Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2921	8.1	重要 Adjacent	Anviz Global	Crosschex Standard	Anviz GlobalのCrosschex Standardにおける通信チャネルの送信元の不適切な検証に関する脆弱性	CWE-940 通信チャネルの送信元の不適切な検証	CVE-2026-40434	2026-05-7 11:29	2026-04-17	Show	GitHub Exploit DB Packet Storm

2922	7.5	重要 Network	Anviz Global	Anviz CX7 Firmware Anviz CX2 Lite Firmware	Anviz GlobalのAnviz CX2 Lite Firmware等の複数製品における重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-40461	2026-05-7 11:29	2026-04-17	Show	GitHub Exploit DB Packet Storm

2923	5.3	警告 Network	asrmicro	ASR1901 Firmware ASR1903 Firmware	asrmicroのASR1901 Firmware等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42800	2026-05-7 11:29	2026-04-30	Show	GitHub Exploit DB Packet Storm

2924	7.5	重要 Network	OpenStack	Ironic Python Agent	OpenStackのIronic Python Agentにおける信頼できない制御領域からの機能の組み込みに関する脆弱性	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-43003	2026-05-7 11:29	2026-05-1	Show	GitHub Exploit DB Packet Storm

2925	5.9	警告 Network	PerlDancer	Dancer::Session::Abstract	PerlDancerのDancer::Session::Abstractにおける複数の脆弱性	CWE-338 CWE-340	CVE-2026-5080	2026-05-7 11:29	2026-04-30	Show	GitHub Exploit DB Packet Storm

2926	5.5	警告 Adjacent	NASA	Core Flight System (cFS)	NASAのCore Flight System (cFS)におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-5475	2026-05-7 11:29	2026-04-3	Show	GitHub Exploit DB Packet Storm

2927	4.6	警告 Adjacent	NASA	Core Flight System (cFS)	NASAのCore Flight System (cFS)における複数の脆弱性	CWE-189 CWE-190	CVE-2026-5476	2026-05-7 11:29	2026-04-3	Show	GitHub Exploit DB Packet Storm

2928	7.8	重要 Local	IBM	IBM Turbonomic Prometurbo agent	IBMのIBM Turbonomic Prometurbo agentにおける権限管理に関する脆弱性	CWE-269 CWE-noinfo	CVE-2026-6389	2026-05-7 11:29	2026-04-30	Show	GitHub Exploit DB Packet Storm

2929	5.5	警告 Local	レッドハット	multicluster engine for Kubernetes	レッドハットのmulticluster engine for Kubernetesにおける重要な情報の平文保存に関する脆弱性	CWE-312 重要な情報の平文保存	CVE-2026-7163	2026-05-7 11:29	2026-04-30	Show	GitHub Exploit DB Packet Storm

2930	7.2	重要 Network	Amazon.com, Inc.	Amazon ECS container agent	Amazon.com, Inc.のAmazon ECS container agentにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-7461	2026-05-7 11:29	2026-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316971	-	-	-	Under certain circumstances the communication between exacqVision Client and exacqVision Server will use insufficient key length and exchange	-	CVE-2024-32758	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

316972	-	-	-	A vulnerability, which was classified as problematic, was found in SourceCodester Simple Realtime Quiz System 1.0. This affects an unknown part of the file /ajax.php?action=save_user. The manipulatio…	CWE-352 Origin Validation Error	CVE-2024-7367	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

316973	-	-	-	A vulnerability was found in SourceCodester Tracking Monitoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file /ajax.php?action=login of the compo…	CWE-89 SQL Injection	CVE-2024-7366	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

316974	-	-	-	Dispatch's notification service uses Jinja templates to generate messages to users. Jinja permits code execution within blocks, which were neither properly sanitized nor sandboxed. This vulnerability…	-	CVE-2024-7093	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

316975	-	-	-	Improper Privilege Management vulnerability in IdeaBox PowerPack Pro for Elementor allows Privilege Escalation.This issue affects PowerPack Pro for Elementor: from n/a through 2.10.14.	CWE-269 Improper Privilege Management	CVE-2024-39634	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

316976	-	-	-	Improper Privilege Management vulnerability in IdeaBox PowerPack for Beaver Builder allows Privilege Escalation.This issue affects PowerPack for Beaver Builder: from n/a through 2.33.0.	CWE-269 Improper Privilege Management	CVE-2024-39633	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

316977	-	-	-	Deserialization of Untrusted Data vulnerability in MotoPress Timetable and Event Schedule allows Object Injection.This issue affects Timetable and Event Schedule: from n/a through 2.4.13.	CWE-502 Deserialization of Untrusted Data	CVE-2024-39630	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

316978	-	-	-	Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows Server Side Request Forgery.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.4.7.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-38791	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

316979	-	-	-	Improper Privilege Management vulnerability in WebAppick CTX Feed allows Privilege Escalation.This issue affects CTX Feed: from n/a through 6.5.6.	CWE-269 Improper Privilege Management	CVE-2024-38775	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

316980	-	-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Crocoblock JetWidgets for Elementor and WooCommerce allows PHP Local File Inclusion.This issue affects …	-	CVE-2024-38772	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm