Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4151 7.3 重要
Local 		OpenClaw OpenClaw OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性 CWE-807
セキュリティ決定の信頼できない入力への依存 		CVE-2026-41390 2026-05-7 12:30 2026-04-28 Show GitHub Exploit DB Packet Storm
4152 6.1 警告
Local 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-41391 2026-05-7 12:30 2026-04-28 Show GitHub Exploit DB Packet Storm
4153 7.3 重要
Local 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-41392 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4154 4.8 警告
Adjacent 		OpenClaw OpenClaw OpenClawにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-41393 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4155 8.2 重要
Network 		OpenClaw OpenClaw OpenClawにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-41394 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4156 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける暗号化処理の不備に関する脆弱性 CWE-325
暗号化処理の不備 		CVE-2026-41395 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4157 7.8 重要
Local 		OpenClaw OpenClaw OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41396 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4158 9.6 緊急
Network 		OpenClaw OpenClaw OpenClawにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-41397 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4159 4 警告
Local 		OpenClaw OpenClaw OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性 CWE-807
セキュリティ決定の信頼できない入力への依存 		CVE-2026-41403 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4160 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41404 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314471 - - - The affiliate-toolkit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's atkp_product shortcode in all versions up to, and including, 3.6.5 due to insufficient input s… CWE-79
Cross-site Scripting 		CVE-2024-10227 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm
314472 - - - Tiki through 27.0 allows users who have certain permissions to insert a "Modules" (aka tiki-admin_modules.php) stored XSS payload in the Name. - CVE-2024-51509 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm
314473 - - - Tiki through 27.0 allows users who have certain permissions to insert a "Create/Edit External Wiki" stored XSS payload in the Index. - CVE-2024-51508 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm
314474 - - - Tiki through 27.0 allows users who have certain permissions to insert a "Create/Edit External Wiki" stored XSS payload in the Name. - CVE-2024-51507 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm
314475 - - - Tiki through 27.0 allows users who have certain permissions to insert a "Create a Wiki Pages" stored XSS payload in the description. - CVE-2024-51506 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm
314476 - - - This issue was addressed with additional entitlement checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to modify protected parts of the file system. - CVE-2024-44295 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm
314477 - - - An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Parsing a maliciously crafted file may lead to an unexpected app t… - CVE-2024-44283 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm
314478 - - - This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious app with root privileges may be able to modify the contents of … - CVE-2024-44260 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm
314479 - - - This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to access sensitive user data. - CVE-2024-44257 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm
314480 - - - The issue was addressed with improved input sanitization. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to break out of its sandbox. - CVE-2024-44256 2024-10-29 23:34 2024-10-29 Show GitHub Exploit DB Packet Storm