Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4271	8.8	重要 Network	n8n	n8n	n8nにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-42234	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

4272	9.6	緊急 Network	n8n	n8n	n8nにおける複数の脆弱性	CWE-79 CWE-87	CVE-2026-42235	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

4273	7.5	重要 Network	n8n	n8n	n8nにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42236	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

4274	8.8	重要 Network	n8n	n8n	n8nにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-42237	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

4275	9.8	緊急 Network	nginxui	Nginx UI	Nginx UI TeamのNginx UIにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-42238	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

4276	7.7	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42438	2026-05-8 12:22	2026-05-5	Show	GitHub Exploit DB Packet Storm

4277	8.5	重要 Network	OpenClaw	OpenClaw	OpenClawにおける複数の脆弱性	CWE-862 CWE-918	CVE-2026-42439	2026-05-8 12:22	2026-05-5	Show	GitHub Exploit DB Packet Storm

4278	7.5	重要 Network	Apache Software Foundation	Apache OpenNLP	Apache Software FoundationのApache OpenNLPにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-42440	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

4279	6.1	警告 Network	Apache Software Foundation	Apache Wicket	Apache Software FoundationのApache Wicketにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42509	2026-05-8 12:22	2026-05-6	Show	GitHub Exploit DB Packet Storm

4280	4.3	警告 Network	Jenkins プロジェクト	Script Security	JenkinsのScript Securityにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42519	2026-05-8 12:22	2026-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313751	-	-	-	An out of bounds read in Ivanti Connect Secure before version 22.7R2.3 allows a remote unauthenticated attacker to trigger an infinite loop, causing a denial of service.	-	CVE-2024-37400	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

313752	-	-	-	SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code …	-	CVE-2024-37376	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

313753	-	-	-	Path traversal in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a local unauthenticated attacker to achieve code execution. User interaction…	-	CVE-2024-34787	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

313754	-	-	-	SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code …	-	CVE-2024-34784	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

313755	-	-	-	SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code …	-	CVE-2024-34782	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

313756	-	-	-	SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code …	-	CVE-2024-34781	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

313757	-	-	-	SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code …	-	CVE-2024-34780	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

313758	-	-	-	SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code …	-	CVE-2024-32847	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

313759	-	-	-	SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code …	-	CVE-2024-32844	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

313760	-	-	-	SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code …	-	CVE-2024-32841	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm