Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3121	7.5	重要 Network	PowerDNS	dnsdist	PowerDNSのdnsdistにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33594	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3122	7.5	重要 Network	PowerDNS	dnsdist	PowerDNSのdnsdistにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33595	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3123	6.5	警告 Adjacent	PowerDNS	dnsdist	PowerDNSのdnsdistにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-33596	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3124	7.5	重要 Network	PowerDNS	dnsdist	PowerDNSのdnsdistにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-33597	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3125	9.1	緊急 Network	PowerDNS	dnsdist	PowerDNSのdnsdistにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-33598	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3126	8.1	重要 Adjacent	PowerDNS	dnsdist	PowerDNSのdnsdistにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-33599	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3127	8.2	重要 Network	PowerDNS	dnsdist	PowerDNSのdnsdistにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-33602	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3128	10	緊急 Network	Flatpak	Flatpak	FlatpakにおけるUNIX Symbolic Link のフォローに関する脆弱性	CWE-61 UNIX Symbolic Link のフォロー	CVE-2026-34078	2026-04-27 10:50	2026-04-7	Show	GitHub Exploit DB Packet Storm

3129	9.1	緊急 Network		-	オラクルのEnterprise Manager Base Platformにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-34279	2026-04-27 10:50	2026-04-21	Show	GitHub Exploit DB Packet Storm

3130	4.7	警告 Network	オラクル	Oracle Applications Framework	オラクルのOracle Applications Frameworkにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-34298	2026-04-27 10:50	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314831	8.3	HIGH Network	microsoft	edge_chromium	Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability	NVD-CWE-noinfo	CVE-2024-43472	2024-08-29 04:13	2024-08-17	Show	GitHub Exploit DB Packet Storm

314832	5.3	MEDIUM Network	softlabbd	radio_player	The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_player function in versions up to, and including, 2.0.73. This…	CWE-862 Missing Authorization	CVE-2023-4024	2024-08-29 03:32	2024-08-17	Show	GitHub Exploit DB Packet Storm

314833	5.3	MEDIUM Network	softlabbd	radio_player	The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the update_player function in versions up to, and including, 2.0.73. This…	CWE-862 Missing Authorization	CVE-2023-4025	2024-08-29 03:30	2024-08-17	Show	GitHub Exploit DB Packet Storm

314834	9.8	CRITICAL Network	alientechnology	alr-f800_firmware	A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been classified as critical. Affected is an unknown function of the file /var/www/cmd.php. The manipulation of the arg…	CWE-285 Improper Authorization	CVE-2024-7578	2024-08-29 03:27	2024-08-7	Show	GitHub Exploit DB Packet Storm

314835	8.8	HIGH Network	alientechnology	alr-f800_firmware	A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been declared as critical. Affected by this vulnerability is the function popen of the file /var/www/cgi-bin/upgrade.c…	CWE-78 OS Command	CVE-2024-7579	2024-08-29 03:26	2024-08-7	Show	GitHub Exploit DB Packet Storm

314836	7.8	HIGH Local	okta	verify	Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The vulnerability is fixed in Okta Verify for Windows version 5.0.2. To remediate this vulnerability, upgrade to 5…	CWE-427 Uncontrolled Search Path Element	CVE-2024-7061	2024-08-29 03:25	2024-08-8	Show	GitHub Exploit DB Packet Storm

314837	5.4	MEDIUM Network	opentext	alm_octane	Improper Neutralization vulnerability (XSS) has been discovered in OpenText™ ALM Octane. The vulnerability affects all version prior to version 23.4. The vulnerability could cause remote code executi…	CWE-79 Cross-site Scripting	CVE-2024-6361	2024-08-29 03:17	2024-08-6	Show	GitHub Exploit DB Packet Storm

314838	5.4	MEDIUM Network	zephyr-one	zephyr_project_manager	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dylan James Zephyr Project Manager allows Reflected XSS.This issue affects Zephyr Project …	CWE-79 Cross-site Scripting	CVE-2024-43915	2024-08-29 02:44	2024-08-27	Show	GitHub Exploit DB Packet Storm

314839	7.5	HIGH Network	yanzhenjie	andserver	AndServer 2.1.12 is vulnerable to Directory Traversal.	CWE-22 Path Traversal	CVE-2024-41310	2024-08-29 02:42	2024-08-3	Show	GitHub Exploit DB Packet Storm

314840	-		-	-	An SEH-based buffer overflow in the BPQ32 HTTP Server in BPQ32 6.0.24.1 allows remote attackers with access to the Web Terminal to achieve remote code execution via an HTTP POST /TermInput request.	-	CVE-2024-34087	2024-08-29 01:35	2024-08-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed