Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
861 7.5 重要
Network 		Apache Software Foundation Apache OpenNLP Apache Software FoundationのApache OpenNLPにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-42440 2026-05-8 12:22 2026-05-4 Show GitHub Exploit DB Packet Storm
862 6.1 警告
Network 		Apache Software Foundation Apache Wicket Apache Software FoundationのApache Wicketにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42509 2026-05-8 12:22 2026-05-6 Show GitHub Exploit DB Packet Storm
863 4.3 警告
Network 		Jenkins プロジェクト Script Security JenkinsのScript Securityにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42519 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
864 7.5 重要
Network 		Jenkins プロジェクト Credentials Binding JenkinsのCredentials Bindingにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-42520 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
865 6.5 警告
Network 		Jenkins プロジェクト Matrix Authorization Strategy JenkinsのMatrix Authorization Strategyにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-42521 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
866 4.3 警告
Network 		Jenkins プロジェクト GitHub Branch Source JenkinsのGitHub Branch Sourceにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42522 2026-05-8 12:22 2026-04-29 Show GitHub Exploit DB Packet Storm
867 7.5 重要
Network 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43057 2026-05-8 12:22 2026-05-1 Show GitHub Exploit DB Packet Storm
868 9.3 緊急
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-43526 2026-05-8 12:22 2026-05-5 Show GitHub Exploit DB Packet Storm
869 7.7 重要
Network 		OpenClaw OpenClaw OpenClawにおける複数の脆弱性 CWE-1188
CWE-918
CVE-2026-43527 2026-05-8 12:21 2026-05-5 Show GitHub Exploit DB Packet Storm
870 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける保存または転送前の重要な情報の削除に関する脆弱性 CWE-212
保存または転送前の重要な情報の不適切な削除 		CVE-2026-43528 2026-05-8 12:21 2026-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312391 6.1 MEDIUM
Network 		netcat netcat_content_management_system A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific paths on the site. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly… CWE-79
Cross-site Scripting 		CVE-2024-8653 2024-09-24 02:55 2024-09-20 Show GitHub Exploit DB Packet Storm
312392 6.1 MEDIUM
Network 		netcat netcat_content_management_system A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific path on the site. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly … CWE-79
Cross-site Scripting 		CVE-2024-8652 2024-09-24 02:53 2024-09-20 Show GitHub Exploit DB Packet Storm
312393 5.3 MEDIUM
Network 		netcat netcat_content_management_system A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that can be used to check whether a user exists in the system, which could be a basis for further attacks. Th… CWE-203
 Information Exposure Through Discrepancy 		CVE-2024-8651 2024-09-24 02:51 2024-09-20 Show GitHub Exploit DB Packet Storm
312394 4.3 MEDIUM
Network 		google chrome Inappropriate implementation in UI in Google Chrome on iOS prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) NVD-CWE-noinfo
CVE-2024-8909 2024-09-24 02:51 2024-09-18 Show GitHub Exploit DB Packet Storm
312395 4.3 MEDIUM
Network 		google chrome Incorrect security UI in Downloads in Google Chrome prior to 129.0.6668.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML p… NVD-CWE-noinfo
CVE-2024-8906 2024-09-24 02:38 2024-09-18 Show GitHub Exploit DB Packet Storm
312396 8.8 HIGH
Network 		microsoft sql_2016_azure_connect_feature_pack
sql_server_2016
sql_server_2017
sql_server_2019
sql_server_2022 		Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-37339 2024-09-24 02:34 2024-09-11 Show GitHub Exploit DB Packet Storm
312397 8.8 HIGH
Network 		microsoft edge_chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43489 2024-09-24 02:33 2024-09-20 Show GitHub Exploit DB Packet Storm
312398 4.3 MEDIUM
Network 		microsoft edge_chromium Microsoft Edge (Chromium-based) Spoofing Vulnerability NVD-CWE-noinfo
CVE-2024-38221 2024-09-24 02:33 2024-09-20 Show GitHub Exploit DB Packet Storm
312399 8.8 HIGH
Network 		microsoft edge_chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43496 2024-09-24 02:32 2024-09-20 Show GitHub Exploit DB Packet Storm
312400 9.8 CRITICAL
Network 		dlink dar-7000_firmware A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected is an unknown function of the file /view/DBManage/Backup_Server_commit.php. The manipulation of the a… CWE-78
OS Command  		CVE-2024-9004 2024-09-24 02:29 2024-09-20 Show GitHub Exploit DB Packet Storm