Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2481 5.4 警告
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-31984 2026-05-11 11:02 2026-05-6 Show GitHub Exploit DB Packet Storm
2482 7.2 重要
Network 		デル data domain operating system デルのdata domain operating systemにおけるセッションの固定化の脆弱性 CWE-384
セッションの固定化 		CVE-2025-46605 2026-05-11 11:02 2026-04-17 Show GitHub Exploit DB Packet Storm
2483 7.2 重要
Network 		デル data domain operating system デルのdata domain operating systemにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2025-46606 2026-05-11 11:01 2026-04-17 Show GitHub Exploit DB Packet Storm
2484 8.8 重要
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-52613 2026-05-11 11:01 2026-05-6 Show GitHub Exploit DB Packet Storm
2485 9.8 緊急
Network 		Palo Alto Networks PAN-OS Palo Alto NetworksのPAN-OSにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-0300 2026-05-11 11:01 2026-05-6 Show GitHub Exploit DB Packet Storm
2486 3.3
Local 		HCL Technologies Limited sametime HCL Technologies Limitedのsametimeにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-21791 2026-05-11 11:01 2026-03-10 Show GitHub Exploit DB Packet Storm
2487 7.5 重要
Network 		マイクロソフト Microsoft .NET Framework .NET Framework のサービス拒否の脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2026-23666 2026-05-11 11:01 2026-04-14 Show GitHub Exploit DB Packet Storm
2488 5.1 警告
Local 		The GIFLIB project giflib The GIFLIB projectのgiflibにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-23868 2026-05-11 11:01 2026-03-10 Show GitHub Exploit DB Packet Storm
2489 9 緊急
Network 		マイクロソフト Microsoft Power Apps Microsoft Power Apps のセキュリティ機能のバイパス CWE-150
エスケープ、メタ、またはコントロールシーケンスの不適切な無効化 		CVE-2026-26149 2026-05-11 11:01 2026-04-14 Show GitHub Exploit DB Packet Storm
2490 7.5 重要
Network 		マイクロソフト .NET
PowerShell 		.NET のサービス拒否の脆弱性 CWE-400
CWE-611
CVE-2026-26171 2026-05-11 11:01 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318421 - - - Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the book_id parameter at admin_modify_room.php. - CVE-2024-42558 2024-08-21 06:35 2024-08-20 Show GitHub Exploit DB Packet Storm
318422 6.1 MEDIUM
Network 		heytap internet_browser The ColorOS Internet Browser com.heytap.browser application 45.10.3.4.1 for Android allows a remote attacker to execute arbitrary JavaScript code via the com.android.browser.RealBrowserActivity compo… CWE-79
Cross-site Scripting 		CVE-2024-23729 2024-08-21 06:35 2024-08-20 Show GitHub Exploit DB Packet Storm
318423 - - - The T-Head XuanTie C910 CPU in the TH1520 SoC and the T-Head XuanTie C920 CPU in the SOPHON SG2042 have instructions that allow unprivileged attackers to write to arbitrary physical memory locations,… - CVE-2024-44067 2024-08-21 05:35 2024-08-19 Show GitHub Exploit DB Packet Storm
318424 9.8 CRITICAL
Network 		emiloimagtolis ticket_reservation_system A vulnerability classified as critical was found in itsourcecode Ticket Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php of the component Login… CWE-89
SQL Injection 		CVE-2024-7444 2024-08-21 04:56 2024-08-4 Show GitHub Exploit DB Packet Storm
318425 9.8 CRITICAL
Network 		angeljudesuarez placement_management_system A vulnerability, which was classified as critical, was found in itsourcecode Placement Management System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument e… CWE-89
SQL Injection 		CVE-2024-7449 2024-08-21 04:49 2024-08-4 Show GitHub Exploit DB Packet Storm
318426 5.4 MEDIUM
Network 		insurance_management_system_project insurance_management_system A vulnerability classified as problematic was found in nafisulbari/itsourcecode Insurance Management System 1.0. Affected by this vulnerability is an unknown functionality of the file addNominee.php … CWE-79
Cross-site Scripting 		CVE-2024-7916 2024-08-21 04:38 2024-08-19 Show GitHub Exploit DB Packet Storm
318427 7.5 HIGH
Network 		corydolphin flask-cors A vulnerability in corydolphin/flask-cors version 4.0.1 allows the `Access-Control-Allow-Private-Network` CORS header to be set to true by default, without any configuration option. This behavior can… NVD-CWE-Other
CVE-2024-6221 2024-08-21 04:37 2024-08-19 Show GitHub Exploit DB Packet Storm
318428 - - - An issue in the login component (process_login.php) of Hotel Management System commit 79d688 allows attackers to authenticate without providing a valid password. - CVE-2024-42559 2024-08-21 04:35 2024-08-20 Show GitHub Exploit DB Packet Storm
318429 - - - The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated … - CVE-2024-6847 2024-08-21 04:35 2024-08-20 Show GitHub Exploit DB Packet Storm
318430 7.2 HIGH
Network 		dedebiz dedebiz A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function AdminUpload of the file admin/archives_do.php. The manipulation of the argument litpic leads to unres… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-7905 2024-08-21 04:35 2024-08-18 Show GitHub Exploit DB Packet Storm