Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3631	7.5	重要 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS Recursorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33258	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

3632	5	警告 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS Recursorにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33259	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

3633	5.9	警告 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS Recursorにおける完全性チェックの欠如に関する脆弱性	CWE-353 完全性チェックの欠如	CVE-2026-33261	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

3634	5.9	警告 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS RecursorにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-33262	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

3635	8.7	重要 Local	Linaro	OP-TEE Trusted OS	LinaroのOP-TEE Trusted OSにおける複数の脆弱性	CWE-125 CWE-787	CVE-2026-33317	2026-04-30 12:30	2026-04-24	Show	GitHub Exploit DB Packet Storm

3636	8.8	重要 Network	Actual Budget	Actual	Actual BudgetのActualにおける複数の脆弱性	CWE-284 CWE-862	CVE-2026-33318	2026-04-30 12:30	2026-04-24	Show	GitHub Exploit DB Packet Storm

3637	7.5	重要 Network	FirebirdSQL	Firebird	FirebirdSQLのFirebirdにおける複数の脆弱性	CWE-120 CWE-502	CVE-2026-33337	2026-04-30 12:30	2026-04-17	Show	GitHub Exploit DB Packet Storm

3638	4.9	警告 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS RecursorにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-33600	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

3639	4.9	警告 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS RecursorにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-33601	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

3640	9.1	緊急 Network	EspoCRM	EspoCRM	EspoCRMにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-33656	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
711	5.5	MEDIUM Local	-	-	An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Tahoe 26. An app may be able to cause unexpected system termination. New	CWE-125 Out-of-bounds Read	CVE-2025-46280	2026-05-27 23:51	2026-05-27	Show	GitHub Exploit DB Packet Storm

712	7.0	HIGH Local	-	-	A race condition was addressed with additional validation. This issue is fixed in macOS Sequoia 15.7, macOS Tahoe 26. An app may be able to gain root privileges. New	CWE-362 Race Condition	CVE-2025-46284	2026-05-27 23:51	2026-05-27	Show	GitHub Exploit DB Packet Storm

713	5.5	MEDIUM Local	-	-	A logic issue was addressed with improved restrictions. This issue is fixed in macOS Tahoe 26. An app may be able to access sensitive user data. New	CWE-284 Improper Access Control	CVE-2025-46307	2026-05-27 23:51	2026-05-27	Show	GitHub Exploit DB Packet Storm

714	7.1	HIGH Network	-	-	Missing Authorization vulnerability in AA-Team Woocommerce Envato Affiliates allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Woocommerce Envato Affiliates: from n… New	CWE-862 Missing Authorization	CVE-2025-14361	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

715	7.3	HIGH Network	-	-	A vulnerability was determined in JeecgBoot up to 3.9.1. The affected element is the function LoginController.selectDepart of the file /sys/selectDepart. This manipulation causes improper access cont… New	CWE-266 CWE-284 Incorrect Privilege Assignment Improper Access Control	CVE-2026-9580	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

716	4.3	MEDIUM Network	-	-	A security flaw has been discovered in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This affects an unknown function. Performing a manipulation results in cross-site … New	CWE-352 CWE-862 Origin Validation Error Missing Authorization	CVE-2026-9582	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

717	7.3	HIGH Network	-	-	A security vulnerability has been detected in code-projects Project Management System 1.0. Affected is an unknown function of the file chk.php of the component Login. The manipulation leads to sql in… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9584	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

718	6.5	MEDIUM Network	-	-	A security vulnerability has been detected in SourceCodester eDoc Doctor Appointment System 1.0. This affects an unknown part of the file /admin/delete-session.php. The manipulation of the argument I… New	CWE-862 CWE-863 Missing Authorization Incorrect Authorization	CVE-2026-9603	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

719	4.3	MEDIUM Network	-	-	A vulnerability was detected in JeecgBoot up to 3.9.1. This vulnerability affects unknown code of the component AiragModelController. The manipulation of the argument list/queryById results in improp… New	CWE-266 CWE-284 Incorrect Privilege Assignment Improper Access Control	CVE-2026-9604	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

720	7.3	HIGH Network	-	-	A vulnerability has been found in itsourcecode Courier Management System 1.0. Impacted is an unknown function of the file /manage_user.php. Such manipulation of the argument ID leads to sql injection… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9606	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm