Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2241	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41375	2026-05-7 12:05	2026-04-28	Show	GitHub Exploit DB Packet Storm

2242	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-41376	2026-05-7 12:05	2026-04-28	Show	GitHub Exploit DB Packet Storm

2243	4.6	警告 Network	OpenClaw	OpenClaw	OpenClawにおける安全でない失敗処理に関する脆弱性	CWE-636 安全でない失敗処理	CVE-2026-41377	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

2244	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-41378	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

2245	7.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41379	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

2246	7.3	重要 Local	OpenClaw	OpenClaw	OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性	CWE-807 セキュリティ決定の信頼できない入力への依存	CVE-2026-41380	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

2247	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41381	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

2248	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-41382	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

2249	8.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41383	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

2250	7.8	重要 Local	OpenClaw	OpenClaw	OpenClawにおけるシステム構成または設定の外部制御に関する脆弱性	CWE-15 システム構成または設定の外部制御	CVE-2026-41384	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313121	5.4	MEDIUM Network	jeanmarc77	123solar	A vulnerability classified as problematic has been found in jeanmarc77 123solar 1.8.4.5. This affects an unknown part of the file /detailed.php. The manipulation of the argument date1 leads to cross …	CWE-79 Cross-site Scripting	CVE-2024-9007	2024-09-26 03:40	2024-09-20	Show	GitHub Exploit DB Packet Storm

313122	5.3	MEDIUM Network	overleaf	overleaf	Overleaf is a web-based collaborative LaTeX editor. Overleaf Community Edition and Server Pro prior to version 5.0.7 (or 4.2.7 for the 4.x series) contain a vulnerability that allows an arbitrary lan…	CWE-74 Injection	CVE-2024-45312	2024-09-26 03:37	2024-09-3	Show	GitHub Exploit DB Packet Storm

313123	6.0	MEDIUM Network	fortinet	forticlient_endpoint_management_server	A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiClientEMS versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.13, 6.4.0 through 6.4.9, 6.2.0 through 6.2.…	CWE-22 Path Traversal	CVE-2024-21753	2024-09-26 03:36	2024-09-11	Show	GitHub Exploit DB Packet Storm

313124	5.4	MEDIUM Network	overleaf	overleaf	Overleaf is a web-based collaborative LaTeX editor. When installing Server Pro using the Overleaf Toolkit from before 2024-07-17 or legacy docker-compose.yml from before 2024-08-28, the configuration…	CWE-1188 Insecure Default Initialization of Resource	CVE-2024-45313	2024-09-26 03:12	2024-09-3	Show	GitHub Exploit DB Packet Storm

313125	6.5	MEDIUM Network	opendaylight	model-driven_service_abstraction_layer	In OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) through 13.0.1, a controller with a follower role can configure flow entries in an OpenDaylight clustering deployment.	NVD-CWE-noinfo	CVE-2024-46942	2024-09-26 03:08	2024-09-16	Show	GitHub Exploit DB Packet Storm

313126	5.4	MEDIUM Network	workdo	crmgo_saas	A vulnerability classified as problematic was found in CodeCanyon CRMGo SaaS 7.2. This vulnerability affects unknown code of the file /deal/{note_id}/note. The manipulation of the argument notes lead…	CWE-79 Cross-site Scripting	CVE-2024-9030	2024-09-26 03:01	2024-09-20	Show	GitHub Exploit DB Packet Storm

313127	9.8	CRITICAL Network	cellopoint	secure_email_gateway	Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers can send crafted packets to crash the process, thereby bypassing aut…	CWE-787 Out-of-bounds Write	CVE-2024-9043	2024-09-26 02:54	2024-09-20	Show	GitHub Exploit DB Packet Storm

313128	9.8	CRITICAL Network	medialibs	webo-facto	The Webo-facto plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.40 due to insufficient restriction on the 'doSsoAuthentification' function. This makes it…	NVD-CWE-noinfo	CVE-2024-8853	2024-09-26 02:49	2024-09-20	Show	GitHub Exploit DB Packet Storm

313129	9.8	CRITICAL Network	gematik	reference_validator	The reference validator is a tool to perform advanced validation of FHIR resources for TI applications and interoperability standards. The profile location routine in the referencevalidator commons p…	CWE-611 XXE	CVE-2024-46984	2024-09-26 02:49	2024-09-20	Show	GitHub Exploit DB Packet Storm

313130	9.8	CRITICAL Network	code-projects	crud_operation_system	A vulnerability, which was classified as critical, was found in code-projects Crud Operation System 1.0. Affected is an unknown function of the file updata.php. The manipulation of the argument sid l…	CWE-89 SQL Injection	CVE-2024-9011	2024-09-26 02:48	2024-09-20	Show	GitHub Exploit DB Packet Storm