Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3251	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-31780	2026-05-13 10:25	2026-05-1	Show	GitHub Exploit DB Packet Storm

3252	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31781	2026-05-13 10:25	2026-05-1	Show	GitHub Exploit DB Packet Storm

3253	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-31782	2026-05-13 10:25	2026-05-1	Show	GitHub Exploit DB Packet Storm

3254	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31783	2026-05-13 10:25	2026-05-1	Show	GitHub Exploit DB Packet Storm

3255	5.4	警告 Network	Daniel Garcia	Vaultwarden	Daniel GarciaのVaultwardenにおけるデータの信頼性についての不十分な検証に関する脆弱性	CWE-345 データの信頼性についての不十分な検証	CVE-2026-31835	2026-05-13 10:25	2026-05-5	Show	GitHub Exploit DB Packet Storm

3256	6.5	警告 Network	FRRouting Project	FRRouting	FRRouting ProjectのFRRoutingにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-37458	2026-05-13 10:25	2026-05-4	Show	GitHub Exploit DB Packet Storm

3257	7.5	重要 Network	osrg	GoBGP	osrgのGoBGPにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-37461	2026-05-13 10:25	2026-05-4	Show	GitHub Exploit DB Packet Storm

3258	3.7	低 Network	GNU Project レッドハット	GnuTLS Red Hat Hardened Images Red Hat OpenShift Container Platform Red Hat Enterprise Linux	GNU Project等の複数ベンダの製品における動作順序：早期検証に関する脆弱性	CWE-179 不適切な動作順序：早期検証	CVE-2026-3832	2026-05-13 10:25	2026-04-30	Show	GitHub Exploit DB Packet Storm

3259	5.4	警告 Network	Weblate	Weblate	Weblateにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-41519	2026-05-13 10:25	2026-05-7	Show	GitHub Exploit DB Packet Storm

3260	7.1	重要 Network	monetr	monetr	monetrにおける複数の脆弱性	CWE-209 CWE-770 CWE-918 CWE-918	CVE-2026-41644	2026-05-13 10:25	2026-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312611	6.1	MEDIUM Network	-	-	The WP-Strava plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.12.1 due to insufficient input sanitization and output escap…	CWE-80 Basic XSS	CVE-2024-10038	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

312612	8.8	HIGH Network	meowapps	photo_engine	Missing Authorization vulnerability in Jordy Meow Photo Engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Engine: from n/a through 6.4.0.	CWE-862 Missing Authorization	CVE-2024-43332	2024-11-13 10:25	2024-11-2	Show	GitHub Exploit DB Packet Storm

312613	8.8	HIGH Network	gabelivan	asset_cleanup	Missing Authorization vulnerability in Gabe Livan Asset CleanUp: Page Speed Booster allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Asset CleanUp: Page Spee…	CWE-862 Missing Authorization	CVE-2024-43314	2024-11-13 10:25	2024-11-2	Show	GitHub Exploit DB Packet Storm

312614	9.8	CRITICAL Network	arraytics	wp_timetics	Missing Authorization vulnerability in Arraytics Timetics allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Timetics: from n/a through 1.0.23.	CWE-862 Missing Authorization	CVE-2024-43923	2024-11-13 10:24	2024-11-2	Show	GitHub Exploit DB Packet Storm

312615	8.8	HIGH Network	beardev	joomsport	Missing Authorization vulnerability in BearDev JoomSport allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JoomSport: from n/a through 5.3.0.	CWE-862 Missing Authorization	CVE-2024-43355	2024-11-13 10:24	2024-11-2	Show	GitHub Exploit DB Packet Storm

312616	8.8	HIGH Network	etoilewebdesign	order_tracking	Missing Authorization vulnerability in Etoile Web Design Order Tracking allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Order Tracking: from n/a through 3.3.12.	CWE-862 Missing Authorization	CVE-2024-43343	2024-11-13 10:24	2024-11-2	Show	GitHub Exploit DB Packet Storm

312617	9.8	CRITICAL Network	cozythemes	hello_agency	Missing Authorization vulnerability in CozyThemes Hello Agency allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Hello Agency: from n/a through 1.0.5.	CWE-862 Missing Authorization	CVE-2024-43341	2024-11-13 10:24	2024-11-2	Show	GitHub Exploit DB Packet Storm

312618	8.8	HIGH Network	enviragallery	envira_gallery	Missing Authorization vulnerability in Envira Gallery Team Envira Photo Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Envira Photo Gallery: from n…	CWE-862 Missing Authorization	CVE-2024-43925	2024-11-13 10:23	2024-11-2	Show	GitHub Exploit DB Packet Storm

312619	8.8	HIGH Network	backupbliss	clone	Missing Authorization vulnerability in Migrate Clone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Clone: from n/a through 2.4.5.	CWE-862 Missing Authorization	CVE-2024-43298	2024-11-13 10:19	2024-11-2	Show	GitHub Exploit DB Packet Storm

312620	8.8	HIGH Network	backupbliss	clone	Missing Authorization vulnerability in Migrate Clone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Clone: from n/a through 2.4.5.	CWE-862 Missing Authorization	CVE-2024-43297	2024-11-13 10:19	2024-11-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed