Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2341 4.3 警告
Network 		n8n-MCP n8n-MCP n8n-MCPにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-42282 2026-05-18 12:14 2026-05-8 Show GitHub Exploit DB Packet Storm
2342 7.5 重要
Network 		argoproj Argo Workflows Argo Project AuthorsのArgo Workflowsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42294 2026-05-18 12:14 2026-05-9 Show GitHub Exploit DB Packet Storm
2343 4.4 警告
Local 		Vim Vim VimにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42307 2026-05-18 12:14 2026-05-8 Show GitHub Exploit DB Packet Storm
2344 7.8 重要
Local 		Python Software Foundation Python Pillow Python Software FoundationのPython Pillowにおける複数の脆弱性 CWE-190
CWE-787
CVE-2026-42311 2026-05-18 12:14 2026-05-9 Show GitHub Exploit DB Packet Storm
2345 5.5 警告
Local 		M2-Team NanaZip M2-TeamのNanaZipにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-42445 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
2346 7.1 重要
Local 		M2-Team NanaZip M2-TeamのNanaZipにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-42446 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
2347 8.5 重要
Network 		n8n-MCP n8n-MCP n8n-MCPにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-42449 2026-05-18 12:14 2026-05-7 Show GitHub Exploit DB Packet Storm
2348 7.3 重要
Network 		Apache Software Foundation Apache Tomcat Apache Software FoundationのApache Tomcatにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-42498 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
2349 9.8 緊急
Network 		archivebox archivebox archiveboxにおける引数の挿入または変更に関する脆弱性 CWE-88
引数の挿入または変更 		CVE-2026-42601 2026-05-18 12:14 2026-05-9 Show GitHub Exploit DB Packet Storm
2350 8.8 重要
Network 		azuracast azuracast AzuraCastにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-42605 2026-05-18 12:14 2026-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311661 8.8 HIGH
Network 		oretnom23 online_veterinary_appointment_system A vulnerability classified as critical was found in SourceCodester Online Veterinary Appointment System 1.0. This vulnerability affects unknown code of the file /admin/services/view_service.php. The … CWE-89
SQL Injection 		CVE-2024-10990 2024-11-19 03:42 2024-11-8 Show GitHub Exploit DB Packet Storm
311662 7.8 HIGH
Local 		adobe animate Animate versions 23.0.7, 24.0.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue… CWE-416
 Use After Free 		CVE-2024-49526 2024-11-19 03:41 2024-11-13 Show GitHub Exploit DB Packet Storm
311663 8.8 HIGH
Network 		codezips online_institute_management_system A vulnerability has been found in Codezips Online Institute Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edit_user.php. Th… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-10994 2024-11-19 03:41 2024-11-8 Show GitHub Exploit DB Packet Storm
311664 8.8 HIGH
Network 		codezips online_institute_management_system A vulnerability, which was classified as critical, was found in Codezips Online Institute Management System 1.0. Affected is an unknown function of the file /manage_website.php. The manipulation of t… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-10993 2024-11-19 03:41 2024-11-8 Show GitHub Exploit DB Packet Storm
311665 9.8 CRITICAL
Network 		codezips hospital_appointment_system A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipu… CWE-89
SQL Injection 		CVE-2024-10991 2024-11-19 03:41 2024-11-8 Show GitHub Exploit DB Packet Storm
311666 5.5 MEDIUM
Local 		adobe animate Animate versions 23.0.7, 24.0.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to byp… CWE-125
Out-of-bounds Read 		CVE-2024-49527 2024-11-19 03:39 2024-11-13 Show GitHub Exploit DB Packet Storm
311667 - - - A cross-site scripting (XSS) vulnerability in LemonLDAP::NG before 2.20.1 allows remote attackers to inject arbitrary web script or HTML via the url parameter of the upgrade session confirmation page… - CVE-2024-52947 2024-11-19 03:35 2024-11-18 Show GitHub Exploit DB Packet Storm
311668 - - - In Flagsmith before 2.134.1, the get_document endpoint is not correctly protected by permissions. - CVE-2024-52872 2024-11-19 03:35 2024-11-17 Show GitHub Exploit DB Packet Storm
311669 - - - In Flagsmith before 2.134.1, it is possible to bypass the ALLOW_REGISTRATION_WITHOUT_INVITE setting. - CVE-2024-52871 2024-11-19 03:35 2024-11-17 Show GitHub Exploit DB Packet Storm
311670 - - - 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component 'erp.07fly.net:80/admin/SysNotifyUser/del.html?id=93'. - CVE-2024-51156 2024-11-19 03:35 2024-11-15 Show GitHub Exploit DB Packet Storm