Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2561 6.1 警告
Network 		Frappe ERPNext FrappeのERPNextにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-38432 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
2562 9.1 緊急
Network 		CHORNY Apache::Session CHORNYのApache::Sessionにおける有効期限後または解放後のリソースの操作に関する脆弱性 CWE-672
有効期限後または解放後のリソースの操作 		CVE-2013-10075 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
2563 9.8 緊急
Network 		PHPOffice PhpSpreadsheet PHPOfficeのPhpSpreadsheetにおける複数の脆弱性 CWE-502
CWE-918
CVE-2026-34084 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
2564 5.4 警告
Network 		PHPOffice PhpSpreadsheet PHPOfficeのPhpSpreadsheetにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-35453 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
2565 9.1 緊急
Network 		Zcash Foundation Zebra-script
Zebrad 		Zcash FoundationのZebra-script等の複数製品における呼び出し元による仕様の不適切な準拠に関する脆弱性 CWE-573
呼び出し元による仕様の不適切な準拠 		CVE-2026-41583 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
2566 6.5 警告
Network 		Zcash Foundation zebra-rpc
Zebrad 		Zcash Foundationのzebra-rpc等の複数製品における複数の脆弱性 CWE-248
CWE-617
CVE-2026-41585 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
2567 9.1 緊急
Network 		Zcash Foundation Zebra-script
Zebrad 		Zcash FoundationのZebra-script等の複数製品におけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-44497 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
2568 5.3 警告
Network 		Apache Software Foundation CloudStack Apache Software FoundationのCloudStackにおける複数の脆弱性 CWE-367
CWE-770
CVE-2025-69233 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
2569 8.4 重要
Local 		デル data domain operating system
PowerProtect DP Series Appliance 		デルのdata domain operating system等の複数製品における弱い認証情報の使用に関する脆弱性 CWE-1391
脆弱な認証情報の使用 		CVE-2026-23853 2026-05-11 11:12 2026-04-17 Show GitHub Exploit DB Packet Storm
2570 9.8 緊急
Network 		vm2 project vm2 vm2 projectのvm2における複数の脆弱性 CWE-693
CWE-94
CVE-2026-24118 2026-05-11 11:12 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312371 9.8 CRITICAL
Network 		draytek vigor3900_firmware In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the restore function. CWE-78
OS Command  		CVE-2024-51252 2024-11-6 05:54 2024-11-2 Show GitHub Exploit DB Packet Storm
312372 - - - Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configur… - CVE-2023-6728 2024-11-6 05:35 2024-10-17 Show GitHub Exploit DB Packet Storm
312373 - - - Fujian Kelixin Communication Command and Dispatch Platform <=7.6.6.4391 is vulnerable to SQL Injection via /client/get_gis_fence.php. - CVE-2024-45918 2024-11-6 05:35 2024-10-9 Show GitHub Exploit DB Packet Storm
312374 - - - Sharp NEC Projectors (NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525ULJL, NP-P525WL, NP-P525WL+, NP-P525WLG, NP-P525WLJL, NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-… - CVE-2024-7011 2024-11-6 05:35 2024-09-27 Show GitHub Exploit DB Packet Storm
312375 9.8 CRITICAL
Network 		anisha e-health_care_system A vulnerability, which was classified as critical, has been found in code-projects E-Health Care System 1.0. Affected by this issue is some unknown functionality of the file /Admin/adminlogin.php. Th… CWE-89
SQL Injection 		CVE-2024-10739 2024-11-6 05:16 2024-11-4 Show GitHub Exploit DB Packet Storm
312376 9.8 CRITICAL
Network 		angeljudesuarez farm_management_system A vulnerability classified as critical was found in itsourcecode Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file manage-breed.php. The manipulation … CWE-89
SQL Injection 		CVE-2024-10738 2024-11-6 05:16 2024-11-4 Show GitHub Exploit DB Packet Storm
312377 9.8 CRITICAL
Network 		projectworlds life_insurance_management_system A vulnerability was found in Project Worlds Life Insurance Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /editNominee.php. The manipulat… CWE-89
SQL Injection 		CVE-2024-10735 2024-11-6 05:16 2024-11-3 Show GitHub Exploit DB Packet Storm
312378 9.8 CRITICAL
Network 		carmelogarcia restaurant_order_system A vulnerability was found in code-projects Restaurant Order System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the… CWE-89
SQL Injection 		CVE-2024-10733 2024-11-6 05:15 2024-11-3 Show GitHub Exploit DB Packet Storm
312379 9.8 CRITICAL
Network 		anisha university_event_management_system A vulnerability was found in code-projects University Event Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file submit.php. The manipulation o… CWE-89
SQL Injection 		CVE-2024-10700 2024-11-6 05:15 2024-11-3 Show GitHub Exploit DB Packet Storm
312380 9.8 CRITICAL
Network 		anisha wazifa_system A vulnerability was found in code-projects Wazifa System 1.0. It has been classified as critical. This affects an unknown part of the file /controllers/logincontrol.php. The manipulation of the argum… CWE-89
SQL Injection 		CVE-2024-10699 2024-11-6 05:15 2024-11-3 Show GitHub Exploit DB Packet Storm