Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2321	7.5	重要 Network	Gotenberg, Inc.	Gotenberg	TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-40280	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

2322	8.8	重要 Network	Math.js	Math.js	Math.jsにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性	CWE-915 動的に決定されたオブジェクト属性の不適切に制御された変更	CVE-2026-41139	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

2323	8.8	重要 Network	OpenEXR	OpenEXR	OpenEXRにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-41142	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

2324	7.7	重要 Network	Istio	Istio	Istioにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41413	2026-05-11 11:09	2026-05-7	Show	GitHub Exploit DB Packet Storm

2325	8.1	重要 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAI等の複数製品におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-41496	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

2326	9.8	緊急 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-41497	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

2327	9.8	緊急 Network	Electerm project	Electerm	Electerm projectのElectermにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-41500	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

2328	9.8	緊急 Network	Electerm project	Electerm	Electerm projectのElectermにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-41501	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

2329	7.8	重要 Local	Sebastian Bergmann	PHPUnit	Sebastian BergmannのPHPUnitにおける複数の脆弱性	CWE-88 CWE-93	CVE-2026-41570	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

2330	7.5	重要 Network	Zcash Foundation	Zebra-chain Zebrad	Zcash FoundationのZebra-chain等の複数製品における到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-41584	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
318501	5.5	MEDIUM Local	adobe	dimension	Dimension versions 3.4.11 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mi…	CWE-125 Out-of-bounds Read	CVE-2024-20790	2024-08-20 03:58	2024-08-15	Show	GitHub Exploit DB Packet Storm

318502	7.8	HIGH Local	adobe	photoshop	Photoshop Desktop versions 24.7.3, 25.9.1 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of …	CWE-416 Use After Free	CVE-2024-34117	2024-08-20 03:57	2024-08-15	Show	GitHub Exploit DB Packet Storm

318503	6.5	MEDIUM Network	fortra	goanywhere_managed_file_transfer	An authentication bypass vulnerability in GoAnywhere MFT prior to 7.6.0 allows Admin Users with access to the Agent Console to circumvent some permission checks when attempting to visit other pages. …	CWE-287 Improper Authentication	CVE-2024-25157	2024-08-20 03:57	2024-08-15	Show	GitHub Exploit DB Packet Storm

318504	5.5	MEDIUM Local	adobe	dimension	Dimension versions 3.4.11 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mi…	CWE-125 Out-of-bounds Read	CVE-2024-34125	2024-08-20 03:56	2024-08-15	Show	GitHub Exploit DB Packet Storm

318505	7.8	HIGH Local	adobe	dimension	Dimension versions 3.4.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue…	CWE-787 Out-of-bounds Write	CVE-2024-34124	2024-08-20 03:56	2024-08-15	Show	GitHub Exploit DB Packet Storm

318506	5.5	MEDIUM Local	adobe	dimension	Dimension versions 3.4.11 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mi…	CWE-125 Out-of-bounds Read	CVE-2024-34126	2024-08-20 03:55	2024-08-15	Show	GitHub Exploit DB Packet Storm

318507	7.8	HIGH Local	adobe	bridge	Bridge versions 13.0.8, 14.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this …	CWE-787 Out-of-bounds Write	CVE-2024-41840	2024-08-20 03:54	2024-08-15	Show	GitHub Exploit DB Packet Storm

318508	9.8	CRITICAL Network	totolink	x6000r_firmware	A vulnerability, which was classified as critical, has been found in TOTOLINK X6000R 9.4.0cu.852_20230719. This issue affects the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. The manipulat…	CWE-77 Command Injection	CVE-2024-7907	2024-08-20 03:53	2024-08-19	Show	GitHub Exploit DB Packet Storm

318509	5.5	MEDIUM Local	adobe	bridge	Bridge versions 13.0.8, 14.1.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypa…	CWE-125 Out-of-bounds Read	CVE-2024-39387	2024-08-20 03:53	2024-08-15	Show	GitHub Exploit DB Packet Storm

318510	7.8	HIGH Local	adobe	bridge	Bridge versions 13.0.8, 14.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this …	CWE-787 Out-of-bounds Write	CVE-2024-39386	2024-08-20 03:53	2024-08-15	Show	GitHub Exploit DB Packet Storm