱性 CWE-284
CWE-639
CWE-915
CVE-2026-41277 2026-04-27 10:46 2026-04-23 Show GitHub Exploit DB Packet Storm
2137 7.5 重要
Network 		flowiseai flowise flowiseaiのflowiseにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-41278 2026-04-27 10:46 2026-04-23 Show GitHub Exploit DB Packet Storm
2138 7.5 重要
Network 		flowiseai flowise flowiseaiのflowiseにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41279 2026-04-27 10:46 2026-04-23 Show GitHub Exploit DB Packet Storm
2139 4.3 警告
Adjacent 		OpenBSD OpenBSD OpenBSDにおける複数の脆弱性 CWE-1284
CWE-835
CVE-2026-41285 2026-04-27 10:46 2026-04-21 Show GitHub Exploit DB Packet Storm
2140 9.8 緊急
Network 		WWBN AVideo WWBNのAVideoにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-41304 2026-04-27 10:46 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314321 - - - A vulnerability was found in itsourcecode Online Blood Bank Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /request.php of the compone… CWE-79
Cross-site Scripting 		CVE-2024-7303 2024-07-31 21:57 2024-07-31 Show GitHub Exploit DB Packet Storm
314322 - - - A verbose error handling issue in the proxy service implemented in the GravityZone Update Server allows an attacker to cause a server-side request forgery. This issue only affects GravityZone Console… CWE-209
Information Exposure Through an Error Message 		CVE-2024-6980 2024-07-31 21:57 2024-07-31 Show GitHub Exploit DB Packet Storm
314323 - - - A vulnerability classified as critical has been found in SourceCodester Establishment Billing Management System 1.0. This affects an unknown part of the file /manage_tenant.php. The manipulation of t… CWE-89
SQL Injection 		CVE-2024-7290 2024-07-31 21:57 2024-07-31 Show GitHub Exploit DB Packet Storm
314324 - - - A vulnerability was found in SourceCodester Establishment Billing Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /manage_paymen… CWE-89
SQL Injection 		CVE-2024-7289 2024-07-31 21:57 2024-07-31 Show GitHub Exploit DB Packet Storm
314325 7.2 HIGH
Network 		- - The Lifetime free Drag & Drop Contact Form Builder for WordPress VForm plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2.1.5 due to insufficien… - CVE-2024-6770 2024-07-31 21:57 2024-07-31 Show GitHub Exploit DB Packet Storm
314326 - - - A vulnerability was found in SourceCodester Establishment Billing Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /ajax… - CVE-2024-7288 2024-07-31 21:57 2024-07-31 Show GitHub Exploit DB Packet Storm
314327 - - - A vulnerability was found in SourceCodester Establishment Billing Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /manage_user.php. The manipula… CWE-89
SQL Injection 		CVE-2024-7287 2024-07-31 21:57 2024-07-31 Show GitHub Exploit DB Packet Storm
314328 - - - A vulnerability was found in SourceCodester Establishment Billing Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/ajax.php?action=login… CWE-89
SQL Injection 		CVE-2024-7286 2024-07-31 21:57 2024-07-31 Show GitHub Exploit DB Packet Storm
314329 - - - A vulnerability has been found in SourceCodester Establishment Billing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/ajax.php?action=… CWE-79
Cross-site Scripting 		CVE-2024-7285 2024-07-31 21:57 2024-07-31 Show GitHub Exploit DB Packet Storm
314330 - - - In the Linux kernel, the following vulnerability has been resolved: usb: xhci: prevent potential failure in handle_tx_event() for Transfer events without TRB Some transfer events don't always point… - CVE-2024-42226 2024-07-30 17:15 2024-07-30 Show GitHub Exploit DB Packet Storm