NVD脆弱性情報トップ

検索メニュー表示

ベンダー名
プロダクト・サービス名
タイトル
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
公表日降順
更新日降順
表示数

NVD（National Vulnerability Database）で管理されている脆弱性の一覧を検索することが出来ます。
JVN（Japan Vulnerability Note）より先に脆弱性情報が更新される事が多いため、JVNに未記載の脆弱性が更新されている場合があります。

JVN（Japan Vulnerability Note）に関連した脆弱性がある場合は詳細画面で情報を表示します。

CWEで検索する場合は、CWE概要を参照して、CWE番号を確認してください。

CRITICAL
HIGH
MEDIUM
LOW

更新日:2026年4月22日4:00

No	CVSS	レベル攻撃区分	ベンダー名	プロダクト名	タイトル	CWE	CVE	更新日	公表日	影響表示	Exploit PoC 検索
601	6.2	MEDIUM ローカル	-	-	In ONLYOFFICE DesktopEditors before 9.3.0, the update service allows attackers to perform actions on files with SYSTEM privileges.	CWE-669 領域間での誤ったリソース移動	CVE-2026-41030	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

602	5.0	MEDIUM ネットワーク	-	-	ONLYOFFICE DocumentServer before 9.3.0 has an untrusted pointer dereference in XLS processing/conversion (via pictFmla.cbBufInCtlStm and other vectors), leading to an information leak and ASLR bypass.	CWE-125 境界外読み取り	CVE-2026-41034	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

603	7.4	HIGH ネットワーク	-	-	In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X (aka --xattrs). On Linux, …	CWE-130 レングスパラメーターの不整合による不適切な処理	CVE-2026-41035	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

604	6.1	MEDIUM ネットワーク	-	-	The authentication endpoint fails to adequately validate user-supplied input before reflecting it back in the response. This allows an attacker to inject malicious script payloads into the input para…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-10242	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

605	5.4	MEDIUM ネットワーク	-	-	The WSO2 API Manager developer portal accepts user-supplied input without enforcing expected validation constraints or proper output encoding. This deficiency allows a malicious actor to inject scrip…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4867	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

606	3.5	LOW 隣接	-	-	The component accepts XML input through the publisher without disabling external entity resolution. This allows malicious actors to submit a crafted XML payload that exploits the unescaped external e…	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2024-8010	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

607	7.5	HIGH ネットワーク	-	-	The XML parsers within multiple WSO2 products accept user-supplied XML data without properly configuring to prevent the resolution of external entities. This omission allows malicious actors to craft…	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2024-2374	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

608	6.1	MEDIUM ネットワーク	-	-	The authentication endpoint fails to encode user-supplied input before rendering it in the web page, allowing for script injection. An attacker can leverage this by injecting malicious scripts into t…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-6024	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

609	6.0	MEDIUM ネットワーク	-	-	Active access tokens are not revoked or invalidated when a user account is locked within WSO2 Identity Server. This failure to enforce revocation allows previously issued, valid tokens to remain usab…	CWE-613 不適切なセッション期限	CVE-2025-12624	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

610	9.8	CRITICAL ネットワーク	-	-	The goodoneuz/pay-uz Laravel package (<= 2.2.24) contains a critical vulnerability in the /payment/api/editable/update endpoint that allows unauthenticated attackers to overwrite existing PHP payment…	CWE-284 不適切なアクセス制御	CVE-2026-31843	2026-04-18 00:38	2026-04-16	表示	GitHub Exploit DB Packet Storm

611	7.1	HIGH ネットワーク	-	-	An issue in the Forgot Password feature of Daylight Studio FuelCMS v1.5.2 allows unauthenticated attackers to obtain the password reset token of a victim user via a crafted link placed in a valid e-m…	CWE-640 パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み	CVE-2026-30459	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

612	7.5	HIGH ネットワーク	-	-	A NULL pointer dereference vulnerability exists in fio (Flexible I/O Tester) v3.41 when parsing job files containing the fdp_pli option. The callback function str_fdp_pli_cb() does not validate the i…	CWE-476 NULL ポインタデリファレンス	CVE-2026-30656	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

613	5.3	MEDIUM ネットワーク	-	-	The Silverstripe Assets Module is a required component of Silverstripe Framework. In versions prior to 2.4.5 and 3.0.0-rc1 through 3.1.2, images rendered in templates or otherwise accessed via DBFile…	CWE-863 不正な認証	CVE-2026-24749	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

614	-	-	-	-	zlib is a Ruby interface for the zlib compression/decompression library. Versions 3.0.0 and below, 3.1.0, 3.1.1, 3.2.0 and 3.2.1 contain a buffer overflow vulnerability in the Zlib::GzipReader. The z…	CWE-120 CWE-131 古典的バッファオーバーフロー正しくないバッファサイズ計算	CVE-2026-27820	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

615	7.3	HIGH ローカル	-	-	In OCaml opam before 2.5.1, a .install field containing a destination filepath can use ../ to reach a parent directory.	CWE-24 パストラバーサル (../filedir)	CVE-2026-41082	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

616	8.3	HIGH ネットワーク	-	-	Improper validation of bash commands in Snowflake Cortex Code CLI versions prior to 1.0.25 allowed subsequent commands to execute outside the sandbox. An attacker could exploit this by embedding spec…	CWE-1286 入力の構文的正当性の不適切な検証	CVE-2026-6442	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

617	4.9	MEDIUM ネットワーク	-	-	Valtimo is an open-source business process automation platform. In versions 13.0.0 through 13.21.0, the InboxHandlingService logs the full content of every incoming inbox message at INFO level. Inbox…	CWE-532 ログファイルからの情報漏えい	CVE-2026-34164	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

618	-	-	-	-	spdystream is a Go library for multiplexing streams over SPDY connections. In versions 0.5.0 and below, the SPDY/3 frame parser does not validate attacker-controlled counts and lengths before allocat…	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-35469	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

619	-	-	-	-	mcp-framework is a framework for building Model Context Protocol (MCP) servers. In versions 0.2.21 and below, the readRequestBody() function in the HTTP transport concatenates request body chunks int…	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-39313	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

620	-	-	-	-	free5GC is an open-source implementation of the 5G core network. In versions 1.4.2 and below of the UDR service, the handler for deleting Traffic Influence Subscriptions checks whether the influenceI…	CWE-285 不適切な認可	CVE-2026-40246	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

621	-	-	-	-	free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the handler for reading Traffic Influence Subscriptions checks whether the influenceId…	CWE-285 CWE-636 不適切な認可安全でない失敗処理	CVE-2026-40247	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

622	4.3	MEDIUM ネットワーク	-	-	Vision Helpdesk before 5.7.0 (patched in 5.6.10) allows attackers to read user profiles via modified serialized cookie data to vis_client_id.	CWE-425 リクエストの直接送信	CVE-2024-58343	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

623	8.6	HIGH ネットワーク	-	-	Cloud Foundry UUA is vulnerable to a bypass that allows an attacker to obtain a token for any user and gain access to UAA-protected systems. This vulnerability exists when SAML 2.0 bearer assertions …	CWE-290 スプーフィングによる認証回避	CVE-2026-22734	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

624	-	-	-	-	pypdf is a free and open-source pure-python PDF library. In versions prior to 6.10.0, manipulated XMP metadata entity declarations can exhaust RAM. An attacker who exploits this vulnerability can cra…	CWE-776 DTD の再帰的なエンティティ参照の不適切な制限	CVE-2026-40260	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

625	-	-	-	-	free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the PUT handler for updating Policy Data notification subscriptions at /nudr-dr/v2/pol…	CWE-636 CWE-754 安全でない失敗処理例外的な状態における不適切なチェック	CVE-2026-40249	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

626	-	-	-	-	My Calendar is a WordPress plugin for managing calendar events. In versions 3.7.6 and below, the mc_ajax_mcjs_action AJAX endpoint, registered for unauthenticated users, passes user-supplied argument…	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-40308	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

627	6.8	MEDIUM ローカル	-	-	openCryptoki is a PKCS#11 library and provides tooling for Linux and AIX. In versions 3.26.0 and below, the BER/DER decoding functions in the shared common library (asn1.c) accept a raw pointer but n…	CWE-125 境界外読み取り	CVE-2026-40253	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

628	6.1	MEDIUM ネットワーク	-	-	AdonisJS HTTP Server is a package for handling HTTP requests in the AdonisJS framework. In @adonisjs/http-server versions prior to 7.8.1 and 8.0.0-next.0 through 8.1.3, and @adonisjs/core versions pr…	CWE-601 オープンリダイレクト	CVE-2026-40255	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

629	-	-	-	-	The Rapid7 Insight Agent (versions > 4.1.0.2) is vulnerable to a local privilege escalation attack that allows users to gain SYSTEM level control of a Windows host. Upon startup the agent service att…	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-6482	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

630	5.5	MEDIUM ローカル	-	-	STProcessMonitor 11.11.4.0, part of the Safetica Application suite, allows an admin-privileged user to send crafted IOCTL requests to terminate processes that are protected through a third-party impl…	CWE-269 不適切な権限管理	CVE-2025-70795	2026-04-18 00:38	2026-04-17	表示	GitHub Exploit DB Packet Storm

631	7.5	HIGH ネットワーク	-	-	Incorrect access control in the config.php component of Slah v1.5.0 and below allows unauthenticated attackers to access sensitive information, including active session credentials.	CWE-284 不適切なアクセス制御	CVE-2026-30994	2026-04-18 00:37	2026-04-16	表示	GitHub Exploit DB Packet Storm

632	8.6	HIGH ネットワーク	-	-	Slah CMS v1.5.0 and below was discovered to contain a SQL injection vulnerability via the id parameter in the vereador_ver.php endpoint.	CWE-89 SQLインジェクション	CVE-2026-30995	2026-04-18 00:37	2026-04-16	表示	GitHub Exploit DB Packet Storm

633	9.8	CRITICAL ネットワーク	-	-	Slah CMS v1.5.0 and below was discovered to contain a remote code execution (RCE) vulnerability in the session() function at config.php. This vulnerability is exploitable via a crafted input.	CWE-94 コード・インジェクション	CVE-2026-30993	2026-04-18 00:37	2026-04-16	表示	GitHub Exploit DB Packet Storm

634	8.0	HIGH ネットワーク	-	-	Totara LMS v19.1.5 and before is vulnerable to HTLM Injection. An attacker can inject malicious HTLM code in a message and send it to all the users in the application, resulting in executing the code…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-31281	2026-04-18 00:35	2026-04-14	表示	GitHub Exploit DB Packet Storm

635	9.8	CRITICAL ネットワーク	-	-	Totara LMS v19.1.5 and before is vulnerable to Incorrect Access Control. The login page code can be manipulated to reveal the login form. An attacker can chain that with missing rate-limit on the log…	CWE-284 不適切なアクセス制御	CVE-2026-31282	2026-04-18 00:35	2026-04-14	表示	GitHub Exploit DB Packet Storm

636	9.8	CRITICAL ネットワーク	-	-	In Totara LMS v19.1.5 and before, the forgot password API does not implement rate limiting for the target email address. which can be used for an Email Bombing attack.	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-31283	2026-04-18 00:35	2026-04-14	表示	GitHub Exploit DB Packet Storm

637	8.8	HIGH ネットワーク	-	-	A vulnerability in the `TFSMLayer` class of the `keras` package, version 3.13.0, allows attacker-controlled TensorFlow SavedModels to be loaded during deserialization of `.keras` models, even when `s…	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-1462	2026-04-18 00:34	2026-04-14	表示	GitHub Exploit DB Packet Storm

638	6.2	MEDIUM ローカル	-	-	A stack overflow in the experimental/tinyobj_loader_opt.h file of tinyobjloader commit d56555b allows attackers to cause a Denial of Service (DoS) via supplying a crafted .mtl file.	CWE-121 スタックオーバーフロー	CVE-2026-29628	2026-04-18 00:34	2026-04-14	表示	GitHub Exploit DB Packet Storm

639	7.5	HIGH ネットワーク	-	-	An out-of-bounds read in the read_global_param() function (libavcodec/av1dec.c) of FFmpeg v8.0.1 allows attackers to cause a Denial of Service (DoS) via a crafted input.	CWE-125 境界外読み取り	CVE-2026-30997	2026-04-18 00:34	2026-04-14	表示	GitHub Exploit DB Packet Storm

640	7.5	HIGH ネットワーク	-	-	An improper resource deallocation and closure vulnerability in the tools/zmqsend.c component of FFmpeg v8.0.1 allows attackers to cause a Denial of Service (DoS) via supplying a crafted input file.	CWE-400 リソースの枯渇	CVE-2026-30998	2026-04-18 00:34	2026-04-14	表示	GitHub Exploit DB Packet Storm

641	-	-	-	-	ChurchCRM is an open-source church management system. Prior to 7.0.0, it was possible in many places across the ChurchCRM application to create a link that, when visited by an authenticated user, wou…	CWE-601 オープンリダイレクト	CVE-2026-39940	2026-04-18 00:33	2026-04-14	表示	GitHub Exploit DB Packet Storm

642	8.8	HIGH ネットワーク	-	-	In Phpgurukul Online Course Registration v3.1, an arbitrary file upload vulnerability was discovered within the profile picture upload functionality on the /my-profile.php page.	CWE-94 コード・インジェクション	CVE-2025-51414	2026-04-18 00:33	2026-04-14	表示	GitHub Exploit DB Packet Storm

643	5.4	MEDIUM ネットワーク	-	-	Vtiger CRM 8.4.0 contains a reflected cross-site scripting (XSS) vulnerability in the MailManager module. Improper handling of user-controlled input in the _folder parameter allows a specially crafte…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-70936	2026-04-18 00:33	2026-04-14	表示	GitHub Exploit DB Packet Storm

644	6.1	MEDIUM ネットワーク	-	-	A HTML Injection vulnerability exists in the Dashboard module of Vtiger CRM 8.4.0. The application fails to properly neutralize user-supplied input in the tabid parameter of the DashBoardTab view (ge…	CWE-80 クロスサイトスクリプティング (Basic XSS)	CVE-2026-26460	2026-04-18 00:33	2026-04-14	表示	GitHub Exploit DB Packet Storm

645	-	-	-	-	An issue in the Bluetooth RFCOMM service of Parani M10 Motorcycle Intercom v2.1.3 allows unauthorized attackers to cause a Denial of Service (DoS) via supplying crafted RFCOMM frames.	-	CVE-2026-31280	2026-04-18 00:33	2026-04-14	表示	GitHub Exploit DB Packet Storm

646	9.8	CRITICAL ネットワーク	-	-	Improper input handling in /Grocery/search_products_itname.php, in anirudhkannan Grocery Store Management System 1.0, allows SQL injection via the sitem_name POST parameter.	CWE-89 SQLインジェクション	CVE-2025-63939	2026-04-18 00:33	2026-04-15	表示	GitHub Exploit DB Packet Storm

647	6.1	MEDIUM ネットワーク	-	-	alandsilva26 hotel-management-php 1.0 is vulnerable to Cross Site Scripting (XSS) in /public/admin/edit_room.php which allows an attacker to inject and execute arbitrary JavaScript via the room_id GE…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-65132	2026-04-18 00:33	2026-04-15	表示	GitHub Exploit DB Packet Storm

648	9.8	CRITICAL ネットワーク	-	-	A SQL injection vulnerability exists in the School Management System (version 1.0) by manikandan580. An unauthenticated or authenticated remote attacker can supply a crafted HTTP request to the affec…	CWE-89 SQLインジェクション	CVE-2025-65133	2026-04-18 00:33	2026-04-15	表示	GitHub Exploit DB Packet Storm

649	-	-	-	-	In manikandan580 School-management-system 1.0, a reflected cross-site scripting (XSS) vulnerability exists in /studentms/admin/contact-us.php via the email POST parameter.	-	CVE-2025-65134	2026-04-18 00:33	2026-04-15	表示	GitHub Exploit DB Packet Storm

650	9.8	CRITICAL ネットワーク	-	-	In manikandan580 School-management-system 1.0, a time-based blind SQL injection vulnerability exists in /studentms/admin/between-date-reprtsdetails.php through the fromdate POST parameter.	CWE-89 SQLインジェクション	CVE-2025-65135	2026-04-18 00:33	2026-04-15	表示	GitHub Exploit DB Packet Storm