Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4041 4.9 警告
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS RecursorにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-33600 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
4042 4.9 警告
Network 		PowerDNS PowerDNS Recursor PowerDNSのPowerDNS RecursorにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-33601 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
4043 9.1 緊急
Network 		EspoCRM EspoCRM EspoCRMにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-33656 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
4044 7.2 重要
Network 		EspoCRM EspoCRM EspoCRMにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-33733 2026-04-30 12:30 2026-04-22 Show GitHub Exploit DB Packet Storm
4045 7.5 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける不正な構文構造の不適切な処理に関する脆弱性 CWE-228
不正な構文構造の不適切な処理 		CVE-2026-34232 2026-04-30 12:30 2026-04-17 Show GitHub Exploit DB Packet Storm
4046 5.3 警告
Network 		オラクル Oracle GoldenGate オラクルのOracle GoldenGateにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-34273 2026-04-30 12:30 2026-04-21 Show GitHub Exploit DB Packet Storm
4047 8.1 重要
Network 		getkirby kirby getkirbyのkirbyにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性 CWE-1336
テンプレートエンジンで使用される特殊な要素の不適切な無効化 		CVE-2026-34587 2026-04-30 12:30 2026-04-24 Show GitHub Exploit DB Packet Storm
4048 9 緊急
Network 		Ci4-cms-erp Ci4MS Ci4-cms-erpのCi4MSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-34989 2026-04-30 12:30 2026-04-6 Show GitHub Exploit DB Packet Storm
4049 7.5 重要
Network 		Linux Foundation Antrea Linux FoundationのAntreaにおける重要なデータの暗号化の欠如に関する脆弱性 CWE-311
重要なデータの暗号化の欠如 		CVE-2026-34992 2026-04-30 12:29 2026-04-6 Show GitHub Exploit DB Packet Storm
4050 7.5 重要
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2026-35215 2026-04-30 12:29 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314951 6.1 MEDIUM
Network 		- - The Language Switcher plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including… CWE-79
Cross-site Scripting 		CVE-2024-9610 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
314952 5.0 MEDIUM
Local 		- - An Incorrect Default Permissions vulnerability in the command line interface (CLI) of Juniper Networks Junos OS Evolved allows a low privileged local attacker to view NETCONF traceoptions files, repr… CWE-276
Incorrect Default Permissions  		CVE-2024-39544 2024-10-15 21:58 2024-10-12 Show GitHub Exploit DB Packet Storm
314953 5.4 MEDIUM
Adjacent 		- - An Incorrect Comparison vulnerability in the local address verification API of Juniper Networks Junos OS Evolved allows an unauthenticated network-adjacent attacker to create sessions or send traffic… - CVE-2024-39534 2024-10-15 21:58 2024-10-12 Show GitHub Exploit DB Packet Storm
314954 5.5 MEDIUM
Local 		- - An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the command-line interface (CLI) of Juniper Networks Junos OS on SRX Series devices allows a local, low-privileged user … CWE-200
Information Exposure 		CVE-2024-39527 2024-10-15 21:58 2024-10-12 Show GitHub Exploit DB Packet Storm
314955 6.5 MEDIUM
Adjacent 		- - An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with EX9200-15C lines cards, MX3… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2024-39526 2024-10-15 21:58 2024-10-12 Show GitHub Exploit DB Packet Storm
314956 6.4 MEDIUM
Network 		- - The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'skipto' shortcode in all versions up to, and including, 11.9.18 due to … CWE-79
Cross-site Scripting 		CVE-2024-9543 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
314957 4.3 MEDIUM
Network 		- - The ShopLentor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.8 via the 'render' function in includes/addons/wl_faq.php. This makes it … CWE-200
Information Exposure 		CVE-2024-9538 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
314958 - - - The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to arbitrary file read in all versions u… CWE-20
 Improper Input Validation  		CVE-2024-9507 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
314959 6.1 MEDIUM
Network 		- - The PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without … CWE-79
Cross-site Scripting 		CVE-2024-9436 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
314960 6.1 MEDIUM
Network 		- - The Embed videos and respect privacy plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'v' parameter in all versions up to, and including, 1.2 due to insufficient input san… CWE-79
Cross-site Scripting 		CVE-2024-9346 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm