Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3071 6.1 警告
Network 		WSO2 WSO2 Identity Server WSO2のWSO2 Identity Serverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-10503 2026-05-7 12:07 2026-04-29 Show GitHub Exploit DB Packet Storm
3072 5.3 警告
Network 		MCPHub MCPHub MCPHubにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2025-13822 2026-05-7 12:07 2026-04-14 Show GitHub Exploit DB Packet Storm
3073 5.3 警告
Network 		IBM IBM DB2 IBMのIBM DB2における入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2025-14688 2026-05-7 12:07 2026-04-30 Show GitHub Exploit DB Packet Storm
3074 6.5 警告
Network 		IBM IBM DB2 IBMのIBM DB2における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2025-36122 2026-05-7 12:07 2026-04-30 Show GitHub Exploit DB Packet Storm
3075 5.3 警告
Network 		HCL Technologies Limited HCL AION HCL Technologies LimitedのHCL AIONにおけるエラーメッセージによる情報漏えいに関する脆弱性 CWE-209
エラーメッセージによる情報漏えい 		CVE-2025-52641 2026-05-7 12:07 2026-04-15 Show GitHub Exploit DB Packet Storm
3076 6.4 警告
Local 		レッドハット Ansible Automation Platform レッドハットのAnsible Automation Platformにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2025-57847 2026-05-7 12:07 2026-04-8 Show GitHub Exploit DB Packet Storm
3077 6.7 警告
Local 		レッドハット Red Hat Advanced Cluster Management for Kubernetes レッドハットのRed Hat Advanced Cluster Management for Kubernetesにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2025-57851 2026-05-7 12:07 2026-04-8 Show GitHub Exploit DB Packet Storm
3078 6.5 警告
Network 		IBM IBM DB2 IBMのIBM DB2における入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2026-1577 2026-05-7 12:07 2026-04-30 Show GitHub Exploit DB Packet Storm
3079 5.5 警告
Local 		サムスン android サムスンのAndroidにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-21023 2026-05-7 12:06 2026-04-29 Show GitHub Exploit DB Packet Storm
3080 4.8 警告
Network 		VMware Spring Security VMwareのSpring SecurityにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-22751 2026-05-7 12:06 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317891 6.1 MEDIUM
Network 		webinarpress webinarpress Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress allows Cross-Site Scripting (XSS).This issue affects WebinarPress: from n/a through 1.33.20. CWE-352
 Origin Validation Error 		CVE-2024-43339 2024-08-28 00:58 2024-08-27 Show GitHub Exploit DB Packet Storm
317892 4.3 MEDIUM
Network 		advancedformintegration advanced_form_integration Cross-Site Request Forgery (CSRF) vulnerability in Nasirahmed Advanced Form Integration.This issue affects Advanced Form Integration: from n/a through 1.89.4. CWE-352
 Origin Validation Error 		CVE-2024-43340 2024-08-28 00:56 2024-08-27 Show GitHub Exploit DB Packet Storm
317893 4.3 MEDIUM
Network 		bobbingwide oik Cross-Site Request Forgery (CSRF) vulnerability in bobbingwide.This issue affects oik: from n/a through 4.12.0. CWE-352
 Origin Validation Error 		CVE-2024-43356 2024-08-28 00:54 2024-08-27 Show GitHub Exploit DB Packet Storm
317894 9.8 CRITICAL
Network 		pharmacy_management_system_project pharmacy_management_system A vulnerability, which was classified as critical, was found in code-projects Pharmacy Management System 1.0. Affected is the function editManager of the file /index.php?action=editManager of the com… CWE-89
SQL Injection 		CVE-2024-8138 2024-08-28 00:51 2024-08-25 Show GitHub Exploit DB Packet Storm
317895 6.1 MEDIUM
Network 		jkev record_management_system A vulnerability has been found in SourceCodester Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file search_user.php. The manipulation of t… CWE-79
Cross-site Scripting 		CVE-2024-8137 2024-08-28 00:50 2024-08-25 Show GitHub Exploit DB Packet Storm
317896 7.5 HIGH
Network 		nicmx fort-validator An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) an ROA or a Manifest containing a null eContent fie… CWE-476
 NULL Pointer Dereference 		CVE-2024-45239 2024-08-28 00:49 2024-08-25 Show GitHub Exploit DB Packet Storm
317897 9.8 CRITICAL
Network 		nicmx fort-validator An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a resource certificate containing a Key Usage exten… CWE-120
Classic Buffer Overflow 		CVE-2024-45237 2024-08-28 00:48 2024-08-25 Show GitHub Exploit DB Packet Storm
317898 7.5 HIGH
Network 		nicmx fort-validator An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a signed object containing an empty signedAttribute… NVD-CWE-noinfo
CVE-2024-45236 2024-08-28 00:48 2024-08-25 Show GitHub Exploit DB Packet Storm
317899 7.5 HIGH
Network 		nicmx fort-validator An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) an ROA or a Manifest containing a signedAttrs encod… NVD-CWE-noinfo
CVE-2024-45234 2024-08-28 00:45 2024-08-25 Show GitHub Exploit DB Packet Storm
317900 6.1 MEDIUM
Network 		jkev record_management_system A vulnerability, which was classified as problematic, was found in SourceCodester Record Management System 1.0. This affects an unknown part of the file sort1_user.php. The manipulation of the argume… CWE-79
Cross-site Scripting 		CVE-2024-8136 2024-08-28 00:43 2024-08-25 Show GitHub Exploit DB Packet Storm