Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5541 5.5 警告
Local 		projectdiscovery Nuclei ProjectDiscovery, Inc.のNucleiにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41646 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
5542 8.1 重要
Network 		- OpenC3のOpenC3 COSMOSにおける未検証のパスワード変更に関する脆弱性 CWE-620
未検証のパスワード変更 		CVE-2026-42084 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
5543 4.3 警告
Network 		- OpenC3のOpenC3 COSMOSにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-42085 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
5544 4.6 警告
Network 		- OpenC3のOpenC3 COSMOSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42086 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
5545 9.6 緊急
Network 		- OpenC3のOpenC3 COSMOSにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-42087 2026-05-11 11:09 2026-05-4 Show GitHub Exploit DB Packet Storm
5546 9.8 緊急
Network 		litellm litellm LiteLLMにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-42208 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
5547 9.1 緊急
Network 		OpenEXR OpenEXR OpenEXRにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-42216 2026-05-11 11:09 2026-05-7 Show GitHub Exploit DB Packet Storm
5548 9.8 緊急
Network 		OpenEXR OpenEXR OpenEXRにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-42217 2026-05-11 11:09 2026-05-7 Show GitHub Exploit DB Packet Storm
5549 8.8 重要
Network 		litellm litellm LiteLLMにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-42271 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
5550 8.7 重要
Network 		NetFoundry zrok NetFoundryのzrokにおける複数の脆弱性 CWE-22
CWE-61
CVE-2026-42275 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314851 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc Commit 15c7fab0e047 ("ASoC: qcom: Move Soundwire runtime stream al… CWE-476
 NULL Pointer Dereference 		CVE-2024-50105 2024-11-13 00:06 2024-11-6 Show GitHub Exploit DB Packet Storm
314852 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: sdm845: add missing soundwire runtime stream alloc During the migration of Soundwire runtime stream allocation from t… CWE-476
 NULL Pointer Dereference 		CVE-2024-50104 2024-11-13 00:05 2024-11-6 Show GitHub Exploit DB Packet Storm
314853 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices Previously, the domain_context_clear() function incorrectl… NVD-CWE-noinfo
CVE-2024-50101 2024-11-12 23:59 2024-11-6 Show GitHub Exploit DB Packet Storm
314854 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: USB: gadget: dummy-hcd: Fix "task hung" problem The syzbot fuzzer has been encountering "task hung" problems ever since the dummy… NVD-CWE-noinfo
CVE-2024-50100 2024-11-12 23:57 2024-11-6 Show GitHub Exploit DB Packet Storm
314855 - - - A vulnerability was found in AMTT Hotel Broadband Operation System up to 3.0.3.151204. It has been classified as critical. Affected is an unknown function of the file /manager/frontdesk/online_status… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-11051 2024-11-12 22:56 2024-11-10 Show GitHub Exploit DB Packet Storm
314856 - - - Cross-Site Request Forgery (CSRF) vulnerability in Chaser324 Featured Posts Scroll allows Stored XSS.This issue affects Featured Posts Scroll: from n/a through 1.25. CWE-352
 Origin Validation Error 		CVE-2024-51647 2024-11-12 22:56 2024-11-9 Show GitHub Exploit DB Packet Storm
314857 - - - The SysBasics Customize My Account for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in all versions up to, and including, 2.7.29 due to ins… CWE-79
Cross-site Scripting 		CVE-2024-10837 2024-11-12 22:56 2024-11-9 Show GitHub Exploit DB Packet Storm
314858 7.3 HIGH
Network 		- - The The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.4.2.2. This is due to the soft… CWE-94
Code Injection 		CVE-2024-10640 2024-11-12 22:56 2024-11-9 Show GitHub Exploit DB Packet Storm
314859 4.3 MEDIUM
Network 		- - The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the get_content_type function in includes/widgets… CWE-200
Information Exposure 		CVE-2024-10352 2024-11-12 22:56 2024-11-9 Show GitHub Exploit DB Packet Storm
314860 7.3 HIGH
Network 		- - The The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and… CWE-94
Code Injection 		CVE-2024-10261 2024-11-12 22:56 2024-11-9 Show GitHub Exploit DB Packet Storm