Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
411	9.8	緊急 Network	OpenClaw	OpenClaw	OpenClawにおけるリソースの安全ではないデフォルト値への初期化に関する脆弱性 New	CWE-1188 リソースの安全ではないデフォルト値への初期化	CVE-2026-44109	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

412	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-44110	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

413	4.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける許容された入力値の許可リストに関する脆弱性 New	CWE-183 許容された入力値の許可リスト	CVE-2026-44111	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

414	6.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-44112	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

415	6.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-44113	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

416	7.8	重要 Local	OpenClaw	OpenClaw	OpenClawにおける不完全なブラックリストに関する脆弱性 New	CWE-184 不完全なブラックリスト	CVE-2026-44114	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

417	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不完全なブラックリストに関する脆弱性 New	CWE-184 不完全なブラックリスト	CVE-2026-44115	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

418	8.6	重要 Network	OpenClaw	OpenClaw	OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-44116	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

419	5.8	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-44117	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

420	7.8	重要 Local	OpenClaw	OpenClaw	OpenClawにおけるスプーフィングによる認証回避に関する脆弱性 New	CWE-290 スプーフィングによる認証回避	CVE-2026-44118	2026-05-11 10:55	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312391	8.8	HIGH Network	qnap	qts quts_hero	An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. QuTSclou…	CWE-78 OS Command	CVE-2023-34974	2024-09-14 06:14	2024-09-7	Show	GitHub Exploit DB Packet Storm

312392	6.2	MEDIUM Local	huawei	emui harmonyos	Vulnerability of uncaught exceptions in the Graphics module Impact: Successful exploitation of this vulnerability may affect service confidentiality.	NVD-CWE-noinfo	CVE-2024-42037	2024-09-14 06:13	2024-08-8	Show	GitHub Exploit DB Packet Storm

312393	6.1	MEDIUM Network	qnap	qulog_center	A cross-site scripting (XSS) vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow users to inject malicious code via a network. We have already fixed t…	CWE-79 Cross-site Scripting	CVE-2024-32762	2024-09-14 06:10	2024-09-7	Show	GitHub Exploit DB Packet Storm

312394	7.5	HIGH Network	huawei	harmonyos emui	Access permission verification vulnerability in the Notepad module Impact: Successful exploitation of this vulnerability may affect service confidentiality.	NVD-CWE-noinfo	CVE-2024-42036	2024-09-14 06:09	2024-08-8	Show	GitHub Exploit DB Packet Storm

312395	9.8	CRITICAL Network	wpwebelite	docket	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPWeb Elite Docket (WooCommerce Collections / Wishlist / Watchlist) allows SQL Injection.This iss…	CWE-89 SQL Injection	CVE-2024-43132	2024-09-14 06:07	2024-08-30	Show	GitHub Exploit DB Packet Storm

312396	4.8	MEDIUM Network	qnap	helpdesk	A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We h…	CWE-79 Cross-site Scripting	CVE-2024-27125	2024-09-14 06:06	2024-09-7	Show	GitHub Exploit DB Packet Storm

312397	7.2	HIGH Network	salonbookingsystem	salon_booking_system	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Salon Booking System Salon booking system allows SQL Injection.This issue affects Salon booking s…	CWE-89 SQL Injection	CVE-2024-39658	2024-09-14 06:04	2024-08-30	Show	GitHub Exploit DB Packet Storm

312398	9.8	CRITICAL Network	e4jconnect	vikrentcar	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in E4J s.R.L. VikRentCar allows SQL Injection.This issue affects VikRentCar: from n/a through 1.4.0.	CWE-89 SQL Injection	CVE-2024-39653	2024-09-14 06:03	2024-08-30	Show	GitHub Exploit DB Packet Storm

312399	8.8	HIGH Network	roundupwp	registrations_for_the_events_calendar	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Roundup WP Registrations for the Events Calendar allows SQL Injection.This issue affects Registra…	CWE-89 SQL Injection	CVE-2024-39638	2024-09-14 06:00	2024-08-30	Show	GitHub Exploit DB Packet Storm

312400	8.8	HIGH Network	pricelisto	great_restaurant_menu_wp	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PriceListo Best Restaurant Menu by PriceListo allows SQL Injection.This issue affects Best Restau…	CWE-89 SQL Injection	CVE-2024-38793	2024-09-14 05:57	2024-08-30	Show	GitHub Exploit DB Packet Storm