Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4491 7.5 重要
Network 		osrg GoBGP osrgのGoBGPにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-37461 2026-05-13 10:25 2026-05-4 Show GitHub Exploit DB Packet Storm
4492 3.7
Network 		GNU Project
レッドハット		 GnuTLS
Red Hat Hardened Images
Red Hat OpenShift Container Platform
Red Hat Enterprise Linux 		GNU Project等の複数ベンダの製品における動作順序:早期検証に関する脆弱性 CWE-179
不適切な動作順序:早期検証 		CVE-2026-3832 2026-05-13 10:25 2026-04-30 Show GitHub Exploit DB Packet Storm
4493 5.4 警告
Network 		Weblate Weblate Weblateにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-41519 2026-05-13 10:25 2026-05-7 Show GitHub Exploit DB Packet Storm
4494 7.1 重要
Network 		monetr monetr monetrにおける複数の脆弱性 CWE-209
CWE-770
CWE-918
CWE-918
CVE-2026-41644 2026-05-13 10:25 2026-05-7 Show GitHub Exploit DB Packet Storm
4495 8.1 重要
Network 		Weblate Weblate Weblateにおける複数の脆弱性 CWE-20
CWE-918
CVE-2026-41654 2026-05-13 10:24 2026-05-7 Show GitHub Exploit DB Packet Storm
4496 6.1 警告
Network 		LangGenius Dify LangGeniusのDifyにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42138 2026-05-13 10:24 2026-05-4 Show GitHub Exploit DB Packet Storm
4497 7.5 重要
Network 		Prometheus Prometheus Prometheusにおける複数の脆弱性 CWE-200
CWE-312
CVE-2026-42151 2026-05-13 10:24 2026-05-4 Show GitHub Exploit DB Packet Storm
4498 7.5 重要
Network 		Prometheus Prometheus Prometheusにおける複数の脆弱性 CWE-400
CWE-789
CVE-2026-42154 2026-05-13 10:24 2026-05-4 Show GitHub Exploit DB Packet Storm
4499 8.8 重要
Network 		gitpython project gitpython gitpython projectのgitpythonにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42215 2026-05-13 10:24 2026-05-7 Show GitHub Exploit DB Packet Storm
4500 7.5 重要
Network 		osrg GoBGP osrgのGoBGPにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-42285 2026-05-13 10:24 2026-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313451 6.1 MEDIUM
Network 		cleancoder fitnesse Cross-site scripting vulnerability exists in FitNesse releases prior to 20241026. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is using t… CWE-79
Cross-site Scripting 		CVE-2024-39610 2024-11-21 00:02 2024-11-15 Show GitHub Exploit DB Packet Storm
313452 6.1 MEDIUM
Network 		wpplugins hide_my_wp_ghost The Hide My WP Ghost – Security & Firewall plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the URL in all versions up to, and including, 5.3.01 due to insufficient input sani… CWE-79
Cross-site Scripting 		CVE-2024-10825 2024-11-21 00:01 2024-11-15 Show GitHub Exploit DB Packet Storm
313453 4.3 MEDIUM
Network 		moodle moodle A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify. CWE-863
 Incorrect Authorization 		CVE-2024-48897 2024-11-20 23:48 2024-11-18 Show GitHub Exploit DB Packet Storm
313454 4.3 MEDIUM
Network 		moodle moodle A vulnerability was found in Moodle. It is possible for users with the "send message" capability to view other users' names that they may not otherwise have access to via an error message in Messagin… CWE-209
Information Exposure Through an Error Message 		CVE-2024-48896 2024-11-20 23:47 2024-11-18 Show GitHub Exploit DB Packet Storm
313455 4.3 MEDIUM
Network 		moodle moodle A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from. CWE-862
 Missing Authorization 		CVE-2024-48898 2024-11-20 23:46 2024-11-18 Show GitHub Exploit DB Packet Storm
313456 4.3 MEDIUM
Network 		moodle moodle A vulnerability was found in Moodle. Additional checks are required to ensure users can only access the schedule of a report if they have permission to edit that report. CWE-863
 Incorrect Authorization 		CVE-2024-48901 2024-11-20 23:45 2024-11-18 Show GitHub Exploit DB Packet Storm
313457 9.8 CRITICAL
Network 		really-simple-plugins really_simple_security The Really Simple Security (Free, Pro, and Pro Multisite) plugins for WordPress are vulnerable to authentication bypass in versions 9.0.0 to 9.1.1.1. This is due to improper user check error handling… CWE-306
Missing Authentication for Critical Function 		CVE-2024-10924 2024-11-20 23:44 2024-11-15 Show GitHub Exploit DB Packet Storm
313458 5.4 MEDIUM
Network 		librenms librenms LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Custom OID" tab of a device allows authenticated users to inject … CWE-79
Cross-site Scripting 		CVE-2024-51497 2024-11-20 23:41 2024-11-16 Show GitHub Exploit DB Packet Storm
313459 5.4 MEDIUM
Network 		librenms librenms LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the Device Overview page allows authenticated users to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2024-51495 2024-11-20 23:41 2024-11-16 Show GitHub Exploit DB Packet Storm
313460 5.4 MEDIUM
Network 		librenms librenms LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Port Settings" page allows authenticated users to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2024-51494 2024-11-20 23:40 2024-11-16 Show GitHub Exploit DB Packet Storm