Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2501 5.5 警告
Local 		アップル visionos
iOS
iPadOS 		アップルのiPadOS等の複数製品におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-28993 2026-05-15 11:03 2026-05-11 Show GitHub Exploit DB Packet Storm
2502 5.3 警告
Adjacent 		アップル tvOS
iOS
iPadOS
watchOS 		アップルのiPadOS等の複数製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-28994 2026-05-15 11:03 2026-05-11 Show GitHub Exploit DB Packet Storm
2503 9.8 緊急
Network 		Rocket.Chat Rocket.Chat Rocket.ChatにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-29198 2026-05-15 11:03 2026-04-23 Show GitHub Exploit DB Packet Storm
2504 6.5 警告
Network 		Textpattern Textpattern CMS TextpatternのTextpattern CMSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-30452 2026-05-15 11:03 2026-04-21 Show GitHub Exploit DB Packet Storm
2505 9.1 緊急
Network 		Artica ST Pandora FMS Artica STのPandora FMSにおけるリソースの安全ではないデフォルト値への初期化に関する脆弱性 CWE-1188
リソースの安全ではないデフォルト値への初期化 		CVE-2026-30805 2026-05-15 11:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2506 8.8 重要
Network 		Artica ST Pandora FMS Artica STのPandora FMSにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-30807 2026-05-15 11:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2507 8.1 重要
Network 		Artica ST Pandora FMS Artica STのPandora FMSにおけるセッションの固定化の脆弱性 CWE-384
セッションの固定化 		CVE-2026-30808 2026-05-15 11:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2508 8.8 重要
Network 		Artica ST Pandora FMS Artica STのPandora FMSにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-30810 2026-05-15 11:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2509 7.5 重要
Network 		Python Software Foundation Python Python Software FoundationのPythonにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-3087 2026-05-15 11:03 2026-04-27 Show GitHub Exploit DB Packet Storm
2510 8.8 重要
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のリモートでコードが実行される脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-33110 2026-05-15 11:03 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312051 7.8 HIGH
Local 		fortinet forticlient A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0 allows an attacker to run arbitrary code via DLL hijacking and socia… CWE-426
 Untrusted Search Path 		CVE-2024-36507 2024-11-15 05:31 2024-11-13 Show GitHub Exploit DB Packet Storm
312052 8.1 HIGH
Network 		ampache ampache Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating controlle… CWE-352
 Origin Validation Error 		CVE-2024-51484 2024-11-15 05:14 2024-11-12 Show GitHub Exploit DB Packet Storm
312053 5.4 MEDIUM
Network 		ampache ampache Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing does not adequately validate CSRF tokens when users delete messages. This vulner… CWE-352
 Origin Validation Error 		CVE-2024-51488 2024-11-15 05:12 2024-11-12 Show GitHub Exploit DB Packet Storm
312054 8.1 HIGH
Network 		ampache ampache Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating plugins. … CWE-352
 Origin Validation Error 		CVE-2024-51485 2024-11-15 05:06 2024-11-12 Show GitHub Exploit DB Packet Storm
312055 4.3 MEDIUM
Network 		futuriowp futurio_extra The Futurio Extra plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.0.13 via the 'elementor-template' shortcode due to insufficient restrictions on wh… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-10695 2024-11-15 04:44 2024-11-12 Show GitHub Exploit DB Packet Storm
312056 6.1 MEDIUM
Network 		wpplugin contact_form_7_redirect_\&_thank_you_page The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 1.0.6 due to insufficie… CWE-79
Cross-site Scripting 		CVE-2024-10685 2024-11-15 04:40 2024-11-12 Show GitHub Exploit DB Packet Storm
312057 7.5 HIGH
Network 		onedev_project onedev OneDev is a Git server with CI/CD, kanban, and packages. A vulnerability in versions prior to 11.0.9 allows unauthenticated users to read arbitrary files accessible by the OneDev server process. This… CWE-22
Path Traversal 		CVE-2024-45309 2024-11-15 04:39 2024-10-22 Show GitHub Exploit DB Packet Storm
312058 8.1 HIGH
Network 		ampache ampache Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating catalog. … CWE-352
 Origin Validation Error 		CVE-2024-51487 2024-11-15 04:37 2024-11-12 Show GitHub Exploit DB Packet Storm
312059 9.8 CRITICAL
Network 		mikexstudios xcomic A vulnerability classified as critical has been found in mikexstudios Xcomic up to 0.8.2. This affects an unknown part. The manipulation of the argument cmd leads to os command injection. It is possi… CWE-78
OS Command  		CVE-2005-10003 2024-11-15 04:35 2024-10-17 Show GitHub Exploit DB Packet Storm
312060 5.3 MEDIUM
Network 		jetbrains ktor In JetBrains Ktor before 3.0.0 improper caching in HttpCache Plugin could lead to response information disclosure NVD-CWE-Other
CVE-2024-49580 2024-11-15 04:25 2024-10-17 Show GitHub Exploit DB Packet Storm