Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3031 8.1 重要
Network 		minerva minerva Agilonhealth (MphRx)のMinervaにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-5780 2026-05-7 10:52 2026-04-28 Show GitHub Exploit DB Packet Storm
3032 8.8 重要
Network 		Frappe ERPNext FrappeのERPNextにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2023-54345 2026-05-7 10:52 2026-05-5 Show GitHub Exploit DB Packet Storm
3033 7.5 重要
Network 		OpenEMR OpenEMR OpenEMRにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2023-54347 2026-05-7 10:52 2026-05-5 Show GitHub Exploit DB Packet Storm
3034 7.2 重要
Network 		デル data domain operating system デルのdata domain operating systemにおける認証に関する脆弱性 CWE-287
CWE-noinfo
CVE-2025-46607 2026-05-7 10:52 2026-04-17 Show GitHub Exploit DB Packet Storm
3035 6.6 警告
Network 		デル data domain operating system デルのdata domain operating systemにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2025-46641 2026-05-7 10:52 2026-04-17 Show GitHub Exploit DB Packet Storm
3036 8.8 重要
Adjacent 		Google Android GoogleのAndroidにおける認証アルゴリズムの不適切な実装に関する脆弱性 CWE-303
認証アルゴリズム上の問題 		CVE-2026-0073 2026-05-7 10:52 2026-05-4 Show GitHub Exploit DB Packet Storm
3037 8 重要
Adjacent 		SonicWALL SonicOS SonicWALLのSonicOSにおける複数の脆弱性 CWE-1390
CWE-306
CVE-2026-0204 2026-05-7 10:52 2026-04-29 Show GitHub Exploit DB Packet Storm
3038 6.8 警告
Adjacent 		SonicWALL SonicOS SonicWALLのSonicOSにおけるパストラバーサルの脆弱性 CWE-35
パストラバーサル 		CVE-2026-0205 2026-05-7 10:52 2026-04-29 Show GitHub Exploit DB Packet Storm
3039 4.9 警告
Network 		SonicWALL SonicOS SonicWALLのSonicOSにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-0206 2026-05-7 10:52 2026-04-29 Show GitHub Exploit DB Packet Storm
3040 5.5 警告
Local 		オラクル Oracle Linux オラクルのOracle Linuxにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2026-21996 2026-05-7 10:52 2026-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317551 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Modernaweb Studio Black Widgets For Elementor allows Stored XSS.This issue affects Black W… CWE-79
Cross-site Scripting 		CVE-2024-39662 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
317552 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ExtendThemes Kubio AI Page Builder.This issue affects Kubio AI Page Builder: from n/a thro… - CVE-2024-39661 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
317553 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jordy Meow Photo Engine allows Stored XSS.This issue affects Photo Engine: from n/a throug… CWE-79
Cross-site Scripting 		CVE-2024-39660 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
317554 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Lester ‘GaMerZ’ Chan WP-PostRatings allows Stored XSS.This issue affects WP-PostRatings: f… CWE-79
Cross-site Scripting 		CVE-2024-39659 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
317555 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Uncanny Owl Tin Canny Reporting for LearnDash allows Reflected XSS.This issue affects Tin … CWE-79
Cross-site Scripting 		CVE-2024-39656 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
317556 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LiquidPoll LiquidPoll – Advanced Polls for Creators and Brands.This issue affects LiquidPo… CWE-79
Cross-site Scripting 		CVE-2024-39655 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
317557 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPWeb Elite WooCommerce PDF Vouchers allows Reflected XSS.This issue affects WooCommerce P… CWE-79
Cross-site Scripting 		CVE-2024-39652 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
317558 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themewinter Eventin allows Stored XSS.This issue affects Eventin: from n/a through 4.0.5. CWE-79
Cross-site Scripting 		CVE-2024-39648 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
317559 - - - Deserialization of Untrusted Data vulnerability in CodeSolz Better Find and Replace.This issue affects Better Find and Replace: from n/a through 1.6.1. CWE-502
 Deserialization of Untrusted Data 		CVE-2024-39636 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
317560 - - - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Dylan James Zephyr Project Manager.This issue affects Zephyr Project Manager: from n/a through 3.3.99. - CVE-2024-38761 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm