Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2761 9 緊急
Network 		craftycontrol crafty controller craftycontrolのcrafty controllerにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-5652 2026-04-30 12:24 2026-04-21 Show GitHub Exploit DB Packet Storm
2762 7.5 重要
Network 		HashiCorp Vault HashiCorpのVaultにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-5807 2026-04-30 12:24 2026-04-17 Show GitHub Exploit DB Packet Storm
2763 7.1 重要
Local 		radare radare2 radareのradare2におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-6940 2026-04-30 12:24 2026-04-23 Show GitHub Exploit DB Packet Storm
2764 7.8 重要
Local 		radare radare2 radareのradare2における複数の脆弱性 CWE-22
CWE-59
CVE-2026-6941 2026-04-30 12:24 2026-04-23 Show GitHub Exploit DB Packet Storm
2765 7.5 重要
Network 		Sgbett BSV Ruby SDK (bsv-sdk) SgbettのBSV Ruby SDK (bsv-sdk)における例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-40069 2026-04-30 12:18 2026-04-9 Show GitHub Exploit DB Packet Storm
2766 5.3 警告
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2026-40431 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
2767 9.8 緊急
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-40620 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
2768 8.1 重要
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40623 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
2769 9.8 緊急
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-40630 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
2770 5.3 警告
Network 		opentelemetry opentelemetry
OpenTelemetry.Extensions.Propagators
Opentelemetry.api 		opentelemetryのOpentelemetry.api等の複数製品における過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-40894 2026-04-30 12:18 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314121 7.5 HIGH
Network 		oretnom23 food_ordering_management_system A vulnerability classified as critical has been found in SourceCodester Food Ordering Management System 1.0. This affects an unknown part of the file /foms/routers/cancel-order.php. The manipulation … CWE-89
SQL Injection 		CVE-2024-8557 2024-09-10 23:19 2024-09-8 Show GitHub Exploit DB Packet Storm
314122 6.1 MEDIUM
Network 		oretnom23 clinic\'s_patient_management_system A vulnerability was found in SourceCodester Clinics Patient Management System 2.0. It has been classified as problematic. Affected is an unknown function of the file congratulations.php. The manipula… CWE-601
Open Redirect 		CVE-2024-8555 2024-09-10 22:53 2024-09-8 Show GitHub Exploit DB Packet Storm
314123 5.4 MEDIUM
Network 		oretnom23 clinic\'s_patient_management_system A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified as problematic. This issue affects some unknown processing of the file /users.php. The manipulation of… CWE-79
Cross-site Scripting 		CVE-2024-8554 2024-09-10 22:52 2024-09-7 Show GitHub Exploit DB Packet Storm
314124 - - - SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file - CVE-2024-8645 2024-09-10 21:09 2024-09-10 Show GitHub Exploit DB Packet Storm
314125 - - - A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1.9.5), Industrial Edge Management Virtual (All versions < V2.3.1-1). Affected components do not properly valida… - CVE-2024-45032 2024-09-10 21:09 2024-09-10 Show GitHub Exploit DB Packet Storm
314126 - - - A vulnerability has been identified in Automation License Manager V5 (All versions), Automation License Manager V6.0 (All versions), Automation License Manager V6.2 (All versions < V6.2 Upd3). Affect… CWE-190
 Integer Overflow or Wraparound 		CVE-2024-44087 2024-09-10 21:09 2024-09-10 Show GitHub Exploit DB Packet Storm
314127 - - - A vulnerability has been identified in SINUMERIK 828D V4 (All versions < V4.95 SP3), SINUMERIK 840D sl V4 (All versions < V4.95 SP3 in connection with using Create MyConfig (CMC) <= V4.8 SP1 HF6), SI… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-43781 2024-09-10 21:09 2024-09-10 Show GitHub Exploit DB Packet Storm
314128 - - - A vulnerability has been identified in SIMATIC S7-200 SMART CPU CR40 (6ES7288-1CR40-0AA0) (All versions), SIMATIC S7-200 SMART CPU CR60 (6ES7288-1CR60-0AA0) (All versions), SIMATIC S7-200 SMART CPU S… - CVE-2024-43647 2024-09-10 21:09 2024-09-10 Show GitHub Exploit DB Packet Storm
314129 - - - A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP2). The affected application does not properly handle user session establishment and invalidation. This coul… CWE-384
 Session Fixation 		CVE-2024-42345 2024-09-10 21:09 2024-09-10 Show GitHub Exploit DB Packet Storm
314130 - - - A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 SP2). The affected application inserts sensitive information into a log file which is readable by all legitima… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-42344 2024-09-10 21:09 2024-09-10 Show GitHub Exploit DB Packet Storm