Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5461	7.5	重要 Network	Google	Android	GoogleのAndroidにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71254	2026-05-12 10:21	2026-05-6	Show	GitHub Exploit DB Packet Storm

5462	7.5	重要 Network	Google	Android	GoogleのAndroidにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71255	2026-05-12 10:21	2026-05-6	Show	GitHub Exploit DB Packet Storm

5463	7.5	重要 Network	Google	Android	GoogleのAndroidにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71256	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

5464	8.8	重要 Network	CERN	Rucio	CERNのRucioにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-29080	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

5465	8.8	重要 Network	CERN	Rucio	CERNのRucioにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-29090	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

5466	7.1	重要 Network	vLLM	vLLM	vLLMにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-34760	2026-05-12 10:20	2026-04-2	Show	GitHub Exploit DB Packet Storm

5467	8.8	重要 Network	OpenMRS	OpenMRS	OpenMRSにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40076	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

5468	9.1	緊急 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける引数の挿入または変更に関する脆弱性	CWE-88 引数の挿入または変更	CVE-2026-40281	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

5469	5.4	警告 Network	PHPOffice	PhpSpreadsheet	PHPOfficeのPhpSpreadsheetにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40296	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

5470	6.8	警告 Network	Project Jupyter	Jupyter Server	Project JupyterのJupyter Serverにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-40934	2026-05-12 10:20	2026-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314031	4.9	MEDIUM Network	ivanti	connect_secure policy_secure	A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker with admin privileges to cause a…	CWE-787 Out-of-bounds Write	CVE-2024-47905	2024-11-19 00:08	2024-11-13	Show	GitHub Exploit DB Packet Storm

314032	7.5	HIGH Network	ivanti	avalanche	An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to cause a denial of service.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2024-50321	2024-11-19 00:06	2024-11-13	Show	GitHub Exploit DB Packet Storm

314033	7.5	HIGH Network	ivanti	avalanche	An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to cause a denial of service.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2024-50320	2024-11-19 00:06	2024-11-13	Show	GitHub Exploit DB Packet Storm

314034	7.5	HIGH Network	ivanti	avalanche	An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to cause a denial of service.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2024-50319	2024-11-19 00:06	2024-11-13	Show	GitHub Exploit DB Packet Storm

314035	7.5	HIGH Network	ivanti	avalanche	A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to cause a denial of service.	CWE-476 NULL Pointer Dereference	CVE-2024-50318	2024-11-19 00:06	2024-11-13	Show	GitHub Exploit DB Packet Storm

314036	7.5	HIGH Network	ivanti	avalanche	A null pointer dereference in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to cause a denial of service.	CWE-476 NULL Pointer Dereference	CVE-2024-50317	2024-11-19 00:06	2024-11-13	Show	GitHub Exploit DB Packet Storm

314037	4.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.8. This is due to missing or incorrect nonce validation …	CWE-352 Origin Validation Error	CVE-2024-11143	2024-11-19 00:03	2024-11-13	Show	GitHub Exploit DB Packet Storm

314038	6.1	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'dir' parameter in all versions up to, and including, 2.1.7 due to insufficient input …	CWE-79 Cross-site Scripting	CVE-2024-10684	2024-11-19 00:03	2024-11-13	Show	GitHub Exploit DB Packet Storm

314039	4.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the update_assistant() function in all versions up to,…	CWE-862 Missing Authorization	CVE-2024-10531	2024-11-19 00:02	2024-11-13	Show	GitHub Exploit DB Packet Storm

314040	4.3	MEDIUM Network	kognetiks	kognetiks_chatbot	The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the add_new_assistant() function in all versions up to…	CWE-862 Missing Authorization	CVE-2024-10530	2024-11-18 23:59	2024-11-13	Show	GitHub Exploit DB Packet Storm