Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4261	5.4	警告 Network	Weblate	Weblate	Weblateにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-41519	2026-05-13 10:25	2026-05-7	Show	GitHub Exploit DB Packet Storm

4262	7.1	重要 Network	monetr	monetr	monetrにおける複数の脆弱性	CWE-209 CWE-770 CWE-918 CWE-918	CVE-2026-41644	2026-05-13 10:25	2026-05-7	Show	GitHub Exploit DB Packet Storm

4263	8.1	重要 Network	Weblate	Weblate	Weblateにおける複数の脆弱性	CWE-20 CWE-918	CVE-2026-41654	2026-05-13 10:24	2026-05-7	Show	GitHub Exploit DB Packet Storm

4264	6.1	警告 Network	LangGenius	Dify	LangGeniusのDifyにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42138	2026-05-13 10:24	2026-05-4	Show	GitHub Exploit DB Packet Storm

4265	7.5	重要 Network	Prometheus	Prometheus	Prometheusにおける複数の脆弱性	CWE-200 CWE-312	CVE-2026-42151	2026-05-13 10:24	2026-05-4	Show	GitHub Exploit DB Packet Storm

4266	7.5	重要 Network	Prometheus	Prometheus	Prometheusにおける複数の脆弱性	CWE-400 CWE-789	CVE-2026-42154	2026-05-13 10:24	2026-05-4	Show	GitHub Exploit DB Packet Storm

4267	8.8	重要 Network	gitpython project	gitpython	gitpython projectのgitpythonにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-42215	2026-05-13 10:24	2026-05-7	Show	GitHub Exploit DB Packet Storm

4268	7.5	重要 Network	osrg	GoBGP	osrgのGoBGPにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42285	2026-05-13 10:24	2026-05-7	Show	GitHub Exploit DB Packet Storm

4269	9.6	緊急 Network	argoproj	argo cd	Argo Project AuthorsのArgo CDにおける複数の脆弱性	CWE-200 CWE-212	CVE-2026-42880	2026-05-13 10:24	2026-05-7	Show	GitHub Exploit DB Packet Storm

4270	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-43099	2026-05-13 10:24	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313491	-	-	-	Stack-based memcpy buffer overflow in the ngap_handle_pdu_session_resource_setup_response routine in OpenAirInterface CN5G AMF <= 2.0.0 allows a remote attacker with access to the N2 interface to car…	-	CVE-2024-24450	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

313492	-	-	-	An uninitialized pointer dereference in the NasPdu::NasPdu component of OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service (DoS) via a crafted InitialUEMessage messa…	-	CVE-2024-24449	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

313493	-	-	-	A buffer overflow in the ngap_amf_handle_pdu_session_resource_setup_response function of oai-cn5g-amf up to v2.0.0 allows attackers to cause a Denial of Service (DoS) via a PDU Session Resource Setup…	-	CVE-2024-24447	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

313494	-	-	-	A vulnerability was found in erzhongxmu Jeewms up to 20241108. It has been rated as critical. This issue affects some unknown processing of the file cgReportController.do of the component AuthInterce…	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-11251	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

313495	-	-	-	A vulnerability was found in code-projects Inventory Management up to 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /model/editProduct.php. The manipulati…	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-11250	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

313496	-	-	-	Budget Control Gateway acts as an entry point for incoming requests and routes them to the appropriate microservices for Budget Control. Budget Control Gateway does not properly validate auth tokens,…	CWE-285 Improper Authorization	CVE-2024-52528	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

313497	-	-	-	Nextcloud Server is a self hosted personal cloud system. Under certain conditions the password of a user was stored unencrypted in the session data. The session data is encrypted before being saved i…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-52525	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

313498	-	-	-	Nextcloud Server is a self hosted personal cloud system. After setting up a user or administrator defined external storage with fixed credentials, the API returns them and adds them into the frontend…	CWE-200 Information Exposure	CVE-2024-52523	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

313499	-	-	-	Nextcloud Server is a self hosted personal cloud system. MD5 hashes were used to check background jobs for their uniqueness. This increased the chances of a background job with arguments falsely bein…	CWE-328 Use of Weak Hash	CVE-2024-52521	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

313500	-	-	-	Nextcloud Server is a self hosted personal cloud system. Due to a pre-flighted HEAD request, the link reference provider could be tricked into downloading bigger websites than intended, to find open-…	CWE-400 Uncontrolled Resource Consumption	CVE-2024-52520	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm