Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
361 7.8 重要
Local 		Elixir-ecto Postgrex Elixir-ectoのPostgrexにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-32687 2026-05-25 10:25 2026-05-12 Show GitHub Exploit DB Packet Storm
362 7.5 重要
Network 		マイクロソフト go-ntlmssp マイクロソフトのgo-ntlmsspにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-32952 2026-05-25 10:25 2026-04-24 Show GitHub Exploit DB Packet Storm
363 7.5 重要
Network 		Mtrudel Bandit MtrudelのBanditにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-39803 2026-05-25 10:25 2026-05-13 Show GitHub Exploit DB Packet Storm
364 7.5 重要
Network 		Mtrudel Bandit MtrudelのBanditにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-39806 2026-05-25 10:25 2026-05-13 Show GitHub Exploit DB Packet Storm
365 7.5 重要
Network 		Quarkiverse Hub Quarkus OpenAPI Generator Quarkiverse HubのQuarkus OpenAPI Generatorにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40180 2026-05-25 10:25 2026-04-10 Show GitHub Exploit DB Packet Storm
366 8.8 重要
Network 		OWASP OWASP BLT OWASPのOWASP BLTにおける複数の脆弱性 CWE-94
CWE-95
CVE-2026-40316 2026-05-25 10:25 2026-04-15 Show GitHub Exploit DB Packet Storm
367 7.5 重要
Network 		WebOnyx graphql-php WebOnyxのgraphql-phpにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-40476 2026-05-25 10:25 2026-04-17 Show GitHub Exploit DB Packet Storm
368 5.9 警告
Network 		Jeffrey Stedfast (jstedfast) MailKit Jeffrey Stedfast (jstedfast)のMailKitにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-41319 2026-05-25 10:25 2026-04-24 Show GitHub Exploit DB Packet Storm
369 9.8 緊急
Network 		pgx project pgx JackcのpgxにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41889 2026-05-25 10:25 2026-05-8 Show GitHub Exploit DB Packet Storm
370 5.4 警告
Network 		reconurge Flowsint Flowsintにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42159 2026-05-25 10:25 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1711 7.1 HIGH
Local 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 contains an integer overflow vulnerability in the packet capture buffer allocation. In src/packet_storage.hpp, the allocate_buffer() function computes memor… CWE-122
CWE-190
Heap-based Buffer Overflow
 Integer Overflow or Wraparound 		CVE-2026-48690 2026-05-27 23:34 2026-05-27 Show GitHub Exploit DB Packet Storm
1712 6.5 MEDIUM
Network 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the NetFlow v9 options template parser. In process_netflow_v9_options_template() (src/netflow_plugin/netflow_v9_collector.… CWE-125
Out-of-bounds Read 		CVE-2026-48684 2026-05-27 23:26 2026-05-27 Show GitHub Exploit DB Packet Storm
1713 6.5 MEDIUM
Network 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 has out-of-bounds memory access because it incorrectly parses BGP path attributes with the extended length flag set. In src/bgp_protocol.hpp, the parse_raw_… CWE-130
 Improper Handling of Length Parameter Inconsistency 		CVE-2026-48685 2026-05-27 23:23 2026-05-27 Show GitHub Exploit DB Packet Storm
1714 9.8 CRITICAL
Network 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 contains a stack-based buffer overflow in the BGP NLRI (Network Layer Reachability Information) decoder. The function decode_bgp_subnet_encoding_ipv4_raw() … CWE-120
CWE-787
Classic Buffer Overflow
 Out-of-bounds Write 		CVE-2026-48686 2026-05-27 23:23 2026-05-27 Show GitHub Exploit DB Packet Storm
1715 7.3 HIGH
Local 		- - smallbitvec is a growable bit-vector for Rust, optimized for size. From 1.0.1 to 2.6.0, an integer overflow in the internal capacity calculation of smallbitvec can lead to an undersized heap allocati… CWE-122
CWE-190
Heap-based Buffer Overflow
 Integer Overflow or Wraparound 		CVE-2026-44983 2026-05-27 23:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1716 7.5 HIGH
Network 		- - Vanetza is an open-source implementation of the ETSI C-ITS protocol suite. In 26.02 and earlier, a denial-of-service vulnerability was identified in the cryptographic verification pipeline of Vanetza… CWE-248
 Uncaught Exception 		CVE-2026-44905 2026-05-27 23:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1717 - - - GitLab MCP Server lets an AI agent talk directly to GitLab. Prior to 0.6.0, the HTTP transport in src/transport.ts ships with no authentication layer at all and a wildcard Access-Control-Allow-Origin… CWE-306
CWE-942
Missing Authentication for Critical Function
 Permissive Cross-domain Policy with Untrusted Domains 		CVE-2026-44895 2026-05-27 23:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1718 - - - eml_parser serves as a python module for parsing eml files and returning various information found in the e-mail as well as computed information. Prior to 3.0.1, EmlParser.get_raw_body_text() recurse… CWE-674
 Uncontrolled Recursion 		CVE-2026-44844 2026-05-27 23:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1719 6.5 MEDIUM
Network 		- - view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 3.0.0 to 4.9.0, the preview route derives an example name from the URL and calls… CWE-749
 Exposed Dangerous Method or Function 		CVE-2026-44836 2026-05-27 23:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1720 - - - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid. OCSP re… CWE-295
CWE-672
Improper Certificate Validation 
 Operation on a Resource after Expiration or Release 		CVE-2026-42791 2026-05-27 23:16 2026-05-27 Show GitHub Exploit DB Packet Storm