Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2001	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-Other その他	CVE-2022-50429	2026-01-23 14:21	2025-10-1	Show	GitHub Exploit DB Packet Storm

2002	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2022-50430	2026-01-23 14:21	2025-10-1	Show	GitHub Exploit DB Packet Storm

2003	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2022-50435	2026-01-23 14:21	2025-10-1	Show	GitHub Exploit DB Packet Storm

2004	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2022-50436	2026-01-23 14:21	2025-10-1	Show	GitHub Exploit DB Packet Storm

2005	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2022-50437	2026-01-23 14:21	2025-10-1	Show	GitHub Exploit DB Packet Storm

2006	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2022-50438	2026-01-23 14:21	2025-10-1	Show	GitHub Exploit DB Packet Storm

2007	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2022-50439	2026-01-23 14:21	2025-10-1	Show	GitHub Exploit DB Packet Storm

2008	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2022-50440	2026-01-23 14:21	2025-10-1	Show	GitHub Exploit DB Packet Storm

2009	9.8	緊急 Network	watchtowerhq	watchtower	watchtowerhqのWordPress用watchtowerにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2023-25701	2026-01-23 14:21	2024-05-17	Show	GitHub Exploit DB Packet Storm

2010	5.4	警告 Network	Automattic Inc.	Jetpack	Automattic Inc.のWordPress用Jetpackにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性	CWE-1021 レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限	CVE-2023-47774	2026-01-23 14:21	2024-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
51	5.3	MEDIUM Network	-	-	Improper verification of cryptographic signature uniqueness in delegated role validation in awslabs/tough before tough-v0.22.0 allows remote authenticated users to bypass the TUF signature threshold … New	CWE-347 Improper Verification of Cryptographic Signature	CVE-2026-6966	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

52	3.1	LOW Network	-	-	LangChain is a framework for building agents and LLM-powered applications. Prior to 1.1.14, langchain-openai's _url_to_size() helper (used by get_num_tokens_from_messages for image token counting) va… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-41488	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

53	6.5	MEDIUM Network	-	-	LangChain is a framework for building agents and LLM-powered applications. Prior to langchain-text-splitters 1.1.2, HTMLHeaderTextSplitter.split_text_from_url() validated the initial URL using valid… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-41481	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

54	9.9	CRITICAL Network	-	-	Saltcorn is an extensible, open source, no-code database application builder. Prior to 1.4.6, 1.5.6, and 1.6.0-beta.5, a SQL injection vulnerability in Saltcorn’s mobile-sync routes allows any authen… New	CWE-89 SQL Injection	CVE-2026-41478	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

55	-		-	-	Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.138, a remote memory-safety vulnerability in Deskflow's clipboard deserialization allows a connected peer to trigger an out-of-bounds re… New	CWE-120 Classic Buffer Overflow	CVE-2026-41476	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

56	-		-	-	CyberPanel versions prior to 2.4.4 contain an authentication bypass vulnerability in the AI Scanner worker API endpoints that allows unauthenticated remote attackers to write arbitrary data to the da… New	CWE-306 Missing Authentication for Critical Function	CVE-2026-41473	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

57	-		-	-	CyberPanel versions prior to 2.4.4 contain a stored cross-site scripting vulnerability in the AI Scanner dashboard where the POST /api/ai-scanner/callback endpoint lacks authentication and allows una… New	CWE-79 Cross-site Scripting	CVE-2026-41472	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

58	9.1	CRITICAL Network	-	-	Budibase is an open-source low-code platform. Prior to 3.35.4, the authenticated middleware uses unanchored regular expressions to match public (no-auth) endpoint patterns against ctx.request.url. Si… New	CWE-287 Improper Authentication	CVE-2026-41428	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

59	9.1	CRITICAL Network	-	-	Dgraph is an open source distributed GraphQL database. Prior to 25.3.3, a vulnerability has been found in Dgraph that gives an unauthenticated attacker full read access to every piece of data in the … New	CWE-943 Improper Neutralization of Special Elements in Data Query Logic	CVE-2026-41328	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

60	9.1	CRITICAL Network	-	-	Clerk JavaScript is the official JavaScript repository for Clerk authentication. createRouteMatcher in @clerk/nextjs, @clerk/nuxt, and @clerk/astro can be bypassed by certain crafted requests, allowi… New	CWE-436 CWE-863 Interpretation Conflict Incorrect Authorization	CVE-2026-41248	2026-04-25 06:16	2026-04-25	Show	GitHub Exploit DB Packet Storm