Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3181	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows WAN ARP Driver Elevation of Privilege Vulnerability	CWE-416 解放済みメモリの使用	CVE-2026-40408	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

3182	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows SMB クライアントの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40410	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

3183	9.6	緊急 Network	TanStack	tanstack/react-start-rsc @tanstack/router-devtools-core @tanstack/router-utils @tanstack/react-router-devtools @tanstack/valibot-adapter @tanstack/zod-adapter @tanstack/vue-start-se…	TanStackの@tanstack/arktype-adapter等の複数製品における埋め込まれた悪意のあるコードに関する脆弱性	CWE-506 埋め込まれた悪意のあるコード	CVE-2026-45321	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

3184	6.5	警告 Network	IBM HCL Technologies Limited	BigFix WebUI Reports BigFix WebUI Common BigFix WebUI API BigFix WebUI Framework BigFix WebUI Profile Management BigFix WebU…	HCL Technologies LimitedのBigFix WebUI API等の複数製品における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2025-15633	2026-05-18 12:06	2026-05-9	Show	GitHub Exploit DB Packet Storm

3185	4.3	警告 Network	IBM HCL Technologies Limited	BigFix WebUI Reports BigFix WebUI Common BigFix WebUI API BigFix WebUI Framework BigFix WebUI Profile Management BigFix WebU…	HCL Technologies LimitedのBigFix WebUI API等の複数製品における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-15634	2026-05-18 12:06	2026-05-9	Show	GitHub Exploit DB Packet Storm

3186	4.9	警告 Network	Buffalo Americas, Inc.	TeraStation NAS TS5400R Firmware	Buffalo Americas, Inc.のTeraStation NAS TS5400R Firmwareにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2026-29516	2026-05-18 12:06	2026-03-16	Show	GitHub Exploit DB Packet Storm

3187	6.5	警告 Network	Mem0	mem0	Mem0のmem0における複数の脆弱性	CWE-306 CWE-862	CVE-2026-31241	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

3188	9.1	緊急 Network	Mem0	mem0	Mem0のmem0における複数の脆弱性	CWE-306 CWE-862	CVE-2026-31242	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

3189	6.5	警告 Network	Mem0	mem0	Mem0のmem0における複数の脆弱性	CWE-306 CWE-862	CVE-2026-31243	2026-05-18 12:05	2026-05-12	Show	GitHub Exploit DB Packet Storm

3190	6.5	警告 Network	Mem0	mem0	Mem0のmem0における複数の脆弱性	CWE-306 CWE-862	CVE-2026-31244	2026-05-18 12:05	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
318411	7.3	HIGH Network	webliberty	simple_spoiler	The The Simple Spoiler plugin for WordPress is vulnerable to arbitrary shortcode execution in versions 1.2 to 1.3. This is due to the plugin adding the filter add_filter('comment_text', 'do_shortcode…	CWE-94 Code Injection	CVE-2024-8479	2024-09-28 01:12	2024-09-14	Show	GitHub Exploit DB Packet Storm

318412	9.8	CRITICAL Network	codezips	online_shopping_portal	A vulnerability classified as problematic was found in Codezips Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file insert-product.php. The manipulation…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-9038	2024-09-28 01:11	2024-09-21	Show	GitHub Exploit DB Packet Storm

318413	7.2	HIGH Network	softaculous	backuply	The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to SQL Injection via the 'options' parameter passed to the backuply_wp_clone_sql() function in all versions up to,…	CWE-89 SQL Injection	CVE-2024-8669	2024-09-28 01:08	2024-09-14	Show	GitHub Exploit DB Packet Storm

318414	9.8	CRITICAL Network	mayurik	best_house_rental_management_system	A vulnerability, which was classified as critical, has been found in SourceCodester Best House Rental Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php…	CWE-89 SQL Injection	CVE-2024-9039	2024-09-28 00:58	2024-09-21	Show	GitHub Exploit DB Packet Storm

318415	8.8	HIGH Network	mayurik	best_house_rental_management_system	A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=update_accoun…	CWE-89 SQL Injection	CVE-2024-9041	2024-09-28 00:57	2024-09-21	Show	GitHub Exploit DB Packet Storm

318416	5.4	MEDIUM Network	mayurik	best_house_rental_management_system	A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /ajax.ph…	CWE-79 Cross-site Scripting	CVE-2024-9033	2024-09-28 00:56	2024-09-21	Show	GitHub Exploit DB Packet Storm

318417	6.1	MEDIUM Network	xootix	waitlist_woocommerce	The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all…	CWE-79 Cross-site Scripting	CVE-2024-8724	2024-09-28 00:56	2024-09-14	Show	GitHub Exploit DB Packet Storm

318418	9.8	CRITICAL Network	code-projects	blood_bank_system	A vulnerability classified as critical was found in code-projects Blood Bank System 1.0. This vulnerability affects unknown code of the file /admin/blood/update/o-.php. The manipulation of the argume…	CWE-89 SQL Injection	CVE-2024-9094	2024-09-28 00:54	2024-09-23	Show	GitHub Exploit DB Packet Storm

318419	5.5	MEDIUM Local	code-projects	blood_bank_management_system	A vulnerability, which was classified as problematic, was found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the component Password Handler. The manipulation lea…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-9040	2024-09-28 00:53	2024-09-21	Show	GitHub Exploit DB Packet Storm

318420	5.4	MEDIUM Network	wpgogo	custom_field_template	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hiroaki Miyashita Custom Field Template allows Stored XSS.This issue affects Custom Field …	CWE-79 Cross-site Scripting	CVE-2024-44062	2024-09-28 00:49	2024-09-15	Show	GitHub Exploit DB Packet Storm