Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
811 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-41402 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
812 9.8 緊急
Network 		Apache Software Foundation MINA Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-41409 2026-05-1 10:46 2026-04-27 Show GitHub Exploit DB Packet Storm
813 3.3
Local 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-4159 2026-05-1 10:46 2026-03-19 Show GitHub Exploit DB Packet Storm
814 9.8 緊急
Network 		Apache Software Foundation MINA Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-41635 2026-05-1 10:46 2026-04-27 Show GitHub Exploit DB Packet Storm
815 3.7
Network 		OpenClaw OpenClaw OpenClawにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-41913 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
816 8.5 重要
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41914 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
817 6.1 警告
Local 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-41915 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
818 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-41916 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
819 6.5 警告
Network 		Technitium DNS Server TechnitiumのDNS Serverにおける指定された機能の不適切な提供に関する脆弱性 CWE-684
指定された機能の不適切な提供 		CVE-2026-42255 2026-05-1 10:46 2026-04-26 Show GitHub Exploit DB Packet Storm
820 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42420 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313001 8.1 HIGH
Network 		zen-cart zen_cart Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Zen Cart. Auth… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2024-5762 2024-08-24 01:43 2024-08-22 Show GitHub Exploit DB Packet Storm
313002 8.8 HIGH
Network 		rockoa xinhu A vulnerability classified as critical was found in Xinhu RockOA 2.6.2. This vulnerability affects the function dataAction of the file /webmain/task/openapi/openmodhetongAction.php. The manipulation … CWE-89
SQL Injection 		CVE-2024-7327 2024-08-24 01:41 2024-08-1 Show GitHub Exploit DB Packet Storm
313003 8.8 HIGH
Adjacent 		autel maxicharger_ac_elite_business_c50_firmware Autel MaxiCharger AC Elite Business C50 AppAuthenExchangeRandomNum Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arb… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2024-7795 2024-08-24 01:39 2024-08-22 Show GitHub Exploit DB Packet Storm
313004 7.8 HIGH
Local 		logsign unified_secops_platform Logsign Unified SecOps Platform Incorrect Authorization Authentication Bypass Vulnerability. This vulnerability allows local attackers to bypass authentication on affected installations of Logsign Un… CWE-863
 Incorrect Authorization 		CVE-2024-7604 2024-08-24 01:37 2024-08-22 Show GitHub Exploit DB Packet Storm
313005 8.1 HIGH
Network 		logsign unified_secops_platform Logsign Unified SecOps Platform Directory Traversal Arbitrary Directory Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary directories on affected installations of… CWE-22
Path Traversal 		CVE-2024-7603 2024-08-24 01:36 2024-08-22 Show GitHub Exploit DB Packet Storm
313006 6.5 MEDIUM
Network 		logsign unified_secops_platform Logsign Unified SecOps Platform Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Log… CWE-22
Path Traversal 		CVE-2024-7602 2024-08-24 01:36 2024-08-22 Show GitHub Exploit DB Packet Storm
313007 8.1 HIGH
Network 		logsign unified_secops_platform Logsign Unified SecOps Platform Directory data_export_delete_all Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected inst… CWE-22
Path Traversal 		CVE-2024-7601 2024-08-24 01:35 2024-08-22 Show GitHub Exploit DB Packet Storm
313008 8.1 HIGH
Network 		logsign unified_secops_platform Logsign Unified SecOps Platform Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of Logsign Un… CWE-22
Path Traversal 		CVE-2024-7600 2024-08-24 01:35 2024-08-22 Show GitHub Exploit DB Packet Storm
313009 9.8 CRITICAL
Network 		youdiancms youdiancms A vulnerability, which was classified as critical, was found in YouDianCMS 7. Affected is an unknown function of the file /Public/ckeditor/plugins/multiimage/dialogs/image_upload.php. The manipulatio… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-7329 2024-08-24 01:34 2024-08-1 Show GitHub Exploit DB Packet Storm
313010 6.1 MEDIUM
Network 		ckeditor ckeditor CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A potential vulnerability has been discovered in CKEditor 4 Code Snippet GeSHi plugin. The vulnerability allowed a reflected XSS … CWE-79
Cross-site Scripting 		CVE-2024-43407 2024-08-24 01:20 2024-08-22 Show GitHub Exploit DB Packet Storm