Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4471	7.7	重要 Network	Istio	Istio	Istioにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41413	2026-05-11 11:09	2026-05-7	Show	GitHub Exploit DB Packet Storm

4472	8.1	重要 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAI等の複数製品におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-41496	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

4473	9.8	緊急 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-41497	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

4474	9.8	緊急 Network	Electerm project	Electerm	Electerm projectのElectermにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-41500	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

4475	9.8	緊急 Network	Electerm project	Electerm	Electerm projectのElectermにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-41501	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

4476	7.8	重要 Local	Sebastian Bergmann	PHPUnit	Sebastian BergmannのPHPUnitにおける複数の脆弱性	CWE-88 CWE-93	CVE-2026-41570	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

4477	7.5	重要 Network	Zcash Foundation	Zebra-chain Zebrad	Zcash FoundationのZebra-chain等の複数製品における到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-41584	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

4478	5.3	警告 Network	projectdiscovery	Nuclei	ProjectDiscovery, Inc.のNucleiにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41645	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

4479	5.5	警告 Local	projectdiscovery	Nuclei	ProjectDiscovery, Inc.のNucleiにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41646	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

4480	8.1	重要 Network		-	OpenC3のOpenC3 COSMOSにおける未検証のパスワード変更に関する脆弱性	CWE-620 未検証のパスワード変更	CVE-2026-42084	2026-05-11 11:09	2026-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313551	5.4	MEDIUM Network	eyoucms	eyoucms	A vulnerability was found in EyouCMS 1.51. It has been rated as critical. This issue affects the function editFile of the file application/admin/logic/FilemanagerLogic.php. The manipulation of the ar…	CWE-22 Path Traversal	CVE-2024-11210	2024-11-20 03:42	2024-11-15	Show	GitHub Exploit DB Packet Storm

313552	6.5	MEDIUM Network	craftcms	craft_cms	Craft is a content management system (CMS). The dataUrl function can be exploited if an attacker has write permissions on system notification templates. This function accepts an absolute file path, r…	CWE-22 CWE-552 Path Traversal Files or Directories Accessible to External Parties	CVE-2024-52292	2024-11-20 03:27	2024-11-14	Show	GitHub Exploit DB Packet Storm

313553	-		-	-	In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix possible exec queue leak in exec IOCTL In a couple of places after an exec queue is looked up the exec IOCTL returns …	-	CVE-2024-53087	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313554	-		-	-	In the Linux kernel, the following vulnerability has been resolved: drm/xe: Drop VM dma-resv lock on xe_sync_in_fence_get failure in exec IOCTL Upon failure all locks need to be dropped before retu…	-	CVE-2024-53086	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313555	-		-	-	In the Linux kernel, the following vulnerability has been resolved: tpm: Lock TPM chip in tpm_pm_suspend() first Setting TPM_CHIP_FLAG_SUSPENDED in the end of tpm_pm_suspend() can be racy according…	-	CVE-2024-53085	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313556	-		-	-	In the Linux kernel, the following vulnerability has been resolved: usb: typec: qcom-pmic: init value of hdr_len/txbuf_len earlier If the read of USB_PDPHY_RX_ACKNOWLEDGE_REG failed, then hdr_len a…	-	CVE-2024-53083	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313557	-		-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported acpi_evaluate_object() may return AE_NOT_FOUND (failure), w…	-	CVE-2024-53060	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313558	-		-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() 1. The size of the response packet is not validated. 2. …	-	CVE-2024-53059	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313559	-		-	-	In the Linux kernel, the following vulnerability has been resolved: drm/imagination: Break an object reference loop When remaining resources are being cleaned up on driver close, outstanding VM map…	-	CVE-2024-53084	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313560	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ice: fix crash on probe for DPLL enabled E810 LOM The E810 Lan On Motherboard (LOM) design is vendor specific. Intel provides the…	-	CVE-2024-53048	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm