Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
271	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Win32k の特権の昇格の脆弱性 New	CWE-190 CWE-416	CVE-2026-34330	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

272	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Win32k の特権の昇格の脆弱性 New	CWE-362 CWE-416	CVE-2026-34331	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

273	8	重要 Network	マイクロソフト	Microsoft Windows Server 2025	Windows カーネルモードドライバーのリモートでコードが実行される脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-34332	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

274	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Win32k の特権の昇格の脆弱性 New	CWE-190 CWE-416	CVE-2026-34333	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

275	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP の特権昇格の脆弱性 New	CWE-362 競合状態	CVE-2026-34334	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

276	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows DWM Core ライブラリの情報漏えいの脆弱性 New	CWE-126 バッファオーバーリード	CVE-2026-34336	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

277	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性 New	CWE-362 CWE-416	CVE-2026-34337	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

278	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows テレフォニーサービスの特権昇格の脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-34338	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

279	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows ライトウェイトディレクトリアクセスプロトコル (LDAP) のサービス拒否の脆弱性 New	CWE-476 NULL ポインタデリファレンス	CVE-2026-34339	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

280	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Projected File System の特権の昇格の脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-34340	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311821	8.8	HIGH Network	emiloimagtolis	online_discussion_forum	File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote attacker to execute arbitrary code via the "poster.php" file, and the uploaded file was received using …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-37869	2024-10-9 03:15	2024-10-5	Show	GitHub Exploit DB Packet Storm

311822	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: clean up our handling of refs == 0 in snapshot delete In reada we BUG_ON(refs == 0), which could be unkind since we aren't…	NVD-CWE-noinfo	CVE-2024-46840	2024-10-9 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

311823	5.4	MEDIUM Network	kraftplugins	demo_importer_plus	The Demo Importer Plus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.0.1 due to insufficient input sanitization and ou…	CWE-79 Cross-site Scripting	CVE-2024-9172	2024-10-9 03:05	2024-10-2	Show	GitHub Exploit DB Packet Storm

311824	7.5	HIGH Network	cisco	meraki_z4c_firmware meraki_z4_firmware meraki_z3c_firmware meraki_z3_firmware meraki_vmx_firmware meraki_mx600_firmware meraki_mx450_firmware meraki_mx400_firmware meraki_mx25…	Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS cond…	CWE-787 Out-of-bounds Write	CVE-2024-20499	2024-10-9 02:45	2024-10-3	Show	GitHub Exploit DB Packet Storm

311825	7.5	HIGH Network	cisco	meraki_z4c_firmware meraki_z4_firmware meraki_z3c_firmware meraki_z3_firmware meraki_vmx_firmware meraki_mx600_firmware meraki_mx450_firmware meraki_mx400_firmware meraki_mx25…	A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in …	CWE-400 Uncontrolled Resource Consumption	CVE-2024-20500	2024-10-9 02:37	2024-10-3	Show	GitHub Exploit DB Packet Storm

311826	-		-	-	An issue in Shanghai Zhouma Network Technology CO., Ltd IMS Intelligent Manufacturing Collaborative Internet of Things System v.1.9.1 allows a remote attacker to escalate privileges via the open port.	-	CVE-2024-44439	2024-10-9 01:35	2024-10-5	Show	GitHub Exploit DB Packet Storm

311827	5.4	MEDIUM Network	memberful	memberful	The Memberful – Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'memberful_buy_subscription_link' and 'memberful_podcasts_link' shortcodes in all …	CWE-79 Cross-site Scripting	CVE-2024-9242	2024-10-9 01:26	2024-10-4	Show	GitHub Exploit DB Packet Storm

311828	4.8	MEDIUM Network	wpbookingcalendar	wp_booking_calendar	The WP Booking Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 10.6 due to insufficient input sanitization and outp…	CWE-79 Cross-site Scripting	CVE-2024-9306	2024-10-9 01:25	2024-10-4	Show	GitHub Exploit DB Packet Storm

311829	6.1	MEDIUM Network	plainware	shiftcontroller	The ShiftController Employee Shift Scheduling plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URL keys in all versions up to, and including, 4.9.66 due to insufficient input …	CWE-79 Cross-site Scripting	CVE-2024-9435	2024-10-9 01:22	2024-10-4	Show	GitHub Exploit DB Packet Storm

311830	5.4	MEDIUM Network	sigmadevs	easy_demo_importer	The Easy Demo Importer – A Modern One-Click Demo Import Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.1.2 due…	CWE-79 Cross-site Scripting	CVE-2024-9071	2024-10-9 01:21	2024-10-4	Show	GitHub Exploit DB Packet Storm