NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3801	7.5	HIGH Network	-	-	CryptX versions before 0.088 for Perl do not reseed the Crypt::PK PRNG state after forking. The Crypt::PK::RSA, Crypt::PK::DSA, Crypt::PK::DH, Crypt::PK::ECC, Crypt::PK::Ed25519 and Crypt::PK::X2551…	CWE-335 CWE-338 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2026-41564	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3802	-	-	-	-	A Generation of Error Message Containing Sensitive Information vulnerability in the Materialized View Refresh mechanism in Google BigQuery on Google Cloud Platform allows an authenticated user to pot…	CWE-209 Information Exposure Through an Error Message	CVE-2026-3259	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3803	9.8	CRITICAL Network	-	-	Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell back…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-6885	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3804	9.8	CRITICAL Network	-	-	Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a Authentication Bypass vulnerability, allowing unauthenticated remote attackers to log into the system as any user.	CWE-1390 Weak Authentication	CVE-2026-6886	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3805	9.8	CRITICAL Network	-	-	Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, mod…	CWE-89 SQL Injection	CVE-2026-6887	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3806	5.9	MEDIUM Network	-	-	A critical remote code execution vulnerability exists in the unauthenticated REST API endpoint /99/ImportSQLTable in H2O-3 version 3.46.0.9 and prior. The vulnerability arises due to insufficient sec…	CWE-94 Code Injection	CVE-2026-3960	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3807	7.5	HIGH Network	-	-	The LabOne Web Server, backing the LabOne User Interface, contains insufficient input validation in its file access functionality. An unauthenticated attacker could exploit this vulnerability to read…	CWE-22 CWE-346 Path Traversal Origin Validation Error	CVE-2026-6903	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3808	5.7	MEDIUM Physics	-	-	Multiple uses of uninitialized variables were found in libopensc that may lead to information disclosure or application crash. An attack requires a crafted USB device or smart card that would present…	CWE-457 Use of Uninitialized Variable	CVE-2025-13763	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3809	4.7	MEDIUM Network	-	-	An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-reques…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2025-66286	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3810	7.3	HIGH Adjacent	-	-	Yadea T5 Electric Bicycles (models manufactured in/after 2024) have a weak authentication mechanism in their keyless entry system. The system utilizes the EV1527 fixed-code RF protocol without implem…	CWE-1390 Weak Authentication	CVE-2025-70994	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3811	-	-	-	-	An unauthenticated remote attacker is able to exhaust all available TCP connections in the CODESYS EtherNet/IP adapter stack, preventing legitimate clients from establishing new connections.	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2026-35225	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3812	9.8	CRITICAL Network	-	-	Kofax Capture, now referred to as Tungsten Capture, version 6.0.0.0 (other versions may be affected) exposes a deprecated .NET Remoting HTTP channel on port 2424 via the Ascent Capture Service that i…	CWE-306 CWE-441 Missing Authentication for Critical Function Confused Deputy	CVE-2026-23751	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3813	-	-	-	-	This vulnerability allows an attacker to create a junction, enabling the deletion of arbitrary files with SYSTEM privileges. As a result, this condition potentially facilitates arbitrary code executi…	CWE-59 Link Following	CVE-2026-33694	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3814	5.9	MEDIUM Network	-	-	The AWS X-Ray Remote Sampler package provides a sampler which can get sampling configurations from AWS X-Ray. Prior to 0.1.0-alpha.8, OpenTelemetry.Sampler.AWS reads unbounded HTTP response bodies fr…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-41173	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3815	-	-	-	-	A path traversal condition in Intrado 911 Emergency Gateway could allow an attacker with existing network access the ability to access the EGW management interface without authentication. Successful …	CWE-35 Path Traversal: '.../...//'	CVE-2026-6074	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3816	6.8	MEDIUM Network	-	-	SWUpdate contains an integer underflow vulnerability in the multipart upload parser in mongoose_multipart.c that allows unauthenticated attackers to cause a denial of service by sending a crafted HTT…	CWE-125 CWE-191 Out-of-bounds Read Integer Underflow (Wrap or Wraparound)	CVE-2026-28525	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3817	-	-	-	-	A vulnerability in SpiceJet’s booking API allows unauthenticated users to query passenger name records (PNRs) without any access controls. Because PNR identifiers follow a predictable pattern, an att…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-6375	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3818	-	-	-	-	A weakness in SpiceJet’s public booking retrieval page permits full passenger booking details to be accessed using only a PNR and last name, with no authentication or verification mechanisms. This re…	CWE-306 Missing Authentication for Critical Function	CVE-2026-6376	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3819	9.8	CRITICAL Network	-	-	KTransformers through 0.5.3 contains an unsafe deserialization vulnerability in the balance_serve backend mode where the scheduler RPC server binds a ZMQ ROUTER socket to all interfaces with no authe…	CWE-502 Deserialization of Untrusted Data	CVE-2026-26210	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3820	-	-	-	-	Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, the GraphCypherQAChain node forwards user-provided input directly into the Cypher query execut…	CWE-943 Improper Neutralization of Special Elements in Data Query Logic	CVE-2026-41274	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3821	5.3	MEDIUM Network	-	-	go-ntlmssp is a Go package that provides NTLM/Negotiate authentication over HTTP. Prior to version 0.1.1, a malicious NTLM challenge message can causes an slice out of bounds panic, which can crash a…	CWE-190 Integer Overflow or Wraparound	CVE-2026-32952	2026-04-24 23:50	2026-04-24	Show	GitHub Exploit DB Packet Storm

3822	7.6	HIGH Network	wger	wger	wger is a free, open-source workout and fitness manager. In versions 2.5 and below, the GymConfigUpdateView declares permission_required = 'config.change_gymconfig' but inherits WgerFormMixin instead…	CWE-284 CWE-862 Improper Access Control Missing Authorization	CVE-2026-40474	2026-04-24 23:46	2026-04-18	Show	GitHub Exploit DB Packet Storm

3823	5.4	MEDIUM Network	wger	wger	wger is a free, open-source workout and fitness manager. In versions 2.5 and below, the attribution_link property in AbstractLicenseModel constructs HTML by directly interpolating user-controlled lic…	CWE-79 Cross-site Scripting	CVE-2026-40353	2026-04-24 23:46	2026-04-18	Show	GitHub Exploit DB Packet Storm

3824	-	-	-	-	Squidex is an open source headless content management system and content management hub. Prior to version 7.23.0, the `RestoreController.PostRestoreJob` endpoint allows an administrator to supply an …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-41170	2026-04-24 23:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

3825	-	-	-	-	Squidex is an open source headless content management system and content management hub. Versions prior to 7.23.0 have a Server-Side Request Forgery (SSRF) vulnerability due to missing SSRF protectio…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-41171	2026-04-24 23:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

3826	-	-	-	-	Squidex is an open source headless content management system and content management hub. Prior to version 7.23.0, an SSRF vulnerability allows a user with asset upload permission to force the server …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-41172	2026-04-24 23:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

3827	5.5	MEDIUM Network	-	-	Squidex is an open source headless content management system and content management hub. Prior to version 7.23.0, the Squidex Restore API is vulnerable to Blind Server-Side Request Forgery (SSRF). Th…	CWE-73 CWE-918 External Control of File Name or Path Server-Side Request Forgery (SSRF)	CVE-2026-41177	2026-04-24 23:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

3828	9.8	CRITICAL Network	-	-	An issue in Ntfy ntfy.sh before v.2.21 allows a remote attacker to execute arbitrary code via the parseActions function	CWE-94 Code Injection	CVE-2026-39087	2026-04-24 23:41	2026-04-24	Show	GitHub Exploit DB Packet Storm

3829	9.9	CRITICAL Network	-	-	A critical XSS vulnerability affected hackage-server and hackage.haskell.org. HTML and JavaScript files provided in source packages or via the documentation upload facility were served as-is on the …	CWE-79 Cross-site Scripting	CVE-2026-40470	2026-04-24 23:41	2026-04-24	Show	GitHub Exploit DB Packet Storm

3830	9.6	CRITICAL Network	-	-	hackage-server lacked Cross-Site Request Forgery (CSRF) protection across its endpoints. Scripts on foreign sites could trigger requests to hackage server, possibly abusing latent credentials to uplo…	CWE-352 Origin Validation Error	CVE-2026-40471	2026-04-24 23:41	2026-04-24	Show	GitHub Exploit DB Packet Storm

3831	9.9	CRITICAL Network	-	-	In hackage-server, user-controlled metadata from .cabal files are rendered into HTML href attributes without proper sanitization, enabling stored Cross-Site Scripting (XSS) attacks.	CWE-79 Cross-site Scripting	CVE-2026-40472	2026-04-24 23:41	2026-04-24	Show	GitHub Exploit DB Packet Storm

3832	-	-	-	-	TP-Link TL-WR841N v13 uses DES-CBC encryption in the TDDPv2 debug protocol with a cryptographic key derived from default web management credentials, making the key predictable if device is left in de…	CWE-1394 Use of Default Cryptographic Key	CVE-2026-5039	2026-04-24 23:41	2026-04-24	Show	GitHub Exploit DB Packet Storm

3833	8.0	HIGH Network	dnnsoftware	dotnetnuke	DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 10.2.2, a user could upload a specially crafted SVG file that could incl…	CWE-87 Improper Neutralization of Alternate XSS Syntax	CVE-2026-40321	2026-04-24 23:41	2026-04-18	Show	GitHub Exploit DB Packet Storm

3834	3.7	LOW Network	-	-	A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic. The soup_message_headers_append_common() function in libsoup/soup-message-headers.c unconditionally appends each hea…	CWE-444 HTTP Request Smuggling	CVE-2026-2708	2026-04-24 23:41	2026-04-24	Show	GitHub Exploit DB Packet Storm

3835	9.3	CRITICAL Network	-	-	Server-side request forgery (ssrf) in Microsoft Dynamics 365 (Online) allows an unauthorized attacker to perform spoofing over a network.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-32210	2026-04-24 23:41	2026-04-24	Show	GitHub Exploit DB Packet Storm

3836	10.0	CRITICAL Network	-	-	Deserialization of untrusted data in Microsoft Bing allows an unauthorized attacker to execute code over a network.	CWE-502 Deserialization of Untrusted Data	CVE-2026-33819	2026-04-24 23:41	2026-04-24	Show	GitHub Exploit DB Packet Storm

3837	8.1	HIGH Network	-	-	OpenClaw before 2026.3.22 contains an access control bypass vulnerability in the allowProfiles feature that allows attackers to circumvent profile restrictions through persistent profile mutation and…	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-41353	2026-04-24 23:40	2026-04-24	Show	GitHub Exploit DB Packet Storm

3838	3.7	LOW Network	-	-	OpenClaw before 2026.4.2 contains an insufficient scope vulnerability in Zalo webhook replay dedupe keys that allows legitimate events from different conversations or senders to collide. Attackers ca…	CWE-706 Use of Incorrectly-Resolved Name or Reference	CVE-2026-41354	2026-04-24 23:40	2026-04-24	Show	GitHub Exploit DB Packet Storm

3839	7.3	HIGH Local	-	-	OpenShell before 2026.3.28 contains an arbitrary code execution vulnerability in mirror mode that converts untrusted sandbox files into workspace hooks. Attackers with mirror mode access can execute …	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2026-41355	2026-04-24 23:40	2026-04-24	Show	GitHub Exploit DB Packet Storm

3840	5.4	MEDIUM Network	-	-	OpenClaw before 2026.4.2 fails to filter Slack thread context by sender allowlist, allowing non-allowlisted messages to enter agent context. Attackers can inject unauthorized thread messages through …	CWE-346 Origin Validation Error	CVE-2026-41358	2026-04-24 23:40	2026-04-24	Show	GitHub Exploit DB Packet Storm

3841	6.7	MEDIUM Local	-	-	OpenClaw before 2026.4.2 contains an approval integrity vulnerability in pnpm dlx that fails to bind local script operands consistently with pnpm exec flows. Attackers can replace approved local scri…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41360	2026-04-24 23:40	2026-04-24	Show	GitHub Exploit DB Packet Storm

3842	4.3	MEDIUM Network	dnnsoftware	dotnetnuke	DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Starting in version 6.0.0 and prior to version 10.2.2, in the friends feature, a user cou…	CWE-285 Improper Authorization	CVE-2026-40305	2026-04-24 23:40	2026-04-18	Show	GitHub Exploit DB Packet Storm

3843	4.9	MEDIUM Network	-	-	A vulnerability in the browser-based remote management interface may allow an administrator to access sensitive information on the device via crafted requests, affecting certain production printers a…	CWE-807 Reliance on Untrusted Inputs in a Security Decision	CVE-2026-1789	2026-04-24 23:39	2026-04-24	Show	GitHub Exploit DB Packet Storm

3844	9.8	CRITICAL Network	-	-	A vulnerability in SenseLive X3050’s remote management service allows firmware retrieval and update operations to be performed without authentication or authorization. The service accepts firmware-re…	CWE-306 Missing Authentication for Critical Function	CVE-2026-25775	2026-04-24 23:39	2026-04-24	Show	GitHub Exploit DB Packet Storm

3845	7.5	HIGH Network	-	-	DWM-222W USB Wi-Fi Adapter developed by D-Link has a Brute-Force Protection Bypass vulnerability, allowing unauthenticated adjacent network attackers to bypass login attempt limits to perform brute-f…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2026-6947	2026-04-24 23:39	2026-04-24	Show	GitHub Exploit DB Packet Storm

3846	9.8	CRITICAL Network	-	-	Delta Electronics AS320T has incorrect calculation of the buffer size on the stack in the GET/PUT request handler of the web service.	CWE-131 Incorrect Calculation of Buffer Size	CVE-2026-1949	2026-04-24 23:39	2026-04-24	Show	GitHub Exploit DB Packet Storm

3847	9.8	CRITICAL Network	-	-	Delta Electronics AS320T has No checking of the length of the buffer with the file name vulnerability.	CWE-121 Stack-based Buffer Overflow	CVE-2026-1950	2026-04-24 23:39	2026-04-24	Show	GitHub Exploit DB Packet Storm

3848	9.8	CRITICAL Network	-	-	Delta Electronics AS320T has no checking of the length of the buffer with the directory name vulnerability.	CWE-121 Stack-based Buffer Overflow	CVE-2026-1951	2026-04-24 23:39	2026-04-24	Show	GitHub Exploit DB Packet Storm

3849	9.8	CRITICAL Network	-	-	Delta Electronics AS320T has denial of service via the undocumented subfunction vulnerability.	CWE-912 Hidden Functionality	CVE-2026-1952	2026-04-24 23:39	2026-04-24	Show	GitHub Exploit DB Packet Storm

3850	7.5	HIGH Network	-	-	Tempo queries with large limits can cause large memory allocations which can impact the availability of the service, depending on its deployment strategy. Mitigation can be done by setting max_resul…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-21728	2026-04-24 23:39	2026-04-24	Show	GitHub Exploit DB Packet Storm