Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2831	7.1	重要 Network	ConnectWise, Inc.	automate	ConnectWise, Inc.のautomateにおける重要な情報の平文での送信に関する脆弱性	CWE-319 重要な情報の平文での送信	CVE-2026-6066	2026-04-24 11:40	2026-04-20	Show	GitHub Exploit DB Packet Storm

2832	9.1	緊急 Network	Open JS Foundation	fastify/middie	Open JS Foundationの@fastify/middieにおける解釈の競合に関する脆弱性	CWE-436 解釈の競合	CVE-2026-6270	2026-04-24 11:40	2026-04-16	Show	GitHub Exploit DB Packet Storm

2833	9.9	緊急 Network	ASUSTOR Inc.	data master	ASUSTOR Inc.のdata masterにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-6643	2026-04-24 11:40	2026-04-20	Show	GitHub Exploit DB Packet Storm

2834	9.1	緊急 Network	ASUSTOR Inc.	data master	ASUSTOR Inc.のdata masterにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-6644	2026-04-24 11:40	2026-04-20	Show	GitHub Exploit DB Packet Storm

2835	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-6746	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

2836	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-6747	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

2837	9.8	緊急 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-6748	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

2838	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-6749	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

2839	9.8	緊急 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-6750	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

2840	7.3	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-6751	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314881	-	-	-	A vulnerability classified as critical has been found in Tenda A301 15.13.08.12. This affects the function formWifiBasicSet of the file /goform/WifiBasicSet. The manipulation of the argument security…	CWE-121 Stack-based Buffer Overflow	CVE-2024-7581	2024-08-8 00:17	2024-08-8	Show	GitHub Exploit DB Packet Storm

314882	-	-	-	A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/system.html. The manip…	CWE-78 OS Command	CVE-2024-7580	2024-08-8 00:17	2024-08-8	Show	GitHub Exploit DB Packet Storm

314883	-	-	-	An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The urlize and urlizetrunc template filters, and the AdminURLFieldWidget widget, are subject to a potential denial-of-service…	-	CVE-2024-41991	2024-08-8 00:17	2024-08-8	Show	GitHub Exploit DB Packet Storm

314884	-	-	-	Jenkins 2.470 and earlier, LTS 2.452.3 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to access other users' "My Views".	-	CVE-2024-43045	2024-08-8 00:17	2024-08-7	Show	GitHub Exploit DB Packet Storm

314885	-	-	-	Jenkins 2.470 and earlier, LTS 2.452.3 and earlier allows agent processes to read arbitrary files from the Jenkins controller file system by using the `ClassLoaderProxy#fetchJar` method in the Remoti…	-	CVE-2024-43044	2024-08-8 00:17	2024-08-7	Show	GitHub Exploit DB Packet Storm

314886	-	-	-	The Accept Stripe Payments plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's accept_stripe_payment_ng shortcode in all versions up to, and including, 2.0.86 due to in…	-	CVE-2024-7353	2024-08-8 00:17	2024-08-7	Show	GitHub Exploit DB Packet Storm

314887	-	-	-	Type Confusion in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	-	CVE-2024-7550	2024-08-8 00:17	2024-08-7	Show	GitHub Exploit DB Packet Storm

314888	-	-	-	Use after free in WebAudio in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	-	CVE-2024-7536	2024-08-8 00:17	2024-08-7	Show	GitHub Exploit DB Packet Storm

314889	-	-	-	Use after free in Sharing in Google Chrome on iOS prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	-	CVE-2024-7533	2024-08-8 00:17	2024-08-7	Show	GitHub Exploit DB Packet Storm

314890	-	-	-	1Password 8 before 8.10.36 for macOS allows local attackers to exfiltrate vault items because XPC inter-process communication validation is insufficient.	-	CVE-2024-42219	2024-08-8 00:17	2024-08-7	Show	GitHub Exploit DB Packet Storm