Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3331 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-35371 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3332 5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2026-35372 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3333 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性 CWE-176
Unicode エンコーディングの不適切な処理 		CVE-2026-35373 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3334 6.3 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-35374 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3335 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性 CWE-176
Unicode エンコーディングの不適切な処理 		CVE-2026-35375 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3336 5.8 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-35376 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3337 8.8 重要
Network 		DBitNet N300 T1 Pro ファームウェア DBitNetのN300 T1 Pro ファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-36956 2026-05-7 11:26 2026-04-30 Show GitHub Exploit DB Packet Storm
3338 7.5 重要
Network 		DBitNet N300 T1 Pro ファームウェア DBitNetのN300 T1 Pro ファームウェアにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-36957 2026-05-7 11:26 2026-04-30 Show GitHub Exploit DB Packet Storm
3339 4.4 警告
Local 		Absolute Software secure access Absolute Softwareのsecure accessにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-40949 2026-05-7 11:26 2026-04-30 Show GitHub Exploit DB Packet Storm
3340 6.5 警告
Network 		Absolute Software secure access Absolute Softwareのsecure accessにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-40950 2026-05-7 11:26 2026-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317491 6.1 MEDIUM
Network 		tpmecms tpmecms TpMeCMS 1.3.3.2 is vulnerable to Cross Site Scripting (XSS) in /h.php/page?ref=addtabs via the "Title," "Images," and "Content" fields. CWE-79
Cross-site Scripting 		CVE-2024-44684 2024-09-5 01:42 2024-08-31 Show GitHub Exploit DB Packet Storm
317492 6.1 MEDIUM
Network 		seacms seacms Seacms v13 is vulnerable to Cross Site Scripting (XSS) via admin-video.php. CWE-79
Cross-site Scripting 		CVE-2024-44683 2024-09-5 01:41 2024-08-31 Show GitHub Exploit DB Packet Storm
317493 5.5 MEDIUM
Local 		openatom openharmony in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read. CWE-125
Out-of-bounds Read 		CVE-2024-39612 2024-09-5 01:38 2024-09-2 Show GitHub Exploit DB Packet Storm
317494 6.1 MEDIUM
Network 		shopxo shopxo ShopXO 6.2 is vulnerable to Cross Site Scripting (XSS) in the backend that allows attackers to execute code by changing POST parameters. CWE-79
Cross-site Scripting 		CVE-2024-44682 2024-09-5 01:38 2024-08-31 Show GitHub Exploit DB Packet Storm
317495 9.8 CRITICAL
Network 		oretnom23 computer_laboratory_management_system A vulnerability classified as critical has been found in SourceCodester Computer Laboratory Management System 1.0. Affected is the function update_settings_info of the file /classes/SystemSettings.ph… CWE-89
SQL Injection 		CVE-2024-8346 2024-09-5 01:37 2024-08-31 Show GitHub Exploit DB Packet Storm
317496 9.8 CRITICAL
Network 		oretnom23 music_gallery_site A vulnerability was found in SourceCodester Music Gallery Site 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /classes/Users.php?f=delete. The manipu… CWE-89
SQL Injection 		CVE-2024-8345 2024-09-5 01:35 2024-08-31 Show GitHub Exploit DB Packet Storm
317497 9.8 CRITICAL
Network 		oretnom23 sentiment_based_movie_rating_system A vulnerability, which was classified as critical, was found in SourceCodester Sentiment Based Movie Rating System 1.0. Affected is an unknown function of the file /classes/Users.php?f=save_client of… CWE-89
SQL Injection 		CVE-2024-8343 2024-09-5 01:34 2024-08-31 Show GitHub Exploit DB Packet Storm
317498 8.8 HIGH
Network 		nelzkie15 petshop_management_system A vulnerability, which was classified as critical, has been found in SourceCodester Petshop Management System 1.0. This issue affects some unknown processing of the file /controllers/add_client.php. … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-8342 2024-09-5 01:34 2024-08-31 Show GitHub Exploit DB Packet Storm
317499 7.5 HIGH
Network 		openatom openharmony in OpenHarmony v4.1.0 and prior versions allow a remote attacker cause information leak through out-of-bounds Read. CWE-125
Out-of-bounds Read 		CVE-2024-39775 2024-09-5 01:34 2024-09-2 Show GitHub Exploit DB Packet Storm
317500 7.8 HIGH
Local 		openatom openharmony in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free. CWE-416
 Use After Free 		CVE-2024-41157 2024-09-5 01:30 2024-09-2 Show GitHub Exploit DB Packet Storm