Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
41 8.8 重要
Network 		n8n n8n n8nにおけるSQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2026-42237 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
42 9.8 緊急
Network 		nginxui Nginx UI Nginx UI TeamのNginx UIにおけるコードインジェクションの脆弱性 New CWE-94
コード・インジェクション 		CVE-2026-42238 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
43 7.7 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2026-42438 2026-05-8 12:22 2026-05-5 Show GitHub Exploit DB Packet Storm
44 8.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける複数の脆弱性 New CWE-862
CWE-918
CVE-2026-42439 2026-05-8 12:22 2026-05-5 Show GitHub Exploit DB Packet Storm
45 7.5 重要
Network 		Apache Software Foundation Apache OpenNLP Apache Software FoundationのApache OpenNLPにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 New CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-42440 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
46 6.1 警告
Network 		Apache Software Foundation Apache Wicket Apache Software FoundationのApache Wicketにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42509 2026-05-8 12:22 2026-05-6 Show GitHub Exploit DB Packet Storm
47 4.3 警告
Network 		Jenkins プロジェクト Script Security JenkinsのScript Securityにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-42519 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
48 7.5 重要
Network 		Jenkins プロジェクト Credentials Binding JenkinsのCredentials Bindingにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-42520 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
49 6.5 警告
Network 		Jenkins プロジェクト Matrix Authorization Strategy JenkinsのMatrix Authorization Strategyにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-42521 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
50 4.3 警告
Network 		Jenkins プロジェクト GitHub Branch Source JenkinsのGitHub Branch Sourceにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-42522 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312591 - - - A vulnerability classified as problematic was found in Grocy up to 4.2.0. This vulnerability affects unknown code of the file /api/files/recipepictures/ of the component SVG File Upload Handler. The … CWE-79
Cross-site Scripting 		CVE-2024-8370 2024-09-3 23:15 2024-09-2 Show GitHub Exploit DB Packet Storm
312592 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: usb: qmi_wwan: fix memory leak for not ip packets Free the unused skb when not ip packets arrive. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-43861 2024-09-3 22:45 2024-08-21 Show GitHub Exploit DB Packet Storm
312593 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: wan: fsl_qmc_hdlc: Convert carrier_lock spinlock to a mutex The carrier_lock spinlock protects the carrier detection. While … CWE-667
 Improper Locking 		CVE-2024-43862 2024-09-3 22:44 2024-08-21 Show GitHub Exploit DB Packet Storm
312594 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix a deadlock in dma buf fence polling Introduce a version of the fence ops that on release doesn't remove the fence… CWE-667
 Improper Locking 		CVE-2024-43863 2024-09-3 22:42 2024-08-21 Show GitHub Exploit DB Packet Storm
312595 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: devres: Fix memory leakage caused by driver API devm_free_percpu() It will cause memory leakage when use driver API devm_free_per… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-43871 2024-09-3 22:39 2024-08-21 Show GitHub Exploit DB Packet Storm
312596 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix soft lockup under heavy CEQE load CEQEs are handled in interrupt handler currently. This may cause the CPU core sta… CWE-667
 Improper Locking 		CVE-2024-43872 2024-09-3 22:38 2024-08-21 Show GitHub Exploit DB Packet Storm
312597 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: vhost/vsock: always initialize seqpacket_allow There are two issues around seqpacket_allow: 1. seqpacket_allow is not initialized… CWE-909
 Missing Initialization of Resource 		CVE-2024-43873 2024-09-3 22:35 2024-08-21 Show GitHub Exploit DB Packet Storm
312598 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix null pointer dereference in __sev_snp_shutdown_locked Fix a null pointer dereference induced by DEBUG_TEST_DRIV… CWE-476
 NULL Pointer Dereference 		CVE-2024-43874 2024-09-3 22:26 2024-08-21 Show GitHub Exploit DB Packet Storm
312599 7.0 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: exec: Fix ToCToU between perm check and set-uid/gid usage When opening a file for exec via do_filp_open(), permission checking is… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2024-43882 2024-09-3 22:25 2024-08-21 Show GitHub Exploit DB Packet Storm
312600 - - - Rejected reason: Duplicate of CVE-2024-45305. - CVE-2024-8371 2024-09-3 22:15 2024-09-3 Show GitHub Exploit DB Packet Storm