Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4291 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける不完全な内部状態の区別に関する脆弱性 CWE-372
不完全な内部状態の区別 		CVE-2026-41300 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
4292 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-41301 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
4293 6.3 警告
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41302 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
4294 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41303 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
4295 6.5 警告
Network 		pypdf project pypdf pypdf projectのpypdfにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-41312 2026-04-30 12:26 2026-04-22 Show GitHub Exploit DB Packet Storm
4296 6.5 警告
Network 		pypdf project pypdf pypdf projectのpypdfにおける過度な反復の脆弱性 CWE-834
過度なイテレーション 		CVE-2026-41313 2026-04-30 12:26 2026-04-22 Show GitHub Exploit DB Packet Storm
4297 6.5 警告
Network 		pypdf project pypdf pypdf projectのpypdfにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-41314 2026-04-30 12:26 2026-04-22 Show GitHub Exploit DB Packet Storm
4298 5.4 警告
Network 		mintplexlabs anythingllm mintplexlabsのanythingllmにおける複数の脆弱性 CWE-116
CWE-1336
CWE-79
CVE-2026-41318 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
4299 9.1 緊急
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける複数の脆弱性 CWE-200
CWE-918
CVE-2026-41323 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
4300 7.5 重要
Network 		Patrick Juchli (patrickjuchli) Basic FTP Patrick Juchli (patrickjuchli)のBasic FTPにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-41324 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314931 6.1 MEDIUM
Network 		dh9sb.dx-info adif_log_search_widget Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in M. Konieczny, DH9SB ADIF Log Search Widget allows Reflected XSS.This issue affects ADIF Lo… CWE-79
Cross-site Scripting 		CVE-2024-49238 2024-10-22 02:02 2024-10-18 Show GitHub Exploit DB Packet Storm
314932 6.1 MEDIUM
Network 		harpreetsingh ajax_custom_css\/js Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Harpreet Singh Ajax Custom CSS/JS allows Reflected XSS.This issue affects Ajax Custom CSS/… CWE-79
Cross-site Scripting 		CVE-2024-49230 2024-10-22 01:37 2024-10-18 Show GitHub Exploit DB Packet Storm
314933 6.1 MEDIUM
Network 		maheshpatel mitm_bug_tracker Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mahesh Patel Mitm Bug Tracker allows Reflected XSS.This issue affects Mitm Bug Tracker: fr… CWE-79
Cross-site Scripting 		CVE-2024-49224 2024-10-22 01:31 2024-10-18 Show GitHub Exploit DB Packet Storm
314934 6.5 MEDIUM
Network 		oracle mysql Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/ODBC). Supported versions that are affected are 9.0.0 and prior. Easily exploitable vulnerability allows unauthent… NVD-CWE-noinfo
CVE-2024-21262 2024-10-22 01:28 2024-10-16 Show GitHub Exploit DB Packet Storm
314935 6.1 MEDIUM
Network 		nikhilvaghela add_categories_post_footer Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Nikhil Vaghela Add Categories Post Footer allows Reflected XSS.This issue affects Add Cate… CWE-79
Cross-site Scripting 		CVE-2024-49239 2024-10-22 01:26 2024-10-18 Show GitHub Exploit DB Packet Storm
314936 6.1 MEDIUM
Network 		agustinberasategui ab_categories_search_widget Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Agustin Berasategui AB Categories Search Widget allows Reflected XSS.This issue affects AB… CWE-79
Cross-site Scripting 		CVE-2024-49240 2024-10-22 01:25 2024-10-18 Show GitHub Exploit DB Packet Storm
314937 3.5 LOW
Network 		oracle xml_database Vulnerability in the XML Database component of Oracle Database Server. Supported versions that are affected are 19.3-19.24, 21.3-21.15 and 23.4-23.5. Easily exploitable vulnerability allows low pri… NVD-CWE-noinfo
CVE-2024-21242 2024-10-22 01:17 2024-10-16 Show GitHub Exploit DB Packet Storm
314938 5.4 MEDIUM
Network 		oracle peoplesoft_enterprise Vulnerability in the PeopleSoft Enterprise ELM Enterprise Learning Management product of Oracle PeopleSoft (component: Enterprise Learning Management). The supported version that is affected is 9.2… NVD-CWE-noinfo
CVE-2024-21286 2024-10-22 01:16 2024-10-16 Show GitHub Exploit DB Packet Storm
314939 2.4 LOW
Network 		microfocus application_automation_tools Improper Validation of Specified Quantity in Input vulnerability in OpenText OpenText Application Automation Tools allows Exploiting Incorrectly Configured Access Control Security Levels. Multiple … NVD-CWE-noinfo
CVE-2024-4211 2024-10-22 01:15 2024-10-17 Show GitHub Exploit DB Packet Storm
314940 7.5 HIGH
Network 		oracle mysql Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). Supported versions that are affected are 9.0.0 and prior. Difficult to exploit vulnerability allows low p… NVD-CWE-noinfo
CVE-2024-21272 2024-10-22 01:14 2024-10-16 Show GitHub Exploit DB Packet Storm