Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3471 5.5 警告
Local 		Wireshark Wireshark Wiresharkにおける初期化されていないポインタのアクセスに関する脆弱性 CWE-824
初期化されていないポインタのアクセス 		CVE-2026-6870 2026-05-7 12:02 2026-04-30 Show GitHub Exploit DB Packet Storm
3472 5.6 警告
Network 		ollama ollama Ollamaにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-7020 2026-05-7 12:02 2026-04-26 Show GitHub Exploit DB Packet Storm
3473 5.6 警告
Network 		vLLM vLLM vLLMにおける初期化されていないリソースの使用に関する脆弱性 CWE-908
初期化されていないリソースの使用 		CVE-2026-7141 2026-05-7 12:02 2026-04-27 Show GitHub Exploit DB Packet Storm
3474 7.5 重要
Network 		FreeBSD FreeBSD FreeBSDにおける複数の脆弱性 CWE-674
CWE-791
CVE-2026-7164 2026-05-7 12:01 2026-04-30 Show GitHub Exploit DB Packet Storm
3475 7.8 重要
Local 		FreeBSD FreeBSD FreeBSDにおける演算子の優先順位についての論理エラーに関する脆弱性 CWE-783
演算子の優先順位についての論理エラー 		CVE-2026-7270 2026-05-7 12:01 2026-04-30 Show GitHub Exploit DB Packet Storm
3476 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-7320 2026-05-7 12:01 2026-04-28 Show GitHub Exploit DB Packet Storm
3477 9.6 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-7321 2026-05-7 12:01 2026-04-28 Show GitHub Exploit DB Packet Storm
3478 7.3 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-119
CWE-416
CVE-2026-7322 2026-05-7 12:01 2026-04-28 Show GitHub Exploit DB Packet Storm
3479 7.3 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-7324 2026-05-7 12:01 2026-04-28 Show GitHub Exploit DB Packet Storm
3480 7.5 重要
Network 		Wireshark Wireshark Wiresharkにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-7375 2026-05-7 12:01 2026-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
316451 5.3 MEDIUM
Network 		jflow_project jflow A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic. This issue affects the function AttachmentUploadController of the file /WF/Ath/EntityMutliFile_Load.… NVD-CWE-Other
CVE-2024-9003 2024-09-26 02:18 2024-09-20 Show GitHub Exploit DB Packet Storm
316452 7.5 HIGH
Network 		envoyproxy envoy Envoy is a cloud-native high-performance edge/middle/service proxy. Envoy's 1.31 is using `oghttp` as the default HTTP/2 codec, and there are potential bugs around stream management in the codec. To … NVD-CWE-noinfo
CVE-2024-45807 2024-09-26 02:12 2024-09-20 Show GitHub Exploit DB Packet Storm
316453 5.4 MEDIUM
Network 		cryoutcreations kahuna Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Kahuna allows Stored XSS.This issue affects Kahuna: from n/a through 1.7.0. CWE-79
Cross-site Scripting 		CVE-2024-43994 2024-09-26 02:09 2024-09-18 Show GitHub Exploit DB Packet Storm
316454 7.5 HIGH
Network 		trianglemicroworks
siemens 		iec_61850_source_code_library
sicam_a8000_firmware
sicam_scc_firmware
sicam_egs_firmware
sicam_s8000
sitipe_at 		Triangle Microworks TMW IEC 61850 Client source code libraries before 12.2.0 lack a buffer size check when processing received messages. The resulting buffer overflow can cause a crash, resulting in … CWE-120
Classic Buffer Overflow 		CVE-2024-34057 2024-09-26 02:08 2024-09-19 Show GitHub Exploit DB Packet Storm
316455 8.8 HIGH
Network 		frogcms_project frogcms FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/plugin/file_manager/delete/123 CWE-352
 Origin Validation Error 		CVE-2024-46086 2024-09-26 02:08 2024-09-19 Show GitHub Exploit DB Packet Storm
316456 7.5 HIGH
Network 		quinn_project quinn Quinn is a pure-Rust, async-compatible implementation of the IETF QUIC transport protocol. As of quinn-proto 0.11, it is possible for a server to `accept()`, `retry()`, `refuse()`, or `ignore()` an `… CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2024-45311 2024-09-26 02:03 2024-09-3 Show GitHub Exploit DB Packet Storm
316457 7.5 HIGH
Network 		linlinjava litemall A SQL injection vulnerability in linlinjava litemall 1.8.0 allows a remote attacker to obtain sensitive information via the goodsId, goodsSn, and name parameters in AdminGoodscontroller.java. CWE-89
SQL Injection 		CVE-2024-46382 2024-09-26 01:56 2024-09-19 Show GitHub Exploit DB Packet Storm
316458 8.8 HIGH
Network 		frogcms_project frogcms FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/?/user/add CWE-352
 Origin Validation Error 		CVE-2024-46394 2024-09-26 01:55 2024-09-19 Show GitHub Exploit DB Packet Storm
316459 7.3 HIGH
Local 		pixlone logiops logiops through 0.3.4, in its default configuration, allows any unprivileged user to configure its logid daemon via an unrestricted D-Bus service, including setting malicious keyboard macros. This al… NVD-CWE-noinfo
CVE-2024-45752 2024-09-26 01:54 2024-09-20 Show GitHub Exploit DB Packet Storm
316460 5.4 MEDIUM
Network 		workdo crmgo_saas A vulnerability, which was classified as problematic, has been found in CodeCanyon CRMGo SaaS up to 7.2. This issue affects some unknown processing of the file /project/task/{task_id}/show. The manip… CWE-79
Cross-site Scripting 		CVE-2024-9031 2024-09-26 01:52 2024-09-20 Show GitHub Exploit DB Packet Storm