Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3121 5.4 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-7481 2026-05-18 12:09 2026-05-14 Show GitHub Exploit DB Packet Storm
3122 5.5 警告
Local 		GPAC GPAC GPACにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-8124 2026-05-18 12:09 2026-05-8 Show GitHub Exploit DB Packet Storm
3123 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-8144 2026-05-18 12:09 2026-05-14 Show GitHub Exploit DB Packet Storm
3124 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-8280 2026-05-18 12:09 2026-05-14 Show GitHub Exploit DB Packet Storm
3125 6.5 警告
Network 		Open5GS Open5GS Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2026-8291 2026-05-18 12:09 2026-05-11 Show GitHub Exploit DB Packet Storm
3126 6.5 警告
Network 		Open5GS Open5GS Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2026-8292 2026-05-18 12:09 2026-05-11 Show GitHub Exploit DB Packet Storm
3127 7.3 重要
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-8390 2026-05-18 12:09 2026-05-12 Show GitHub Exploit DB Packet Storm
3128 5.4 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2025-12669 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3129 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2025-13874 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3130 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2025-14869 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317711 7.5 HIGH
Network 		ruby-lang rexml REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`. The REXM… CWE-400
 Uncontrolled Resource Consumption 		CVE-2024-41123 2024-10-10 21:56 2024-08-2 Show GitHub Exploit DB Packet Storm
317712 6.1 MEDIUM
Network 		- - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit … - CVE-2024-45123 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
317713 4.3 MEDIUM
Network 		- - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged a… CWE-284
Improper Access Control 		CVE-2024-45122 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
317714 - - - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged a… CWE-284
Improper Access Control 		CVE-2024-45121 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
317715 4.3 MEDIUM
Network 		- - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could lead to a security feature byp… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2024-45120 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
317716 5.5 MEDIUM
Network 		- - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could lead to arbitrary file system read. A low-pri… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-45119 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
317717 6.5 MEDIUM
Network 		- - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged a… CWE-284
Improper Access Control 		CVE-2024-45118 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
317718 7.6 HIGH
Network 		- - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An admin attacker… CWE-20
 Improper Input Validation  		CVE-2024-45117 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
317719 8.1 HIGH
Network 		- - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Cross-Site Scripting (XSS) vulnerability that could be exploited to execute arbitrary code. If an admin a… CWE-79
Cross-site Scripting 		CVE-2024-45116 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm
317720 9.8 CRITICAL
Network 		- - Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. An attacker could explo… CWE-287
Improper Authentication 		CVE-2024-45115 2024-10-10 21:51 2024-10-10 Show GitHub Exploit DB Packet Storm