Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4281 8.5 重要
Network 		Froxlor Froxlor FroxlorにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-41230 2026-04-30 12:27 2026-04-23 Show GitHub Exploit DB Packet Storm
4282 7.5 重要
Network 		Froxlor Froxlor Froxlorにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-41231 2026-04-30 12:27 2026-04-23 Show GitHub Exploit DB Packet Storm
4283 5 警告
Network 		Froxlor Froxlor Froxlorにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41232 2026-04-30 12:27 2026-04-23 Show GitHub Exploit DB Packet Storm
4284 5.4 警告
Network 		Froxlor Froxlor Froxlorにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41233 2026-04-30 12:27 2026-04-23 Show GitHub Exploit DB Packet Storm
4285 8.6 重要
Local 		OpenClaw OpenClaw OpenClawにおけるシステム構成または設定の外部制御に関する脆弱性 CWE-15
システム構成または設定の外部制御 		CVE-2026-41294 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
4286 7.8 重要
Local 		OpenClaw OpenClaw OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41295 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
4287 8.2 重要
Network 		OpenClaw OpenClaw OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41296 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
4288 7.6 重要
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41297 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
4289 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-41298 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
4290 7.1 重要
Network 		OpenClaw OpenClaw OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性 CWE-807
セキュリティ決定の信頼できない入力への依存 		CVE-2026-41299 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314911 - microsoft internet_explorer The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote attackers to execute arbitrary code by accessing an object that (1) was not properly initializ… CWE-94
Code Injection 		CVE-2010-1260 2024-10-22 02:35 2010-06-9 Show GitHub Exploit DB Packet Storm
314912 - microsoft internet_explorer
windows_2003_server
windows_7
windows_server_2003
windows_server_2008
windows_vista
windows_xp 		Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and de… CWE-94
Code Injection 		CVE-2010-0492 2024-10-22 02:35 2010-04-1 Show GitHub Exploit DB Packet Storm
314913 - microsoft internet_explorer Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly ini… CWE-94
Code Injection 		CVE-2010-0248 2024-10-22 02:35 2010-01-23 Show GitHub Exploit DB Packet Storm
314914 - - - Improper Input Validation in the admin portal of Ivanti Connect Secure before 22.7R2.1 and 9.1R18.9, or Ivanti Policy Secure before 22.7R1.1 allows a remote authenticated attacker to achieve remote c… - CVE-2024-37404 2024-10-22 02:10 2024-10-19 Show GitHub Exploit DB Packet Storm
314915 - - - Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector. - CVE-2024-29821 2024-10-22 02:10 2024-10-19 Show GitHub Exploit DB Packet Storm
314916 - - - Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector. - CVE-2024-29213 2024-10-22 02:10 2024-10-19 Show GitHub Exploit DB Packet Storm
314917 - - - In J2eeFAST <=2.7, the backend function has unsafe filtering, which allows an attacker to trigger certain sensitive functions resulting in arbitrary code execution. - CVE-2024-45944 2024-10-22 02:10 2024-10-19 Show GitHub Exploit DB Packet Storm
314918 - - - Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. A low privileged attacker with remote access could p… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-48016 2024-10-22 02:10 2024-10-19 Show GitHub Exploit DB Packet Storm
314919 - - - Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains an Improper Certificate Validation vulnerability. A low privileged attacker with remote access could potentially explo… CWE-295
Improper Certificate Validation  		CVE-2024-47241 2024-10-22 02:10 2024-10-19 Show GitHub Exploit DB Packet Storm
314920 - - - ACON is a widely-used library of tools for machine learning that focuses on adaptive correlation optimization. A potential vulnerability has been identified in the input validation process, which cou… CWE-20
 Improper Input Validation  		CVE-2024-49361 2024-10-22 02:10 2024-10-19 Show GitHub Exploit DB Packet Storm