Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2911	7.8	重要 Local	マイクロソフト	Microsoft Office Online Server Microsoft Excel Microsoft Office Office Long Term Servicing Channel (LTSC) Microsoft 365 Apps	Microsoft Excel のリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-40362	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2912	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office のリモートコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-40363	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2913	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Microsoft Word Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-122 CWE-843 CWE-908	CVE-2026-40364	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2914	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Microsoft Word Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40366	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2915	8.4	重要 Local	マイクロソフト	Microsoft Office Office Long Term Servicing Channel (LTSC) Microsoft 365 Apps Microsoft SharePoint Server Microsoft Word	Microsoft Word のリモートでコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-40367	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2916	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40418	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2917	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40419	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2918	8.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-40420	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2919	5.8	警告 Network	traefik	traefik	traefikにおける送信データへの重要な情報の挿入に関する脆弱性	CWE-201 送信データへの重要な情報の挿入	CVE-2026-41181	2026-05-21 10:52	2026-05-15	Show	GitHub Exploit DB Packet Storm

2920	7.5	重要 Network	DHTMLX	PDF Export Module	DHTMLXのPDF Export Moduleにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41552	2026-05-21 10:52	2026-05-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319111	5.4	MEDIUM Network	metagauss	profilegrid	The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 5.9.3.2 due to incorrect use of the wp_…	CWE-79 Cross-site Scripting	CVE-2024-8861	2024-10-1 22:41	2024-09-26	Show	GitHub Exploit DB Packet Storm

319112	6.3	MEDIUM Network	oretnom23	railway_reservation_system	A vulnerability was found in SourceCodester Online Railway Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/. Th…	CWE-862 Missing Authorization	CVE-2024-9297	2024-10-1 22:39	2024-09-28	Show	GitHub Exploit DB Packet Storm

319113	4.3	MEDIUM Network	oretnom23	railway_reservation_system	A vulnerability was found in SourceCodester Online Railway Reservation System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /?page=tickets of…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-9298	2024-10-1 22:37	2024-09-28	Show	GitHub Exploit DB Packet Storm

319114	5.4	MEDIUM Network	oretnom23	railway_reservation_system	A vulnerability classified as problematic has been found in SourceCodester Online Railway Reservation System 1.0. This affects an unknown part of the file /?page=reserve. The manipulation of the argu…	CWE-79 Cross-site Scripting	CVE-2024-9299	2024-10-1 22:36	2024-09-28	Show	GitHub Exploit DB Packet Storm

319115	6.1	MEDIUM Network	oretnom23	railway_reservation_system	A vulnerability classified as problematic was found in SourceCodester Online Railway Reservation System 1.0. This vulnerability affects unknown code of the file contact_us.php of the component Messag…	CWE-79 Cross-site Scripting	CVE-2024-9300	2024-10-1 22:34	2024-09-29	Show	GitHub Exploit DB Packet Storm

319116	8.8	HIGH Network	oretnom23	employee_and_visitor_gate_pass_logging_system	A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/maintenance…	CWE-89 SQL Injection	CVE-2024-9315	2024-10-1 22:33	2024-09-29	Show	GitHub Exploit DB Packet Storm

319117	8.8	HIGH Network	oretnom23	online_eyewear_shop	A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability is the function delete_category of the file /classes/Master.php?f=delete_cat…	CWE-89 SQL Injection	CVE-2024-9317	2024-10-1 22:32	2024-09-29	Show	GitHub Exploit DB Packet Storm

319118	9.8	CRITICAL Network	mayurik	advocate_office_management_system	A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the file /control/ac…	CWE-89 SQL Injection	CVE-2024-9318	2024-10-1 22:31	2024-09-29	Show	GitHub Exploit DB Packet Storm

319119	8.8	HIGH Network	rems	online_timesheet_app	A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of t…	CWE-89 SQL Injection	CVE-2024-9319	2024-10-1 22:29	2024-09-29	Show	GitHub Exploit DB Packet Storm

319120	5.3	MEDIUM Network	oretnom23	railway_reservation_system	A vulnerability was found in SourceCodester Online Railway Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/inquiries/view_details.php.…	NVD-CWE-noinfo	CVE-2024-9321	2024-10-1 22:28	2024-09-29	Show	GitHub Exploit DB Packet Storm