Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
801	6.7	警告 Local	VMware	Spring Boot	VMwareのSpring Bootにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-40977	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

802	8.8	重要 Network	VMware	Spring AI	VMwareのSpring AIにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-40978	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

803	6.1	警告 Local	VMware	Spring AI	VMwareのSpring AIにおける安全でない一時ファイルに関する脆弱性	CWE-377 安全でない一時ファイル	CVE-2026-40979	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

804	6.5	警告 Network	VMware	Spring AI	VMwareのSpring AIにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-40980	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

805	5.3	警告 Local	OpenClaw	OpenClaw	OpenClawにおける不完全なブラックリストに関する脆弱性	CWE-184 不完全なブラックリスト	CVE-2026-41332	2026-05-1 10:47	2026-04-23	Show	GitHub Exploit DB Packet Storm

806	4.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性	CWE-497 認可されていない制御領域への重要情報の漏えい	CVE-2026-41339	2026-05-1 10:47	2026-04-23	Show	GitHub Exploit DB Packet Storm

807	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不適切な動作順序（早期増幅）に関する脆弱性	CWE-408 不適切な動作順序（早期増幅）	CVE-2026-41374	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

808	4.6	警告 Adjacent	OpenClaw	OpenClaw	OpenClawにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-41398	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

809	7.5	重要 Network	OpenClaw	OpenClaw	OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41399	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

810	7.5	重要 Network	OpenClaw	OpenClaw	OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41400	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312751	6.5	MEDIUM Network	gitlab	gitlab	Multiple Denial of Service (DoS) conditions has been discovered in GitLab CE/EE affecting all versions starting from 1.0 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 pr…	NVD-CWE-noinfo	CVE-2024-5423	2024-08-30 00:41	2024-08-8	Show	GitHub Exploit DB Packet Storm

312752	9.8	CRITICAL Network	donbermoy	e-commerce_website	A vulnerability has been found in SourceCodester E-Commerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file /Admin/registration.php. The manipulation of th…	CWE-89 SQL Injection	CVE-2024-8217	2024-08-30 00:39	2024-08-28	Show	GitHub Exploit DB Packet Storm

312753	9.8	CRITICAL Network	fabianros	online_quiz_site	A vulnerability was found in code-projects Online Quiz Site 1.0 and classified as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument loginid …	CWE-89 SQL Injection	CVE-2024-8218	2024-08-30 00:38	2024-08-28	Show	GitHub Exploit DB Packet Storm

312754	9.8	CRITICAL Network	fabianros	responsive_hotel_site	A vulnerability was found in code-projects Responsive Hotel Site 1.0. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument name/…	CWE-89 SQL Injection	CVE-2024-8219	2024-08-30 00:35	2024-08-28	Show	GitHub Exploit DB Packet Storm

312755	9.8	CRITICAL Network	oretnom23	music_gallery_site	A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/categories/manage_category.p…	CWE-89 SQL Injection	CVE-2024-8221	2024-08-30 00:32	2024-08-28	Show	GitHub Exploit DB Packet Storm

312756	7.2	HIGH Network	fiware	keyrock	The function "generate_app_certificates" in controllers/saml2/saml2.js of FIWARE Keyrock <= 8.4 does not neutralize special elements used in an OS Command properly. This allows an authenticated user …	CWE-78 OS Command	CVE-2024-42167	2024-08-30 00:24	2024-08-12	Show	GitHub Exploit DB Packet Storm

312757	5.4	MEDIUM Network	oretnom23	yoga_class_registration_system	A vulnerability was found in SourceCodester Yoga Class Registration System 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/inquiries/view_inquiry.php.…	CWE-79 Cross-site Scripting	CVE-2024-7852	2024-08-30 00:23	2024-08-16	Show	GitHub Exploit DB Packet Storm

312758	7.2	HIGH Network	fiware	keyrock	The function "generate_app_certificates" in lib/app_certificates.js of FIWARE Keyrock <= 8.4 does not neutralize special elements used in an OS Command properly. This allows an authenticated user wit…	CWE-78 OS Command	CVE-2024-42166	2024-08-30 00:23	2024-08-12	Show	GitHub Exploit DB Packet Storm

312759	8.8	HIGH Network	oretnom23	yoga_class_registration_system	A vulnerability was found in SourceCodester Yoga Class Registration System up to 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/?page=categories/view_cate…	CWE-89 SQL Injection	CVE-2024-7853	2024-08-30 00:22	2024-08-16	Show	GitHub Exploit DB Packet Storm

312760	9.8	CRITICAL Network	oretnom23	yoga_class_registration_system	A vulnerability has been found in SourceCodester Yoga Class Registration System 1.0 and classified as critical. This vulnerability affects unknown code of the file /classes/Users.php?f=save of the co…	NVD-CWE-noinfo	CVE-2024-7851	2024-08-30 00:22	2024-08-16	Show	GitHub Exploit DB Packet Storm