Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 12:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2591	4.3	警告 Network	pretix	pretix	pretix GmbHのpretixにおける隔離または分類に関する脆弱性	CWE-653 不適切な隔離または分類	CVE-2026-5600	2026-04-27 10:46	2026-04-8	Show	GitHub Exploit DB Packet Storm

2592	7.2	重要 Network	mintplexlabs	anythingllm	mintplexlabsのanythingllmにおけるパストラバーサルの脆弱性	CWE-29 パストラバーサル (/../filename)	CVE-2026-5627	2026-04-27 10:46	2026-04-7	Show	GitHub Exploit DB Packet Storm

2593	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-6919	2026-04-27 10:46	2026-04-23	Show	GitHub Exploit DB Packet Storm

2594	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-6920	2026-04-27 10:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

2595	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-6921	2026-04-27 10:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

2596	-	-	三菱電機	MELSEC iQ-F FX5-EIP形EtherNet/IPユニット MELSEC iQ-Fシリーズ FX5-ENET/IP形Ethernetユニット	MELSEC iQ-FシリーズのEtherNet/IPユニットおよびEthernetユニットのEthernet機能における複数の脆弱性	CWE-404 CWE-670	CVE-2026-1874 CVE-2026-1875 CVE-2026-1876	2026-04-24 17:45	2026-03-3	Show	GitHub Exploit DB Packet Storm

2597	5.4	警告 Network	Apache Software Foundation	Apache ActiveMQ Apache ActiveMQ MQTT	Apache ActiveMQシリーズにおけるMQTTパケット検証不備の脆弱性［AMQ-9810］	CWE-Other その他	CVE-2025-66168 CVE-2026-40046	2026-04-24 12:11	2026-03-4	Show	GitHub Exploit DB Packet Storm

2598	9.1	緊急 Network	oauth2_proxy project	oauth2_proxy	oauth2_proxy projectのoauth2_proxyにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-34457	2026-04-24 11:44	2026-04-14	Show	GitHub Exploit DB Packet Storm

2599	5.9	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不十分なランダム値の使用に関する脆弱性	CWE-330 不十分なランダム値の使用	CVE-2026-34511	2026-04-24 11:44	2026-04-3	Show	GitHub Exploit DB Packet Storm

2600	7.1	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-34602	2026-04-24 11:44	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
271	3.7	LOW Network	-	-	A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results… New	CWE-203 CWE-204 Information Exposure Through Discrepancy Response Discrepancy Information Exposure	CVE-2026-8242	2026-05-12 00:08	2026-05-10	Show	GitHub Exploit DB Packet Storm

272	5.3	MEDIUM Network	-	-	A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This affects an unknown function of the component JNLP Deployment Endpoint. Executing a manipulation can lead to… New	CWE-320 CWE-321 Key Management Errors Use of Hard-coded Cryptographic Key	CVE-2026-8243	2026-05-12 00:08	2026-05-10	Show	GitHub Exploit DB Packet Storm

273	5.3	MEDIUM Network	-	-	A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This impacts an unknown function of the component Login RMI Interface. The manipulation of the argument clientVe… New	CWE-287 Improper Authentication	CVE-2026-8244	2026-05-12 00:08	2026-05-10	Show	GitHub Exploit DB Packet Storm

274	2.4	LOW Network	-	-	A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. Affected by this vulnerability is an unknown functionality of the file /inventory/purchase_save. The manipulation leads to cross … New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-8253	2026-05-12 00:08	2026-05-11	Show	GitHub Exploit DB Packet Storm

275	2.4	LOW Network	-	-	A security flaw has been discovered in Devs Palace ERP Online up to 4.0.0. Affected by this issue is some unknown functionality of the file /inventory/sales_save. The manipulation results in cross si… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-8254	2026-05-12 00:08	2026-05-11	Show	GitHub Exploit DB Packet Storm

276	2.4	LOW Network	-	-	A weakness has been identified in Devs Palace ERP Online up to 4.0.0. This affects an unknown part of the file /inventory/add_new_customer. This manipulation causes cross site scripting. The attack c… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-8255	2026-05-12 00:08	2026-05-11	Show	GitHub Exploit DB Packet Storm

277	2.4	LOW Network	-	-	A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. This vulnerability affects unknown code of the file /accounts/mr-save. Such manipulation leads to cross site scriptin… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-8256	2026-05-12 00:08	2026-05-11	Show	GitHub Exploit DB Packet Storm

278	2.4	LOW Network	-	-	A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /accounts/chart-save. Such manipulation leads to cross site scripting. The attack ma… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-8262	2026-05-12 00:08	2026-05-11	Show	GitHub Exploit DB Packet Storm

279	8.8	HIGH Network	cern	rucio	A SQL injection vulnerability in `FilterEngine.create_sqla_query()` allows any authenticated Rucio user to execute arbitrary SQL against the backend database through the DID search endpoint (`GET /di… Update	CWE-89 SQL Injection	CVE-2026-29080	2026-05-12 00:07	2026-05-7	Show	GitHub Exploit DB Packet Storm

280	6.3	MEDIUM Network	-	-	A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wifi_password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl_channel/wl_Pass/Encryp… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8188	2026-05-12 00:07	2026-05-10	Show	GitHub Exploit DB Packet Storm