Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4191	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2026-7337	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4192	7.5	重要 Adjacent	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7338	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4193	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-7339	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4194	8.1	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-7346	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4195	8.1	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7347	2026-05-7 12:27	2026-04-28	Show	GitHub Exploit DB Packet Storm

4196	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7348	2026-05-7 12:27	2026-04-28	Show	GitHub Exploit DB Packet Storm

4197	6.3	警告 Network	Shenzhen Tenda Technology Co.,Ltd.	4g300 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.の4g300 ファームウェアにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-7469	2026-05-7 12:27	2026-04-30	Show	GitHub Exploit DB Packet Storm

4198	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	4g300 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.の4g300 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-7470	2026-05-7 12:27	2026-04-30	Show	GitHub Exploit DB Packet Storm

4199	7	重要 Local	NASA	Core Flight System (cFS)	NASAのCore Flight System (cFS)における複数の脆弱性	CWE-20 CWE-502 CWE-502	CVE-2026-5473	2026-05-7 12:27	2026-04-3	Show	GitHub Exploit DB Packet Storm

4200	8.8	重要 Adjacent	NASA	Core Flight System (cFS)	NASAのCore Flight System (cFS)における複数の脆弱性	CWE-119 CWE-122	CVE-2026-5474	2026-05-7 12:27	2026-04-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314461	-		sgi bsdi sun hp ibm freebsd	irix bsd_os sunos hp-ux aix freebsd solaris	Local user gains root privileges via buffer overflow in rdist, via expstr() function.	NVD-CWE-Other	CVE-1999-0022	2024-10-29 23:35	1996-07-3	Show	GitHub Exploit DB Packet Storm

314462	6.4	MEDIUM Network	-	-	The Newsletters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's newsletters_video shortcode in all versions up to, and including, 4.9.9.4 due to insufficient input …	CWE-79 Cross-site Scripting	CVE-2024-10181	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

314463	-		-	-	A vulnerability was found in LUNAD3v AreaLoad up to 1a1103182ed63a06dde63d1712f3262eda19c3ec. It has been rated as critical. This issue affects some unknown processing of the file request.php. The ma…	CWE-89 SQL Injection	CVE-2017-20195	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

314464	4.3	MEDIUM Network	-	-	The Move Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.5 via the render function in includes/widgets/accordion/wi…	-	CVE-2024-10360	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

314465	-		-	-	The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sa_subscribe shortcode in all versions up to, and including, 3.7.5 d…	CWE-79 Cross-site Scripting	CVE-2024-10233	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

314466	6.4	MEDIUM Network	-	-	The StreamWeasels YouTube Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-youtube-embed shortcode in all versions up to, and including, 1.3.2 due to …	CWE-79 Cross-site Scripting	CVE-2024-10185	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

314467	6.4	MEDIUM Network	-	-	The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-kick-embed shortcode in all versions up to, and including, 1.1.1 due to insuff…	CWE-79 Cross-site Scripting	CVE-2024-10184	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

314468	6.4	MEDIUM Network	-	-	The Kata Plus – Addons for Elementor – Widgets, Extensions and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1…	CWE-79 Cross-site Scripting	CVE-2024-9376	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

314469	4.3	MEDIUM Network	-	-	The WPC Smart Messages for WooCommerce plugin for WordPress is vulnerable to unauthorized Smar Message activation/deactivation due to a missing capability check on the ajax_enable function in all ver…	CWE-862 Missing Authorization	CVE-2024-10437	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm

314470	8.8	HIGH Network	-	-	The WPC Smart Messages for WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.2.1 via the get_condition_value function. This makes it possi…	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2024-10436	2024-10-29 23:34	2024-10-29	Show	GitHub Exploit DB Packet Storm