Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3221 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-43504 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
3222 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-43505 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
3223 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43506 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
3224 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-43507 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
3225 7.5 重要
Network 		Debian
GStreamer
レッドハット		 GStreamer
Debian GNU/Linux
Red Hat Enterprise Linux
GStreamer Good Plug-ins 		Debian等の複数ベンダの製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-1940 2026-05-7 11:31 2026-03-23 Show GitHub Exploit DB Packet Storm
3226 9.8 緊急
Network 		OPPO ColorOS Assistant OPPOのColorOS Assistantにおける複数の脆弱性 CWE-22
CWE-23
CVE-2026-22070 2026-05-7 11:31 2026-04-30 Show GitHub Exploit DB Packet Storm
3227 8.8 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42364 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3228 7.5 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における観測された状態からの推測に関する脆弱性 CWE-341
観測された状態からの推測 		CVE-2026-42365 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3229 6.1 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42366 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3230 6.5 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-42367 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317501 9.8 CRITICAL
Network 		project_expense_monitoring_system_project project_expense_monitoring_system A vulnerability was found in itsourcecode Project Expense Monitoring System 1.0. It has been classified as critical. Affected is an unknown function of the file login1.php of the component Backend Lo… CWE-89
SQL Injection 		CVE-2024-7933 2024-08-24 04:53 2024-08-20 Show GitHub Exploit DB Packet Storm
317502 9.8 CRITICAL
Network 		project_expense_monitoring_system_project project_expense_monitoring_system A vulnerability was found in itsourcecode Project Expense Monitoring System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file print.php. The manipul… CWE-89
SQL Injection 		CVE-2024-7935 2024-08-24 04:52 2024-08-20 Show GitHub Exploit DB Packet Storm
317503 - - - Cross Site Scripting vulnerability in AcuToWeb server v.10.5.0.7577C8b allows a remote attacker to execute arbitrary code via the index.php component. - CVE-2024-42852 2024-08-24 04:35 2024-08-24 Show GitHub Exploit DB Packet Storm
317504 - - - Tenda FH1206 V1.2.0.8(8155)_EN contains a Buffer Overflow vulnerability via the function fromSetIpBind. - CVE-2024-44386 2024-08-24 04:35 2024-08-24 Show GitHub Exploit DB Packet Storm
317505 7.5 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.8 could allow an attacker with access to the network to conduct spoofing attacks. An attacker could exploit this vulnerability using … NVD-CWE-Other
CVE-2023-50314 2024-08-24 04:20 2024-08-15 Show GitHub Exploit DB Packet Storm
317506 6.5 MEDIUM
Network 		ibm db2 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation.… NVD-CWE-Other
CVE-2024-35152 2024-08-24 03:57 2024-08-15 Show GitHub Exploit DB Packet Storm
317507 6.5 MEDIUM
Network 		ibm db2 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory al… NVD-CWE-Other
CVE-2024-37529 2024-08-24 03:55 2024-08-15 Show GitHub Exploit DB Packet Storm
317508 5.5 MEDIUM
Local 		intel data_center_gpu_max_1100_firmware
data_center_gpu_max_1550_firmware 		Improper conditions check in some Intel(R) Data Center GPU Max Series 1100 and 1550 products may allow a privileged user to potentially enable denial of service via local access. NVD-CWE-noinfo
CVE-2024-24580 2024-08-24 03:51 2024-08-14 Show GitHub Exploit DB Packet Storm
317509 - - - The porte_plume plugin used by SPIP before 4.30-alpha2, 4.2.13, and 4.1.16 is vulnerable to an arbitrary code execution vulnerability. A remote and unauthenticated attacker can execute arbitrary PHP … - CVE-2024-7954 2024-08-24 03:46 2024-08-24 Show GitHub Exploit DB Packet Storm
317510 - - - URL Redirection to Untrusted Site ('Open Redirect') vulnerability in OpenText™ Network Node Manager i (NNMi) allows URL Redirector Abuse.This issue affects Network Node Manager i (NNMi): 2022.11, 202… - CVE-2024-7428 2024-08-24 03:46 2024-08-24 Show GitHub Exploit DB Packet Storm