Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
791 7.2 重要
Network 		フォーティネット FortiMail フォーティネットのFortiMailにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-53681 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
792 8.8 重要
Network 		フォーティネット FortiOS フォーティネットのFortiOSにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2025-53844 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
793 6.7 警告
Local 		フォーティネット FortiAP
FortiAP-W2 		フォーティネットのFortiAP-W2等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-53870 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
794 5.3 警告
Network 		strapi strapi strapiにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2025-64526 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
795 5.3 警告
Network 		フォーティネット FortiManager
FortiAnalyzer 		フォーティネットのFortiAnalyzer等の複数製品における潜在的に危険な関数の使用に関する脆弱性 CWE-676
潜在的に危険な関数の使用 		CVE-2025-67604 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
796 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-1184 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
797 8.1 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるビジネスロジックエラーに関する脆弱性 CWE-840
ビジネスロジックエラー 		CVE-2026-1322 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
798 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-1338 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
799 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-1659 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
800 10 緊急
Network 		シスコシステムズ Cisco SD-WAN vSmart Controller シスコシステムズのCisco Catalyst SD-WAN Manager等の複数製品における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-20182 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311531 7.5 HIGH
Network 		- - An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker sending a specifically … CWE-125
Out-of-bounds Read 		CVE-2024-39516 2024-10-17 07:15 2024-10-10 Show GitHub Exploit DB Packet Storm
311532 8.8 HIGH
Network 		blood_bank_system_project blood_bank_system A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file reset.php. The manipulation of the argument useremail … CWE-89
SQL Injection 		CVE-2024-9894 2024-10-17 07:13 2024-10-12 Show GitHub Exploit DB Packet Storm
311533 5.4 MEDIUM
Network 		oretnom23 online_eyewear_shop A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /admin/?page=inventory/view_inventory&id=2. The … CWE-79
Cross-site Scripting 		CVE-2024-9906 2024-10-17 07:12 2024-10-13 Show GitHub Exploit DB Packet Storm
311534 8.8 HIGH
Network 		oretnom23 online_eyewear_shop A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This issue affects some unknown processing of the file /admin/?page=inventory/view_invento… CWE-89
SQL Injection 		CVE-2024-9905 2024-10-17 07:12 2024-10-13 Show GitHub Exploit DB Packet Storm
311535 9.8 CRITICAL
Network 		usualtool usualtoolcms A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipula… CWE-78
OS Command  		CVE-2024-9916 2024-10-17 07:11 2024-10-14 Show GitHub Exploit DB Packet Storm
311536 9.8 CRITICAL
Network 		ragic enterprise_cloud_database Enterprise Cloud Database from Ragic does not authenticate access to specific functionality, allowing unauthenticated remote attackers to use this functionality to obtain any user's session cookie. CWE-306
Missing Authentication for Critical Function 		CVE-2024-9984 2024-10-17 07:03 2024-10-15 Show GitHub Exploit DB Packet Storm
311537 7.5 HIGH
Network 		ragic enterprise_cloud_database Enterprise Cloud Database from Ragic does not properly validate a specific page parameter, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. CWE-22
Path Traversal 		CVE-2024-9983 2024-10-17 07:03 2024-10-15 Show GitHub Exploit DB Packet Storm
311538 9.8 CRITICAL
Network 		ragic enterprise_cloud_database Enterprise Cloud Database from Ragic does not properly validate the file type for uploads. Attackers with regular privileges can upload a webshell and use it to execute arbitrary code on the remote s… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-9985 2024-10-17 07:02 2024-10-15 Show GitHub Exploit DB Packet Storm
311539 7.1 HIGH
Network 		microsoft windows_server_2022_23h2
windows_10_1809
windows_server_2022
windows_11_21h2
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_22h2
windows_server_… 		Microsoft OpenSSH for Windows Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43581 2024-10-17 06:54 2024-10-9 Show GitHub Exploit DB Packet Storm
311540 7.8 HIGH
Local 		microsoft 365_apps
office_long_term_servicing_channel 		Microsoft Office Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43576 2024-10-17 06:54 2024-10-9 Show GitHub Exploit DB Packet Storm