Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3841	8.5	重要 Network	socialengine	socialengine	socialengineにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41461	2026-04-30 12:26	2026-04-23	Show	GitHub Exploit DB Packet Storm

3842	7.7	重要 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-41485	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3843	4	警告 Local	The GnuPG Project	Libgcrypt	The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-41990	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

3844	7.4	重要 Network	axios project	axios	axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-42033	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3845	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42034	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3846	7.4	重要 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-113 CWE-1321	CVE-2026-42035	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3847	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42036	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3848	5.3	警告 Network	axios project	axios	axios projectのaxiosにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-42037	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3849	7.5	重要 Network	axios project	axios	axios projectのaxiosにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42038	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3850	7.5	重要 Network	axios project	axios	axios projectのaxiosにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-42039	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315301	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: tracing/timerlat: Only clear timer if a kthread exists The timerlat tracer can use user space threads to check for osnoise and ti…	CWE-416 Use After Free	CVE-2024-46845	2024-10-2 23:18	2024-09-27	Show	GitHub Exploit DB Packet Storm

315302	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm: vmalloc: ensure vmap_block is initialised before adding to queue Commit 8c61291fd850 ("mm: fix incorrect vbq reference in pur…	CWE-129 Improper Validation of Array Index	CVE-2024-46847	2024-10-2 23:16	2024-09-27	Show	GitHub Exploit DB Packet Storm

315303	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change When disabling wifi mt7921_ipv6_addr_change() is called as…	CWE-476 NULL Pointer Dereference	CVE-2024-46860	2024-10-2 23:04	2024-09-27	Show	GitHub Exploit DB Packet Storm

315304	6.1	MEDIUM Network	tebilisim	v5	Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in TE Informatics V5 allows Reflected XSS.This issue affects V5: before 6.2.	CWE-79 Cross-site Scripting	CVE-2024-2010	2024-10-2 22:52	2024-09-12	Show	GitHub Exploit DB Packet Storm

315305	9.8	CRITICAL Network	phpgurukul	online_shopping_portal	A vulnerability classified as critical was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of the file /shopping/admin/index.php of the component Admin Panel. …	CWE-89 SQL Injection	CVE-2024-9326	2024-10-2 22:33	2024-09-29	Show	GitHub Exploit DB Packet Storm

315306	9.8	CRITICAL Network	anisha	supply_chain_management	A vulnerability was found in code-projects Supply Chain Management 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/edit_manufacturer.php. The manipulation …	CWE-89 SQL Injection	CVE-2024-9322	2024-10-2 22:32	2024-09-29	Show	GitHub Exploit DB Packet Storm

315307	7.5	HIGH Network	code-projects	blood_bank_system	A vulnerability classified as critical has been found in code-projects Blood Bank Management System 1.0. Affected is an unknown function of the file /admin/blood/update/B+.php. The manipulation of th…	CWE-89 SQL Injection	CVE-2024-9316	2024-10-2 22:29	2024-09-29	Show	GitHub Exploit DB Packet Storm

315308	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix the warning division or modulo by zero Checks the partition mode and returns an error for an invalid mode.	CWE-369 Divide By Zero	CVE-2024-46806	2024-10-2 22:17	2024-09-27	Show	GitHub Exploit DB Packet Storm

315309	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix the waring dereferencing hive Check the amdgpu_hive_info *hive that maybe is NULL.	CWE-476 NULL Pointer Dereference	CVE-2024-46805	2024-10-2 21:58	2024-09-27	Show	GitHub Exploit DB Packet Storm

315310	9.8	CRITICAL Network	code-projects	blood_bank_system	A vulnerability was found in code-projects Blood Bank System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forgot.php. The manipulation of the argument u…	CWE-89 SQL Injection	CVE-2024-9327	2024-10-2 21:57	2024-09-29	Show	GitHub Exploit DB Packet Storm