Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
361 8.8 重要
Network 		FreeRDP FreeRDP FreeRDPにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40033 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
362 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40383 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
363 7.2 重要
Network 		IBM Engineering Lifecycle Management IBMのEngineering Lifecycle Managementにおける危険なメソッドや機能の公開に関する脆弱性 CWE-749
危険なメソッドや機能の公開 		CVE-2026-4051 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
364 6.5 警告
Network 		struktur AG libheif struktur AGのlibheifにおける複数の脆弱性 CWE-125
CWE-476
CVE-2026-41069 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
365 8.1 重要
Network 		struktur AG libheif struktur AGのlibheifにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-41071 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
366 9.3 緊急
Network 		マイクロソフト Microsoft 365 Copilot Microsoft Copilot Tampering Vulnerability CWE-77
コマンドインジェクション 		CVE-2026-41090 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
367 7.2 重要
Network 		Apache Software Foundation Apache Syncope Apache Software FoundationのApache Syncopeにおける隔離または分類に関する脆弱性 CWE-653
不適切な隔離または分類 		CVE-2026-42782 2026-05-29 11:17 2026-05-25 Show GitHub Exploit DB Packet Storm
368 7.5 重要
Network 		マイクロソフト Microsoft 365 Copilot M365 Copilot の情報漏えいの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-42827 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
369 10 緊急
Network 		マイクロソフト Microsoft Entra ID Microsoft Entra ID の特権昇格の脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-42901 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
370 4.3 警告
Network 		Traccar Ltd Traccar Traccar LtdのTraccarにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-44314 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319101 - - - Missing Authentication for Critical Function vulnerability in icegram Icegram allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Icegram: from n/a through 3.1.24. CWE-306
Missing Authentication for Critical Function 		CVE-2024-43272 2024-08-20 03:36 2024-08-20 Show GitHub Exploit DB Packet Storm
319102 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Themelocation Woo Products Widgets For Elementor allows PHP Local File Inclusion.This issue affects Woo… CWE-22
Path Traversal 		CVE-2024-43271 2024-08-20 03:36 2024-08-20 Show GitHub Exploit DB Packet Storm
319103 - - - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Hamed Naderfar Compute Links allows PHP Remote File Inclusion.This issue affec… - CVE-2024-43261 2024-08-20 03:36 2024-08-20 Show GitHub Exploit DB Packet Storm
319104 - - - Missing Authorization vulnerability in nouthemes Leopard - WordPress offload media allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Leopard - WordPress offload media… CWE-862
 Missing Authorization 		CVE-2024-43256 2024-08-20 03:36 2024-08-20 Show GitHub Exploit DB Packet Storm
319105 - - - Missing Authorization vulnerability in creativeon WHMpress allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WHMpress: from n/a through 6.2-revision-5. CWE-862
 Missing Authorization 		CVE-2024-43247 2024-08-20 03:36 2024-08-20 Show GitHub Exploit DB Packet Storm
319106 - - - Improper Privilege Management vulnerability in eyecix JobSearch allows Privilege Escalation.This issue affects JobSearch: from n/a through 2.3.4. - CVE-2024-43245 2024-08-20 03:36 2024-08-20 Show GitHub Exploit DB Packet Storm
319107 - - - URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Scott Paterson Easy PayPal Buy Now Button.This issue affects Easy PayPal Buy Now Button: from n/a through 1.9. CWE-601
Open Redirect 		CVE-2024-43236 2024-08-20 03:36 2024-08-20 Show GitHub Exploit DB Packet Storm
319108 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WP OnlineSupport, Essential Plugin Timeline and History slider allows PHP Local File Inclusion.This iss… CWE-22
Path Traversal 		CVE-2024-43232 2024-08-20 03:36 2024-08-20 Show GitHub Exploit DB Packet Storm
319109 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Crocoblock JetGridBuilder allows PHP Local File Inclusion.This issue affects JetGridBuilder: from n/a t… CWE-22
Path Traversal 		CVE-2024-43221 2024-08-20 03:36 2024-08-20 Show GitHub Exploit DB Packet Storm
319110 - - - A stored cross-site scripting (XSS) vulnerability exists in ZZCMS2023 in the ask/show.php file at line 21. An attacker can exploit this vulnerability by sending a specially crafted POST request to /u… - CVE-2024-43006 2024-08-20 03:35 2024-08-17 Show GitHub Exploit DB Packet Storm