Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
371 6.5 警告
Network 		getkirby kirby getkirbyのkirbyにおける複数の脆弱性 CWE-862
CWE-863
CVE-2026-42137 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
372 7.8 重要
Local 		Nullsoft Nullsoft Scriptable Install System NullsoftのNullsoft Scriptable Install Systemにおける制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-42171 2026-05-20 13:30 2026-04-24 Show GitHub Exploit DB Packet Storm
373 4.3 警告
Network 		getkirby kirby getkirbyのkirbyにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42174 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
374 7.5 重要
Network 		OpenBao OpenBao OpenBaoにおける保存または転送前の重要な情報の削除に関する脆弱性 CWE-212
保存または転送前の重要な情報の不適切な削除 		CVE-2026-42186 2026-05-20 13:30 2026-05-14 Show GitHub Exploit DB Packet Storm
375 7.5 重要
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-42245 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
376 7.4 重要
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおける複数の脆弱性 CWE-392
CWE-393
CWE-636
CWE-754
CWE-841
CVE-2026-42246 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
377 9.8 緊急
Network 		ollama ollama Ollamaにおけるダウンロードしたコードの完全性検証不備に関する脆弱性 CWE-494
ダウンロードしたコードの完全性検証不備 		CVE-2026-42248 2026-05-20 13:30 2026-04-29 Show GitHub Exploit DB Packet Storm
378 9.8 緊急
Network 		ollama ollama Ollamaにおける複数の脆弱性 CWE-22
CWE-494
CVE-2026-42249 2026-05-20 13:30 2026-04-29 Show GitHub Exploit DB Packet Storm
379 9.8 緊急
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおける複数の脆弱性 CWE-77
CWE-93
CVE-2026-42257 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
380 9.8 緊急
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおける複数の脆弱性 CWE-77
CWE-93
CVE-2026-42258 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311511 4.9 MEDIUM
Network 		enalean tuleap Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.110, Tuleap Enterprise Edition 15.13-5, and Tuleap Enterprise Edition 1… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2024-47766 2024-10-17 22:48 2024-10-15 Show GitHub Exploit DB Packet Storm
311512 6.1 MEDIUM
Network 		wp-slimstat slimstat_analytics The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the resource parameter in all versions up to, and including, 5.2.6 due to insufficient input sanitization … CWE-79
Cross-site Scripting 		CVE-2024-9548 2024-10-17 22:46 2024-10-15 Show GitHub Exploit DB Packet Storm
311513 5.3 MEDIUM
Network 		xplodedthemes wpide The WPIDE – File Manager & Code Editor plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.9. This is due to the plugin utilizing the PHP-Parser libra… NVD-CWE-noinfo
CVE-2024-9546 2024-10-17 22:34 2024-10-15 Show GitHub Exploit DB Packet Storm
311514 6.5 MEDIUM
Adjacent 		microsoft windows_server_2022_23h2
windows_10_1809
windows_11_21h2
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_22h2
windows_server_2019 		Windows Mobile Broadband Driver Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2024-43559 2024-10-17 22:31 2024-10-9 Show GitHub Exploit DB Packet Storm
311515 6.5 MEDIUM
Adjacent 		microsoft windows_server_2022_23h2
windows_10_1809
windows_11_21h2
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_22h2
windows_server_2019 		Windows Mobile Broadband Driver Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2024-43558 2024-10-17 22:31 2024-10-9 Show GitHub Exploit DB Packet Storm
311516 6.5 MEDIUM
Adjacent 		microsoft windows_server_2022_23h2
windows_10_1809
windows_11_21h2
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_22h2
windows_server_2019 		Windows Mobile Broadband Driver Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2024-43557 2024-10-17 22:31 2024-10-9 Show GitHub Exploit DB Packet Storm
311517 4.9 MEDIUM
Network 		splunk splunk In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes sensitive HTTP parameters to the `_internal` index. This exposure could happen if you configure the Splun… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-45738 2024-10-17 22:17 2024-10-15 Show GitHub Exploit DB Packet Storm
311518 4.9 MEDIUM
Network 		splunk splunk In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes plaintext passwords for local native authentication Splunk users. This exposure could happen when you con… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-45739 2024-10-17 22:16 2024-10-15 Show GitHub Exploit DB Packet Storm
311519 5.4 MEDIUM
Network 		splunk splunk
splunk_cloud_platform 		In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403, a low-privileged user that does not hold the "admin" or "power" Splunk roles could craft a malic… CWE-79
Cross-site Scripting 		CVE-2024-45740 2024-10-17 22:14 2024-10-15 Show GitHub Exploit DB Packet Storm
311520 5.4 MEDIUM
Network 		splunk splunk_cloud_platform
splunk 		In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403.108 and 9.1.2312.205, a low-privileged user that does not hold the "admin" or "power" Splunk role… CWE-79
Cross-site Scripting 		CVE-2024-45741 2024-10-17 22:12 2024-10-15 Show GitHub Exploit DB Packet Storm