Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4271 8.8 重要
Network 		n8n n8n n8nにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-42234 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
4272 9.6 緊急
Network 		n8n n8n n8nにおける複数の脆弱性 CWE-79
CWE-87
CVE-2026-42235 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
4273 7.5 重要
Network 		n8n n8n n8nにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42236 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
4274 8.8 重要
Network 		n8n n8n n8nにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-42237 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
4275 9.8 緊急
Network 		nginxui Nginx UI Nginx UI TeamのNginx UIにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-42238 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
4276 7.7 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-42438 2026-05-8 12:22 2026-05-5 Show GitHub Exploit DB Packet Storm
4277 8.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける複数の脆弱性 CWE-862
CWE-918
CVE-2026-42439 2026-05-8 12:22 2026-05-5 Show GitHub Exploit DB Packet Storm
4278 7.5 重要
Network 		Apache Software Foundation Apache OpenNLP Apache Software FoundationのApache OpenNLPにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-42440 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
4279 6.1 警告
Network 		Apache Software Foundation Apache Wicket Apache Software FoundationのApache Wicketにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42509 2026-05-8 12:22 2026-05-6 Show GitHub Exploit DB Packet Storm
4280 4.3 警告
Network 		Jenkins プロジェクト Script Security JenkinsのScript Securityにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42519 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313851 8.8 HIGH
Network 		newspack newspack Broken Access Control vulnerability in Automattic Newspack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Newspack: from n/a through 3.8.6. CWE-862
 Missing Authorization 		CVE-2024-43968 2024-11-9 05:43 2024-11-2 Show GitHub Exploit DB Packet Storm
313852 8.8 HIGH
Network 		lws affiliation Missing Authorization vulnerability in LWS LWS Affiliation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LWS Affiliation: from n/a through 2.3.4. CWE-862
 Missing Authorization 		CVE-2024-43962 2024-11-9 05:42 2024-11-2 Show GitHub Exploit DB Packet Storm
313853 5.3 MEDIUM
Network 		humhub humhub Generation of Error Message Containing Sensitive Information in HumHub GmbH & Co. KG - HumHub on Linux allows: Excavation (user enumeration).This issue affects all released HumHub versions: through 1… CWE-209
Information Exposure Through an Error Message 		CVE-2024-52043 2024-11-9 05:39 2024-11-6 Show GitHub Exploit DB Packet Storm
313854 8.1 HIGH
Network 		heateor super_socializer The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.13.68. This is due to … NVD-CWE-noinfo
CVE-2024-9946 2024-11-9 05:38 2024-11-6 Show GitHub Exploit DB Packet Storm
313855 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: firewire: core: fix invalid port index for parent device In a commit 24b7f8e5cd65 ("firewire: core: use helper functions for self… NVD-CWE-noinfo
CVE-2024-50113 2024-11-9 05:37 2024-11-6 Show GitHub Exploit DB Packet Storm
313856 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: x86/lam: Disable ADDRESS_MASKING in most cases Linear Address Masking (LAM) has a weakness related to transient execution as desc… NVD-CWE-noinfo
CVE-2024-50112 2024-11-9 05:36 2024-11-6 Show GitHub Exploit DB Packet Storm
313857 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable IRQ if do_ale() triggered in irq-enabled context Unaligned access exception can be triggered in irq-enabled con… NVD-CWE-noinfo
CVE-2024-50111 2024-11-9 05:32 2024-11-6 Show GitHub Exploit DB Packet Storm
313858 5.4 MEDIUM
Network 		fatcatapps easy_pricing_tables The Pricing Tables WordPress Plugin – Easy Pricing Tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘fontFamily’ attribute in all versions up to, and including, 3.2.6 … CWE-79
Cross-site Scripting 		CVE-2024-8323 2024-11-9 05:30 2024-11-6 Show GitHub Exploit DB Packet Storm
313859 5.4 MEDIUM
Network 		pluginus woot The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's woot_button shortcode in all versions u… CWE-79
Cross-site Scripting 		CVE-2024-10168 2024-11-9 05:27 2024-11-6 Show GitHub Exploit DB Packet Storm
313860 5.4 MEDIUM
Network 		mappresspro mappress The MapPress Maps for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Map block in all versions up to, and including, 2.94.1 due to insufficient input san… CWE-79
Cross-site Scripting 		CVE-2024-10715 2024-11-9 05:25 2024-11-6 Show GitHub Exploit DB Packet Storm