Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2641 2.3
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35250 2026-04-24 11:43 2026-04-21 Show GitHub Exploit DB Packet Storm
2642 7.5 重要
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35251 2026-04-24 11:43 2026-04-21 Show GitHub Exploit DB Packet Storm
2643 5.3 警告
Network 		WWBN AVideo WWBNのAVideoにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-35449 2026-04-24 11:42 2026-04-6 Show GitHub Exploit DB Packet Storm
2644 8.7 重要
Network 		Apostrophe Technologies ApostropheCMS Apostrophe TechnologiesのApostropheCMSにおける複数の脆弱性 CWE-116
CWE-79
CVE-2026-35569 2026-04-24 11:42 2026-04-15 Show GitHub Exploit DB Packet Storm
2645 6.3 警告
Local 		Glances project Glances Nicolas Hennion (nicolargo)のGlancesにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-35588 2026-04-24 11:42 2026-04-21 Show GitHub Exploit DB Packet Storm
2646 7.3 重要
Local 		Anthropic PBC Claude Code Anthropic PBCのClaude Codeにおける信頼できない検索パスに関する脆弱性 CWE-426
信頼性のない検索パス 		CVE-2026-35603 2026-04-24 11:42 2026-04-17 Show GitHub Exploit DB Packet Storm
2647 6.5 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost ServerにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-3590 2026-04-24 11:42 2026-04-15 Show GitHub Exploit DB Packet Storm
2648 6.5 警告
Network 		WWBN AVideo WWBNのAVideoにおけるデータの信頼性についての不十分な検証に関する脆弱性 CWE-345
データの信頼性についての不十分な検証 		CVE-2026-39366 2026-04-24 11:42 2026-04-7 Show GitHub Exploit DB Packet Storm
2649 5.4 警告
Network 		WWBN AVideo WWBNのAVideoにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-39367 2026-04-24 11:42 2026-04-7 Show GitHub Exploit DB Packet Storm
2650 6.5 警告
Network 		WWBN AVideo WWBNのAVideoにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-39368 2026-04-24 11:42 2026-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314661 5.3 MEDIUM
Network 		lopalopa responsive_school_management_system An Incorrect Access Control vulnerability was found in /smsa/admin_dashboard.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view adminis… NVD-CWE-Other
CVE-2024-41246 2024-08-9 00:08 2024-08-8 Show GitHub Exploit DB Packet Storm
314662 5.3 MEDIUM
Network 		lopalopa responsive_school_management_system An Incorrect Access Control vulnerability was found in /smsa/add_subject.php and /smsa/add_subject_submit.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthentica… NVD-CWE-Other
CVE-2024-41248 2024-08-9 00:07 2024-08-8 Show GitHub Exploit DB Packet Storm
314663 5.3 MEDIUM
Network 		lopalopa responsive_school_management_system An Incorrect Access Control vulnerability was found in /smsa/view_subject.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view SUBJECT de… NVD-CWE-Other
CVE-2024-41249 2024-08-9 00:06 2024-08-8 Show GitHub Exploit DB Packet Storm
314664 7.8 HIGH
Local 		enjayworld enjay_crm An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system. NVD-CWE-noinfo
CVE-2024-41308 2024-08-9 00:04 2024-08-8 Show GitHub Exploit DB Packet Storm
314665 6.5 MEDIUM
Network 		lopalopa responsive_school_management_system An Incorrect Access Control vulnerability was found in /smsa/admin_student_register_approval.php and /smsa/admin_student_register_approval_submit.php in Kashipara Responsive School Management System … NVD-CWE-Other
CVE-2024-41252 2024-08-9 00:04 2024-08-8 Show GitHub Exploit DB Packet Storm
314666 5.3 MEDIUM
Network 		likeshop likeshop An IP Spoofing vulnerability has been discovered in Likeshop up to 2.5.7.20210811. This issue allows an attacker to replace their real IP address with any arbitrary IP address, specifically by adding… CWE-290
 Authentication Bypass by Spoofing 		CVE-2024-41432 2024-08-9 00:02 2024-08-8 Show GitHub Exploit DB Packet Storm
314667 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayed_work() and ceph_monc_stop() The way the delayed work is handled in ceph_monc_stop() is prone to… CWE-416
 Use After Free 		CVE-2024-42232 2024-08-9 00:02 2024-08-8 Show GitHub Exploit DB Packet Storm
314668 3.3 LOW
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: filemap: replace pte_offset_map() with pte_offset_map_nolock() The vmf->ptl in filemap_fault_recheck_pte_none() is still set from… NVD-CWE-noinfo
CVE-2024-42233 2024-08-8 23:56 2024-08-8 Show GitHub Exploit DB Packet Storm
314669 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: s390/mm: Add NULL pointer check to crst_table_free() base_crst_free() crst_table_free() used to work with NULL pointers before th… CWE-476
 NULL Pointer Dereference 		CVE-2024-42235 2024-08-8 23:55 2024-08-8 Show GitHub Exploit DB Packet Storm
314670 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm: fix crashes from deferred split racing folio migration Even on 6.10-rc6, I've been seeing elusive "Bad page state"s (often on… CWE-415
 Double Free 		CVE-2024-42234 2024-08-8 23:55 2024-08-8 Show GitHub Exploit DB Packet Storm