Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3251 7.5 重要
Network 		BMC Software Control-M Managed File Transfer BMC SoftwareのControl-M Managed File Transferにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-23782 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
3252 9.9 緊急
Network 		Doorman Doorman Doormanにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-30269 2026-04-30 12:14 2026-04-20 Show GitHub Exploit DB Packet Storm
3253 7.5 重要
Network 		PowerDNS PowerDNS Recursor
dnsdist
PowerDNS Authoritative Server 		PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33257 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3254 7.5 重要
Network 		PowerDNS PowerDNS Recursor
dnsdist
PowerDNS Authoritative Server 		PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-33260 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3255 8.8 重要
Network 		litellm litellm LiteLLMにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-40217 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
3256 7.8 重要
Local 		radare radare2 radareのradare2におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-40517 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3257 6.7 警告
Local 		The GnuPG Project Libgcrypt The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-41989 2026-04-30 12:14 2026-04-23 Show GitHub Exploit DB Packet Storm
3258 9.8 緊急
Network 		OFFIS DCMTK OFFISのDCMTKにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-5663 2026-04-30 12:14 2026-04-6 Show GitHub Exploit DB Packet Storm
3259 5.5 警告
Local 		Angry IP Scanner Angry IP Scanner Angry IP Scannerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25262 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
3260 7.8 重要
Local 		LizardSystems LanSpy LizardSystemsのLanSpyにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25265 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315321 9.8 CRITICAL
Network 		in2code powermail An issue was discovered in powermail extension through 12.3.5 for TYPO3. Several actions in the OutputController can directly be called, due to missing or insufficiently implemented access checks, re… NVD-CWE-Other
CVE-2024-45233 2024-08-31 01:33 2024-08-29 Show GitHub Exploit DB Packet Storm
315322 5.5 MEDIUM
Local 		wireshark wireshark NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file CWE-787
 Out-of-bounds Write 		CVE-2024-8250 2024-08-31 01:32 2024-08-29 Show GitHub Exploit DB Packet Storm
315323 6.1 MEDIUM
Network 		nextbricks bricksore Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Nextbricks Brickscore allows Stored XSS.This issue affects Brickscore: from n/a through 1.… CWE-79
Cross-site Scripting 		CVE-2024-43950 2024-08-31 01:20 2024-08-30 Show GitHub Exploit DB Packet Storm
315324 7.5 HIGH
Network 		frrouting
redhat 		frrouting
enterprise_linux 		An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value. NVD-CWE-noinfo
CVE-2024-44070 2024-08-31 01:19 2024-08-19 Show GitHub Exploit DB Packet Storm
315325 5.4 MEDIUM
Network 		cryoutcreations tempera Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Tempera allows Stored XSS.This issue affects Tempera: from n/a through 1.8… CWE-79
Cross-site Scripting 		CVE-2024-43951 2024-08-31 01:17 2024-08-30 Show GitHub Exploit DB Packet Storm
315326 5.4 MEDIUM
Network 		cryoutcreations esotera Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Esotera allows Stored XSS.This issue affects Esotera: from n/a through 1.2… CWE-79
Cross-site Scripting 		CVE-2024-43952 2024-08-31 01:16 2024-08-30 Show GitHub Exploit DB Packet Storm
315327 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-8064 2024-08-31 01:15 2024-08-31 Show GitHub Exploit DB Packet Storm
315328 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-7712 2024-08-31 01:15 2024-08-31 Show GitHub Exploit DB Packet Storm
315329 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-7051 2024-08-31 01:15 2024-08-31 Show GitHub Exploit DB Packet Storm
315330 6.1 MEDIUM
Network 		gianniporto intothedark Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Gianni Porto IntoTheDark allows Reflected XSS.This issue affects IntoTheDark: from n/a thr… CWE-79
Cross-site Scripting 		CVE-2024-43958 2024-08-31 01:15 2024-08-30 Show GitHub Exploit DB Packet Storm