Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3421 9.8 緊急
Network 		Apache Software Foundation Apache CXF Apache Software FoundationのApache CXFにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-44930 2026-05-28 14:40 2026-05-22 Show GitHub Exploit DB Packet Storm
3422 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-46300 2026-05-28 14:40 2026-05-23 Show GitHub Exploit DB Packet Storm
3423 5.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-4635 2026-05-28 14:39 2026-05-22 Show GitHub Exploit DB Packet Storm
3424 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性 CWE-1287
指定されたタイプの入力に対する不適切な検証 		CVE-2026-4646 2026-05-28 14:39 2026-05-22 Show GitHub Exploit DB Packet Storm
3425 8.1 重要
Network 		Ruby-lang.org Ruby Ruby-lang.orgのRubyにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-46727 2026-05-28 14:39 2026-05-22 Show GitHub Exploit DB Packet Storm
3426 8.8 重要
Network 		litellm litellm LiteLLMにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-47101 2026-05-28 14:39 2026-05-21 Show GitHub Exploit DB Packet Storm
3427 8.8 重要
Network 		litellm litellm LiteLLMにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-47102 2026-05-28 14:39 2026-05-21 Show GitHub Exploit DB Packet Storm
3428 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-48898 2026-05-28 14:39 2026-05-26 Show GitHub Exploit DB Packet Storm
3429 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-48899 2026-05-28 14:39 2026-05-26 Show GitHub Exploit DB Packet Storm
3430 4.3 警告
Network 		Joomla! Joomla! Joomla!におけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-48900 2026-05-28 14:39 2026-05-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319121 5.4 MEDIUM
Network 		rems online_timesheet_app A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /endpoint/add-timesheet.php of the compone… CWE-79
Cross-site Scripting 		CVE-2024-9320 2024-10-1 22:28 2024-09-29 Show GitHub Exploit DB Packet Storm
319122 2.9 LOW
Physics 		opensc_project
redhat 		opensc
enterprise_linux 		A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs during the card enrollment process using… CWE-787
 Out-of-bounds Write 		CVE-2024-8443 2024-10-1 22:15 2024-09-10 Show GitHub Exploit DB Packet Storm
319123 5.4 MEDIUM
Network 		mayurik free_and_open_source_inventory_management_system A vulnerability was found in SourceCodester Inventory Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /app/action/ad… CWE-79
Cross-site Scripting 		CVE-2024-9323 2024-10-1 21:55 2024-09-29 Show GitHub Exploit DB Packet Storm
319124 9.8 CRITICAL
Network 		endress echo_curve_viewer
fieldcare_sfe500_package
field_xpert_smt79_firmware
field_xpert_smt77_firmware
field_xpert_smt70_firmware
field_xpert_smt50_firmware 		An unauthenticated remote attacker can run malicious c# code included in curve files and execute commands in the users context. CWE-94
Code Injection 		CVE-2024-6596 2024-10-1 21:26 2024-09-10 Show GitHub Exploit DB Packet Storm
319125 9.8 CRITICAL
Network 		openfga openfga OpenFGA is an authorization/permission engine. OpenFGA v1.5.7 and v1.5.8 are vulnerable to authorization bypass when calling Check API with a model that uses `but not` and `from` expressions and a us… CWE-863
 Incorrect Authorization 		CVE-2024-42473 2024-10-1 21:21 2024-08-12 Show GitHub Exploit DB Packet Storm
319126 9.8 CRITICAL
Network 		mayurik advocate_office_management_system A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /control/forgot_pass.php. The manipu… CWE-89
SQL Injection 		CVE-2024-9296 2024-10-1 20:36 2024-09-28 Show GitHub Exploit DB Packet Storm
319127 9.8 CRITICAL
Network 		mayurik advocate_office_management_system A vulnerability was found in SourceCodester Advocate Office Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /control/login.php. The manipulati… CWE-89
SQL Injection 		CVE-2024-9295 2024-10-1 20:36 2024-09-28 Show GitHub Exploit DB Packet Storm
319128 9.8 CRITICAL
Network 		mayurik advocate_office_management_system A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /control/edit_client.php. The … CWE-89
SQL Injection 		CVE-2024-9328 2024-10-1 20:34 2024-09-30 Show GitHub Exploit DB Packet Storm
319129 5.4 MEDIUM
Network 		mattermost mattermost_server Mattermost versions 9.11.x <= 9.11.0, 9.10.x <= 9.10.1, 9.9.x <= 9.9.2 and 9.5.x <= 9.5.8 fail to properly authorize requests when viewing archived channels is disabled, which allows an attacker to r… NVD-CWE-noinfo
CVE-2024-42406 2024-10-1 20:15 2024-09-26 Show GitHub Exploit DB Packet Storm
319130 4.4 MEDIUM
Local 		codesys oscat_basic_library Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service. CWE-125
Out-of-bounds Read 		CVE-2024-6876 2024-10-1 16:15 2024-09-11 Show GitHub Exploit DB Packet Storm