Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
471 9.9 緊急
Network 		Apache Software Foundation Polaris Apache Software FoundationのPolarisにおける複数の脆弱性 New CWE-116
CWE-20
CVE-2026-42810 2026-05-14 10:12 2026-05-4 Show GitHub Exploit DB Packet Storm
472 9.9 緊急
Network 		Apache Software Foundation Polaris Apache Software FoundationのPolarisにおける複数の脆弱性 New CWE-20
CWE-917
CVE-2026-42811 2026-05-14 10:12 2026-05-4 Show GitHub Exploit DB Packet Storm
473 9.9 緊急
Network 		Apache Software Foundation Polaris Apache Software FoundationのPolarisにおける複数の脆弱性 New CWE-20
CWE-284
CWE-732
CWE-863
CVE-2026-42812 2026-05-14 10:12 2026-05-4 Show GitHub Exploit DB Packet Storm
474 7.5 重要
Network 		Open JS Foundation fast-uri Open JS Foundationのfast-uriにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-6321 2026-05-14 10:12 2026-05-4 Show GitHub Exploit DB Packet Storm
475 7.5 重要
Network 		Open JS Foundation fast-uri Open JS Foundationのfast-uriにおける解釈の競合に関する脆弱性 New CWE-436
解釈の競合 		CVE-2026-6322 2026-05-14 10:12 2026-05-5 Show GitHub Exploit DB Packet Storm
476 4.8 警告
Network 		KDDI Androidアプリ「あんしんフィルター for au」 Androidアプリ「あんしんフィルター for au」における重要情報の平文送信の脆弱性 CWE-Other
その他 		CVE-2026-41281 2026-05-13 12:14 2026-05-13 Show GitHub Exploit DB Packet Storm
477 7.8 重要
Local 		Bytello Ltd. Bytello Share(Windows版) Bytello Share(Windows版)のEXE形式インストーラにおけるDLL読み込みに関する脆弱性 CWE-Other
その他 		CVE-2026-44612 2026-05-13 12:05 2026-05-13 Show GitHub Exploit DB Packet Storm
478 6.5 警告
Network 		whatsapp whatsapp whatsappにおけるNULL バイトまたは NULL キャラクタの無害化に関する脆弱性 CWE-158
NULL バイトまたは NULL キャラクタの不適切な無害化 		CVE-2026-23863 2026-05-13 10:27 2026-05-1 Show GitHub Exploit DB Packet Storm
479 4.3 警告
Network 		whatsapp whatsapp whatsappにおける通信チャネルの送信元の不適切な検証に関する脆弱性 CWE-940
通信チャネルの送信元の不適切な検証 		CVE-2026-23866 2026-05-13 10:27 2026-05-1 Show GitHub Exploit DB Packet Storm
480 7.5 重要
Network 		Postfix Project postfix Postfix Projectのpostfixにおける境界条件の判定に関する脆弱性 CWE-193
境界条件の判定 		CVE-2026-43964 2026-05-13 10:27 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312151 - - - Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. An attacker can potentially replace the cont… CWE-200
Information Exposure 		CVE-2024-42351 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm
312152 - - - Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. The editor visualization, /visualizations en… CWE-79
Cross-site Scripting 		CVE-2024-42346 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm
312153 - - - Cross Site Scripting vulnerability in Leotheme Leo Product Search Module v.2.1.6 and earlier allows a remote attacker to execute arbitrary code via the q parameter of the product search function. - CVE-2024-42697 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm
312154 - - - The Versa Director offers REST APIs for orchestration and management. By design, certain APIs, such as the login screen, banner display, and device registration, do not require authentication. Howeve… - CVE-2024-45229 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm
312155 - - - Arc before 2024-08-26 allows remote code execution in JavaScript boosts. Boosts that run JavaScript cannot be shared by default; however (because of misconfigured Firebase ACLs), it is possible to cr… - CVE-2024-45489 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm
312156 - - - A vulnerability classified as critical has been found in Codezips Internal Marks Calculation 1.0. Affected is an unknown function of the file index.php. The manipulation of the argument tid leads to … CWE-89
SQL Injection 		CVE-2024-9037 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm
312157 - - - A vulnerability was found in itsourcecode Online Bookstore 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin_add.php. The manipulation of the argument i… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-9036 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm
312158 - - - Tenda AC8v4 V16.03.34.06 has a stack overflow vulnerability in the fromAdvSetMacMtuWan function. - CVE-2024-46652 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm
312159 - - - A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/login.php of the component Admin Login… CWE-89
SQL Injection 		CVE-2024-9035 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm
312160 - - - A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php. The manipulatio… CWE-89
SQL Injection 		CVE-2024-9034 2024-09-26 22:32 2024-09-21 Show GitHub Exploit DB Packet Storm