Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3261	9.1	緊急 Network	axios project	axios	axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-42264	2026-05-15 11:00	2026-05-8	Show	GitHub Exploit DB Packet Storm

3262	5.7	警告 Network	Kimai project	kimai	Kimai projectのKimaiにおけるCSV ファイル内の数式要素の中和に関する脆弱性	CWE-1236 CSV ファイル内の数式要素の不適切な中和	CVE-2026-42267	2026-05-15 11:00	2026-05-8	Show	GitHub Exploit DB Packet Storm

3263	7.5	重要 Network	The Go Project	Go	The Go ProjectのGoにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-42499	2026-05-15 11:00	2026-05-7	Show	GitHub Exploit DB Packet Storm

3264	7.5	重要 Network	The Go Project	Go	The Go ProjectのGoにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-42501	2026-05-15 11:00	2026-05-7	Show	GitHub Exploit DB Packet Storm

3265	9.1	緊急 Network	Grav CMS	grav	Grav CMSのgravにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-42608	2026-05-15 11:00	2026-05-11	Show	GitHub Exploit DB Packet Storm

3266	5.4	警告 Network	Open edX	openedx	Open edXのopenedxにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42857	2026-05-15 11:00	2026-05-11	Show	GitHub Exploit DB Packet Storm

3267	9.9	緊急 Network	Open edX	openedx	Open edXのopenedxにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42858	2026-05-15 11:00	2026-05-11	Show	GitHub Exploit DB Packet Storm

3268	7.5	重要 Network	マイクロソフト	Microsoft Outlook	Microsoft Outlook for iOS の改ざんの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-42893	2026-05-15 11:00	2026-05-12	Show	GitHub Exploit DB Packet Storm

3269	7.5	重要 Network	マイクロソフト	.NET	ASP.NET Core のサービス拒否の脆弱性	CWE-835 無限ループ	CVE-2026-42899	2026-05-15 11:00	2026-05-12	Show	GitHub Exploit DB Packet Storm

3270	8.6	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-43139	2026-05-15 11:00	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312501	5.4	MEDIUM Network	librenms	librenms	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Manage User Access" page allows authenticated users to inject arb…	CWE-79 Cross-site Scripting	CVE-2024-49759	2024-11-20 23:40	2024-11-16	Show	GitHub Exploit DB Packet Storm

312502	4.8	MEDIUM Network	librenms	librenms	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. User with Admin role can add Notes to a device, the application did not properly sanitize the user input, when the ExampleP…	CWE-79 Cross-site Scripting	CVE-2024-49758	2024-11-20 23:40	2024-11-16	Show	GitHub Exploit DB Packet Storm

312503	5.4	MEDIUM Network	librenms	librenms	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Services" tab of the Device page allows authenticated users to in…	CWE-79 Cross-site Scripting	CVE-2024-52526	2024-11-20 23:39	2024-11-16	Show	GitHub Exploit DB Packet Storm

312504	4.8	MEDIUM Network	librenms	librenms	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. User with Admin role can edit the Display Name of a device, the application did not properly sanitize the user input in the…	CWE-79 Cross-site Scripting	CVE-2024-50355	2024-11-20 23:39	2024-11-16	Show	GitHub Exploit DB Packet Storm

312505	5.4	MEDIUM Network	librenms	librenms	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Port Settings" page allows authenticated users to inject arbitrar…	CWE-79 Cross-site Scripting	CVE-2024-50350	2024-11-20 23:39	2024-11-16	Show	GitHub Exploit DB Packet Storm

312506	7.8	HIGH Local	qualcomm	ar8035_firmware csra6620_firmware csra6640_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform…	Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.	CWE-416 Use After Free	CVE-2024-33028	2024-11-20 23:39	2024-08-6	Show	GitHub Exploit DB Packet Storm

312507	7.8	HIGH Local	qualcomm	315_5g_iot_modem_firmware aqt1000_firmware ar8031_firmware c-v2x_9150_firmware csra6620_firmware csra6640_firmware fastconnect_6200_firmware qca6174a_firmware qca6310_firmware…	Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.	NVD-CWE-Other	CVE-2024-33027	2024-11-20 23:38	2024-08-6	Show	GitHub Exploit DB Packet Storm

312508	5.4	MEDIUM Network	librenms	librenms	LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Services" section of the Device Overview page allows authenticate…	CWE-79 Cross-site Scripting	CVE-2024-50352	2024-11-20 23:37	2024-11-16	Show	GitHub Exploit DB Packet Storm

312509	7.5	HIGH Network	anisha	farmacia	A vulnerability, which was classified as critical, has been found in code-projects Farmacia 1.0. This issue affects some unknown processing of the file /editar-produto.php. The manipulation of the ar…	CWE-89 SQL Injection	CVE-2024-11245	2024-11-20 23:36	2024-11-16	Show	GitHub Exploit DB Packet Storm

312510	9.8	CRITICAL Network	anisha	farmacia	A vulnerability classified as critical was found in code-projects Farmacia 1.0. This vulnerability affects unknown code of the file /editar-cliente.php. The manipulation of the argument id leads to s…	CWE-89 SQL Injection	CVE-2024-11244	2024-11-20 23:36	2024-11-16	Show	GitHub Exploit DB Packet Storm