Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2951	6.5	警告 Network	pypdf project	pypdf	pypdf projectのpypdfにおける過度な反復の脆弱性	CWE-834 過度なイテレーション	CVE-2026-41313	2026-04-30 12:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2952	6.5	警告 Network	pypdf project	pypdf	pypdf projectのpypdfにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-41314	2026-04-30 12:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2953	5.4	警告 Network	mintplexlabs	anythingllm	mintplexlabsのanythingllmにおける複数の脆弱性	CWE-116 CWE-1336 CWE-79	CVE-2026-41318	2026-04-30 12:26	2026-04-24	Show	GitHub Exploit DB Packet Storm

2954	9.1	緊急 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける複数の脆弱性	CWE-200 CWE-918	CVE-2026-41323	2026-04-30 12:26	2026-04-24	Show	GitHub Exploit DB Packet Storm

2955	7.5	重要 Network	Patrick Juchli (patrickjuchli)	Basic FTP	Patrick Juchli (patrickjuchli)のBasic FTPにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-41324	2026-04-30 12:26	2026-04-24	Show	GitHub Exploit DB Packet Storm

2956	8.8	重要 Network	getkirby	kirby	getkirbyのkirbyにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41325	2026-04-30 12:26	2026-04-24	Show	GitHub Exploit DB Packet Storm

2957	9.9	緊急 Network	OpenClaw	OpenClaw	OpenClawにおける特権 API の不適切な使用に関する脆弱性	CWE-648 特権 API の不適切な使用	CVE-2026-41329	2026-04-30 12:26	2026-04-21	Show	GitHub Exploit DB Packet Storm

2958	4.4	警告 Local	OpenClaw	OpenClaw	OpenClawにおける変数の安全ではないデフォルト値への初期化に関する脆弱性	CWE-453 変数の安全ではないデフォルト値への初期化	CVE-2026-41330	2026-04-30 12:26	2026-04-21	Show	GitHub Exploit DB Packet Storm

2959	9.8	緊急 Network	socialengine	socialengine	socialengineにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-41460	2026-04-30 12:26	2026-04-23	Show	GitHub Exploit DB Packet Storm

2960	8.5	重要 Network	socialengine	socialengine	socialengineにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41461	2026-04-30 12:26	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314281	-		-	-	An issue in Ellevo v.6.2.0.38160 allows a remote attacker to escalate privileges via the /api/usuario/cadastrodesuplente endpoint.	-	CVE-2024-42759	2024-09-11 01:35	2024-09-10	Show	GitHub Exploit DB Packet Storm

314282	-		-	-	Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. An attacker with a CVAT account can access webhook delivery information for any webhook r…	-	CVE-2024-45393	2024-09-11 00:50	2024-09-11	Show	GitHub Exploit DB Packet Storm

314283	-		-	-	Bareos is open source software for backup, archiving, and recovery of data for operating systems. When a command ACL is in place and a user executes a command in bconsole using an abbreviation (i.e. …	CWE-285 Improper Authorization	CVE-2024-45044	2024-09-11 00:50	2024-09-11	Show	GitHub Exploit DB Packet Storm

314284	-		-	-	MongoDB Server may access non-initialized region of memory leading to unexpected behaviour when zero arguments are called in internal aggregation stage. This issue affected MongoDB Server v6.0 versio…	-	CVE-2024-8654	2024-09-11 00:50	2024-09-10	Show	GitHub Exploit DB Packet Storm

314285	-		-	-	phpok v3.0 was discovered to contain an arbitrary file read vulnerability via the component /autoload/file.php.	-	CVE-2024-44867	2024-09-11 00:50	2024-09-10	Show	GitHub Exploit DB Packet Storm

314286	4.3	MEDIUM Network	oretnom23	food_ordering_management_system	A vulnerability classified as problematic was found in SourceCodester Food Ordering Management System 1.0. This vulnerability affects unknown code of the file /foms/routers/place-order.php of the com…	CWE-1284 Improper Validation of Specified Quantity in Input	CVE-2024-8558	2024-09-11 00:50	2024-09-8	Show	GitHub Exploit DB Packet Storm

314287	5.4	MEDIUM Network	oretnom23	online_bank_management_system	A vulnerability was found in SourceCodester Online Bank Management System and Online Bank Management System - 1.0. It has been classified as problematic. This affects an unknown part of the file /mfe…	CWE-79 Cross-site Scripting	CVE-2024-8583	2024-09-11 00:49	2024-09-9	Show	GitHub Exploit DB Packet Storm

314288	6.1	MEDIUM Network	oretnom23	food_ordering_management_system	A vulnerability was found in SourceCodester Food Ordering Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipul…	CWE-79 Cross-site Scripting	CVE-2024-8582	2024-09-11 00:48	2024-09-9	Show	GitHub Exploit DB Packet Storm

314289	8.1	HIGH Network	totolink	t8_firmware	A vulnerability classified as critical was found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220. This vulnerability affects unknown code of the file /etc/shadow.sample. The manipulation leads to use of …	CWE-259 Use of Hard-coded Password	CVE-2024-8580	2024-09-11 00:47	2024-09-9	Show	GitHub Exploit DB Packet Storm

314290	9.8	CRITICAL Network	totolink	t8_firmware	A vulnerability classified as critical has been found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220. This affects the function setWiFiRepeaterCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of t…	CWE-120 Classic Buffer Overflow	CVE-2024-8579	2024-09-11 00:47	2024-09-9	Show	GitHub Exploit DB Packet Storm