Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
751	6.4	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-24316	2026-06-5 10:48	2026-03-10	Show	GitHub Exploit DB Packet Storm

752	8.2	重要 Network	Accellion	Kiteworks Core	AccellionのKiteworks Coreにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-24751	2026-06-5 10:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

753	8.2	重要 Network	Accellion	Kiteworks Core	AccellionのKiteworks Coreにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-24752	2026-06-5 10:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

754	6.5	警告 Network	Accellion	Kiteworks Core	AccellionのKiteworks Coreにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-24753	2026-06-5 10:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

755	5.4	警告 Network	Accellion	Kiteworks Core	AccellionのKiteworks Coreにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-24754	2026-06-5 10:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

756	5.4	警告 Network	Accellion	Kiteworks Core	AccellionのKiteworks Coreにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-24755	2026-06-5 10:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

757	4.3	警告 Network	Accellion	Kiteworks Core	AccellionのKiteworks Coreにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-24756	2026-06-5 10:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

758	4.3	警告 Network	Accellion	Kiteworks Core	AccellionのKiteworks Coreにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-24761	2026-06-5 10:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

759	8.8	重要 Network	Accellion	Kiteworks Core	AccellionのKiteworks CoreにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-24782	2026-06-5 10:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

760	5.3	警告 Network	レッドハット	build of keycloak	レッドハットのbuild of keycloakにおける高圧縮データの処理 (データ増幅)に関する脆弱性	CWE-409 高圧縮データの不適切な処理 (データ増幅)	CVE-2026-2575	2026-06-5 10:48	2026-03-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319351	-		-	-	An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.	-	CVE-2024-32842	2024-09-12 11:15	2024-09-12	Show	GitHub Exploit DB Packet Storm

319352	-		-	-	An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.	-	CVE-2024-32840	2024-09-12 11:15	2024-09-12	Show	GitHub Exploit DB Packet Storm

319353	-		-	-	Deserialization of untrusted data in the agent portal of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to achieve remote code execution.	-	CVE-2024-29847	2024-09-12 11:15	2024-09-12	Show	GitHub Exploit DB Packet Storm

319354	-		-	-	A vulnerability was found in ?????????? Yunke Online School System up to 3.0.6. It has been declared as problematic. This vulnerability affects the function downfile of the file application/admin/con…	CWE-22 Path Traversal	CVE-2024-8707	2024-09-12 10:15	2024-09-12	Show	GitHub Exploit DB Packet Storm

319355	7.3	HIGH Local	microsoft	office publisher	Microsoft Publisher Security Feature Bypass Vulnerability	NVD-CWE-noinfo	CVE-2024-38226	2024-09-12 10:00	2024-09-11	Show	GitHub Exploit DB Packet Storm

319356	-		-	-	A vulnerability was found in JFinalCMS up to 20240903. It has been classified as problematic. This affects the function update of the file /admin/template/update of the component com.cms.util.Templat…	CWE-22 Path Traversal	CVE-2024-8706	2024-09-12 09:15	2024-09-12	Show	GitHub Exploit DB Packet Storm

319357	-		-	-	Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.1.0.0 and 9.3.0.8, including 8.3.x, discloses database passwords when searching metadata injectable fields.	-	CVE-2024-28981	2024-09-12 09:15	2024-09-12	Show	GitHub Exploit DB Packet Storm

319358	6.1	MEDIUM Network	friendica	friendica	Cross Site Scripting vulnerability in Friendica v.2023.12 allows a remote attacker to obtain sensitive information via the location parameter of the calendar event feature.	CWE-79 Cross-site Scripting	CVE-2024-27729	2024-09-12 05:29	2024-08-16	Show	GitHub Exploit DB Packet Storm

319359	6.5	MEDIUM Network	elastic	apm_server	APM server logs contain document body from a partially failed bulk index request. For example, in case of unavailable_shards_exception for a specific document, since the ES response line contains the…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-37286	2024-09-12 05:20	2024-08-4	Show	GitHub Exploit DB Packet Storm

319360	9.8	CRITICAL Network	angeljudesuarez	airline_reservation_system	A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as critical. Affected by this issue is the function save_settings of the file admin/admin_class.php. The ma…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-7500	2024-09-12 05:07	2024-08-6	Show	GitHub Exploit DB Packet Storm