Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2651	5	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-45000	2026-05-15 10:56	2026-05-11	Show	GitHub Exploit DB Packet Storm

2652	7.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-45001	2026-05-15 10:56	2026-05-11	Show	GitHub Exploit DB Packet Storm

2653	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-45002	2026-05-15 10:56	2026-05-11	Show	GitHub Exploit DB Packet Storm

2654	5	警告 Local	OpenClaw	OpenClaw	OpenClawにおけるフィルタリングの回避に関する脆弱性	CWE-441 フィルタリング回避	CVE-2026-45003	2026-05-15 10:56	2026-05-11	Show	GitHub Exploit DB Packet Storm

2655	7.8	重要 Local	OpenClaw	OpenClaw	OpenClawにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2026-45004	2026-05-15 10:56	2026-05-11	Show	GitHub Exploit DB Packet Storm

2656	6	警告 Network	OpenClaw	OpenClaw	OpenClawにおける有効期限後または解放後のリソースの操作に関する脆弱性	CWE-672 有効期限後または解放後のリソースの操作	CVE-2026-45005	2026-05-15 10:56	2026-05-11	Show	GitHub Exploit DB Packet Storm

2657	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不完全なブラックリストに関する脆弱性	CWE-184 不完全なブラックリスト	CVE-2026-45006	2026-05-15 10:56	2026-05-11	Show	GitHub Exploit DB Packet Storm

2658	7.5	重要 Network	protobufjs project	protobufjs	protobufjs projectのprotobufjsにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-45740	2026-05-15 10:56	2026-05-13	Show	GitHub Exploit DB Packet Storm

2659	6.5	警告 Network	Haxx	cURL	HaxxのcURLにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-5545	2026-05-15 10:56	2026-05-13	Show	GitHub Exploit DB Packet Storm

2660	7.5	重要 Network	Haxx	cURL	HaxxのcURLにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-5773	2026-05-15 10:56	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312051	7.8	HIGH Local	fortinet	forticlient	A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0 allows an attacker to run arbitrary code via DLL hijacking and socia…	CWE-426 Untrusted Search Path	CVE-2024-36507	2024-11-15 05:31	2024-11-13	Show	GitHub Exploit DB Packet Storm

312052	8.1	HIGH Network	ampache	ampache	Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating controlle…	CWE-352 Origin Validation Error	CVE-2024-51484	2024-11-15 05:14	2024-11-12	Show	GitHub Exploit DB Packet Storm

312053	5.4	MEDIUM Network	ampache	ampache	Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing does not adequately validate CSRF tokens when users delete messages. This vulner…	CWE-352 Origin Validation Error	CVE-2024-51488	2024-11-15 05:12	2024-11-12	Show	GitHub Exploit DB Packet Storm

312054	8.1	HIGH Network	ampache	ampache	Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating plugins. …	CWE-352 Origin Validation Error	CVE-2024-51485	2024-11-15 05:06	2024-11-12	Show	GitHub Exploit DB Packet Storm

312055	4.3	MEDIUM Network	futuriowp	futurio_extra	The Futurio Extra plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.0.13 via the 'elementor-template' shortcode due to insufficient restrictions on wh…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-10695	2024-11-15 04:44	2024-11-12	Show	GitHub Exploit DB Packet Storm

312056	6.1	MEDIUM Network	wpplugin	contact_form_7_redirect_\&_thank_you_page	The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 1.0.6 due to insufficie…	CWE-79 Cross-site Scripting	CVE-2024-10685	2024-11-15 04:40	2024-11-12	Show	GitHub Exploit DB Packet Storm

312057	7.5	HIGH Network	onedev_project	onedev	OneDev is a Git server with CI/CD, kanban, and packages. A vulnerability in versions prior to 11.0.9 allows unauthenticated users to read arbitrary files accessible by the OneDev server process. This…	CWE-22 Path Traversal	CVE-2024-45309	2024-11-15 04:39	2024-10-22	Show	GitHub Exploit DB Packet Storm

312058	8.1	HIGH Network	ampache	ampache	Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating catalog. …	CWE-352 Origin Validation Error	CVE-2024-51487	2024-11-15 04:37	2024-11-12	Show	GitHub Exploit DB Packet Storm

312059	9.8	CRITICAL Network	mikexstudios	xcomic	A vulnerability classified as critical has been found in mikexstudios Xcomic up to 0.8.2. This affects an unknown part. The manipulation of the argument cmd leads to os command injection. It is possi…	CWE-78 OS Command	CVE-2005-10003	2024-11-15 04:35	2024-10-17	Show	GitHub Exploit DB Packet Storm

312060	5.3	MEDIUM Network	jetbrains	ktor	In JetBrains Ktor before 3.0.0 improper caching in HttpCache Plugin could lead to response information disclosure	NVD-CWE-Other	CVE-2024-49580	2024-11-15 04:25	2024-10-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed