Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3151	7.5	重要 Network	Marked project	Marked	Marked projectのMarkedにおける複数の脆弱性	CWE-400 CWE-674 CWE-835	CVE-2026-41680	2026-04-30 10:59	2026-04-24	Show	GitHub Exploit DB Packet Storm

3152	9.8	緊急 Network	Apache Software Foundation	Apache Pony Mail	Apache Software FoundationのApache Pony MailにおけるHTTP リクエストスマグリングに関する脆弱性	CWE-444 HTTP リクエストスマグリング	CVE-2026-41873	2026-04-30 10:59	2026-04-28	Show	GitHub Exploit DB Packet Storm

3153	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41908	2026-04-30 10:58	2026-04-23	Show	GitHub Exploit DB Packet Storm

3154	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41909	2026-04-30 10:58	2026-04-23	Show	GitHub Exploit DB Packet Storm

3155	8.8	重要 Network	GitHub	Enterprise Server	GitHubのEnterprise Serverにおける不正な正規表現に関する脆弱性	CWE-185 不正な正規表現	CVE-2026-4296	2026-04-30 10:58	2026-04-21	Show	GitHub Exploit DB Packet Storm

3156	8.8	重要 Network	Kubernetes	ingress-nginx	Kubernetesのingress-nginxにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-4342	2026-04-30 10:58	2026-03-19	Show	GitHub Exploit DB Packet Storm

3157	6.5	警告 Network	レッドハット libarchive	Red Hat OpenShift Container Platform Red Hat Enterprise Linux Red Hat Hardened Images libarchive	libarchive等の複数ベンダの製品における整数への不適切なビットシフトに関する脆弱性	CWE-1335 整数への不適切なビットシフト	CVE-2026-4426	2026-04-30 10:58	2026-03-19	Show	GitHub Exploit DB Packet Storm

3158	7.2	重要 Network	GitHub	Enterprise Server	GitHubのEnterprise ServerにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-4821	2026-04-30 10:58	2026-04-21	Show	GitHub Exploit DB Packet Storm

3159	7.5	重要 Network	OpenBMB	XAgent	OpenBMBのXAgentにおける複数の脆弱性	CWE-287 CWE-306	CVE-2026-4959	2026-04-30 10:58	2026-03-27	Show	GitHub Exploit DB Packet Storm

3160	5.5	警告 Local	レッドハット	KVM Windows virtio ドライバ Red Hat Enterprise Linux	レッドハットのRed Hat Enterprise Linux等の複数製品における古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2026-5164	2026-04-30 10:58	2026-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314611	9.8	CRITICAL Network	project_expense_monitoring_system_project	project_expense_monitoring_system	A vulnerability classified as critical has been found in itsourcecode Project Expense Monitoring System 1.0. This affects an unknown part of the file transferred_report.php. The manipulation of the a…	CWE-89 SQL Injection	CVE-2024-7936	2024-09-4 05:43	2024-08-20	Show	GitHub Exploit DB Packet Storm

314612	5.4	MEDIUM Network	rems	leads_manager_tool	A vulnerability has been found in SourceCodester Leads Manager Tool 1.0 and classified as problematic. This vulnerability affects unknown code of the file update-leads.php. The manipulation of the ar…	CWE-79 Cross-site Scripting	CVE-2024-7942	2024-09-4 05:39	2024-08-20	Show	GitHub Exploit DB Packet Storm

314613	-		-	-	ClickHouse v24.3.3.102 was discovered to contain a buffer overflow via the component DB::evaluateConstantExpressionImpl.	-	CVE-2024-41436	2024-09-4 05:35	2024-09-4	Show	GitHub Exploit DB Packet Storm

314614	-		-	-	A CSV injection vulnerability in Lime Survey v6.5.12 allows attackers to execute arbitrary code via uploading a crafted CSV file.	-	CVE-2024-42901	2024-09-4 05:35	2024-09-4	Show	GitHub Exploit DB Packet Storm

314615	8.8	HIGH Network	adonesevangelista	laravel_property_management_system	A vulnerability was found in itsourcecode Laravel Property Management System 1.0 and classified as critical. This issue affects the function upload of the file PropertiesController.php. The manipulat…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-7943	2024-09-4 05:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

314616	5.4	MEDIUM Network	posimyth	the_plus_addons_for_elementor	The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the video_date attribute wi…	CWE-79 Cross-site Scripting	CVE-2024-5763	2024-09-4 05:31	2024-08-20	Show	GitHub Exploit DB Packet Storm

314617	5.4	MEDIUM Network	posimyth	the_plus_addons_for_elementor	The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘res_width_value’ param…	CWE-79 Cross-site Scripting	CVE-2024-6575	2024-09-4 05:30	2024-08-20	Show	GitHub Exploit DB Packet Storm

314618	5.4	MEDIUM Network	sayandatta	wp_last_modified_info	The WP Last Modified Info plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘template’ attribute of the lmt-post-modified-info shortcode in all versions up to, and including, …	CWE-79 Cross-site Scripting	CVE-2024-6864	2024-09-4 05:22	2024-08-20	Show	GitHub Exploit DB Packet Storm

314619	6.1	MEDIUM Network	priority-software	priority	Priority - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)	CWE-79 Cross-site Scripting	CVE-2024-41697	2024-09-4 05:19	2024-08-20	Show	GitHub Exploit DB Packet Storm

314620	7.5	HIGH Network	priority-software	priority	Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor	CWE-200 Information Exposure	CVE-2024-41698	2024-09-4 05:18	2024-08-20	Show	GitHub Exploit DB Packet Storm