Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
711 9.8 緊急
Network 		Mercurycom MIPC252W Firmware MercurycomのMIPC252W Firmwareにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2026-35903 2026-05-7 10:53 2026-04-27 Show GitHub Exploit DB Packet Storm
712 4.8 警告
Network 		Apache Software Foundation Apache Storm Prometheus Reporter Apache Software FoundationのApache Storm Prometheus Reporterにおける証明書検証に関する脆弱性 New CWE-295
不正な証明書検証 		CVE-2026-40557 2026-05-7 10:53 2026-04-27 Show GitHub Exploit DB Packet Storm
713 8.8 重要
Network 		minerva minerva Agilonhealth (MphRx)のMinervaにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-5779 2026-05-7 10:53 2026-04-28 Show GitHub Exploit DB Packet Storm
714 8.1 重要
Network 		minerva minerva Agilonhealth (MphRx)のMinervaにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-5780 2026-05-7 10:52 2026-04-28 Show GitHub Exploit DB Packet Storm
715 8.8 重要
Network 		Frappe ERPNext FrappeのERPNextにおけるコードインジェクションの脆弱性 New CWE-94
コード・インジェクション 		CVE-2023-54345 2026-05-7 10:52 2026-05-5 Show GitHub Exploit DB Packet Storm
716 7.5 重要
Network 		OpenEMR OpenEMR OpenEMRにおける過度な認証試行の不適切な制限に関する脆弱性 New CWE-307
過度な認証試行の不適切な制限 		CVE-2023-54347 2026-05-7 10:52 2026-05-5 Show GitHub Exploit DB Packet Storm
717 7.2 重要
Network 		デル data domain operating system デルのdata domain operating systemにおける認証に関する脆弱性 New CWE-287
CWE-noinfo
CVE-2025-46607 2026-05-7 10:52 2026-04-17 Show GitHub Exploit DB Packet Storm
718 6.6 警告
Network 		デル data domain operating system デルのdata domain operating systemにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2025-46641 2026-05-7 10:52 2026-04-17 Show GitHub Exploit DB Packet Storm
719 8.8 重要
Adjacent 		Google Android GoogleのAndroidにおける認証アルゴリズムの不適切な実装に関する脆弱性 New CWE-303
認証アルゴリズム上の問題 		CVE-2026-0073 2026-05-7 10:52 2026-05-4 Show GitHub Exploit DB Packet Storm
720 8 重要
Adjacent 		SonicWALL SonicOS SonicWALLのSonicOSにおける複数の脆弱性 New CWE-1390
CWE-306
CVE-2026-0204 2026-05-7 10:52 2026-04-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312841 8.8 HIGH
Network 		dedebiz dedebiz A vulnerability was found in DedeBIZ 6.3.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file admin/media_add.php of the component File Extensio… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-7903 2024-08-21 04:34 2024-08-18 Show GitHub Exploit DB Packet Storm
312842 6.1 MEDIUM
Network 		public_knowledge_project open_journal_systems A vulnerability was found in pkp ojs up to 3.4.0-6 and classified as problematic. Affected by this issue is some unknown functionality of the file /login/signOut. The manipulation of the argument sou… CWE-601
Open Redirect 		CVE-2024-7902 2024-08-21 04:34 2024-08-18 Show GitHub Exploit DB Packet Storm
312843 5.4 MEDIUM
Network 		scada-lts scada-lts A vulnerability has been found in Scada-LTS 2.7.8 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /Scada-LTS/app.shtm#/alarms/Scada of the compon… CWE-79
Cross-site Scripting 		CVE-2024-7901 2024-08-21 04:32 2024-08-18 Show GitHub Exploit DB Packet Storm
312844 4.8 MEDIUM
Network 		tpmecms tpmecms A vulnerability, which was classified as problematic, was found in xiaohe4966 TpMeCMS 1.3.3.2. Affected is an unknown function of the file /h.php/general/config?ref=addtabs of the component Basic Con… CWE-79
Cross-site Scripting 		CVE-2024-7900 2024-08-21 04:32 2024-08-18 Show GitHub Exploit DB Packet Storm
312845 7.2 HIGH
Network 		innocms innocms A vulnerability, which was classified as critical, has been found in InnoCMS 0.3.1. This issue affects some unknown processing of the file /panel/pages/1/edit of the component Backend. The manipulati… CWE-94
Code Injection 		CVE-2024-7899 2024-08-21 04:32 2024-08-18 Show GitHub Exploit DB Packet Storm
312846 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: hwmon: (ltc2991) re-order conditions to fix off by one bug LTC2991_T_INT_CH_NR is 4. The st->temp_en[] array has LTC2991_MAX_CHA… CWE-193
 Off-by-one Error 		CVE-2024-43852 2024-08-21 04:32 2024-08-17 Show GitHub Exploit DB Packet Storm
312847 4.4 MEDIUM
Local 		paloaltonetworks pan-os An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local system administrator to unintentionally disclose secrets, passwords, and tokens of external systems. A read… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2024-5916 2024-08-21 04:30 2024-08-15 Show GitHub Exploit DB Packet Storm
312848 5.4 MEDIUM
Network 		stitionai devika A stored cross site scripting vulnerabilities exists in DevikaAI from commit 6acce21fb08c3d1123ef05df6a33912bf0ee77c2 onwards via improperly decoded user input. CWE-79
Cross-site Scripting 		CVE-2024-7790 2024-08-21 04:27 2024-08-14 Show GitHub Exploit DB Packet Storm
312849 4.3 MEDIUM
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_advanced_web_application_firewall
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_secur… 		Undisclosed requests to BIG-IP iControl REST can lead to information leak of user account names.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. NVD-CWE-noinfo
CVE-2024-41723 2024-08-21 04:26 2024-08-15 Show GitHub Exploit DB Packet Storm
312850 7.8 HIGH
Local 		adobe acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc 		Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context … CWE-416
 Use After Free 		CVE-2024-39383 2024-08-21 04:26 2024-08-15 Show GitHub Exploit DB Packet Storm