Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1201 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-28732 2026-05-21 10:54 2026-05-18 Show GitHub Exploit DB Packet Storm
1202 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性 CWE-1336
テンプレートエンジンで使用される特殊な要素の不適切な無効化 		CVE-2026-29207 2026-05-21 10:54 2026-05-19 Show GitHub Exploit DB Packet Storm
1203 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-29220 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
1204 7.3 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-29226 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
1205 7.5 重要
Network 		HSC MailInspector HSCのMailInspectorにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-29962 2026-05-21 10:53 2026-05-18 Show GitHub Exploit DB Packet Storm
1206 7.5 重要
Network 		HSC MailInspector HSCのMailInspectorにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-29963 2026-05-21 10:53 2026-05-18 Show GitHub Exploit DB Packet Storm
1207 6.1 警告
Network 		HSC MailInspector HSCのMailInspectorにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-29964 2026-05-21 10:53 2026-05-18 Show GitHub Exploit DB Packet Storm
1208 6.1 警告
Network 		HSC MailInspector HSCのMailInspectorにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-29965 2026-05-21 10:53 2026-05-18 Show GitHub Exploit DB Packet Storm
1209 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-31378 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
1210 6.1 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける複数の脆弱性 CWE-22
CWE-79
CWE-94
CVE-2026-31379 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2781 8.1 HIGH
Network 		- - A weakness has been identified in Besen BS20 EV Charging Station up to 20260426. Affected by this issue is some unknown functionality of the component OTA Update Installation Handler. This manipulati… CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-9397 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2782 3.1 LOW
Adjacent 		- - A security vulnerability has been detected in Besen BS20 EV Charging Station up to 20260426. This affects an unknown part of the component BLE/WiFi. Such manipulation leads to authentication bypass b… CWE-287
CWE-294
Improper Authentication
Authentication Bypass by Capture-replay  		CVE-2026-9398 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2783 8.8 HIGH
Network 		- - A vulnerability has been found in Tenda F1202 1.2.0.20(408). Affected is the function fromPPTPUserSetting of the file /goform/PPTPUserSetting. Such manipulation of the argument delno leads to stack-b… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9428 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2784 8.8 HIGH
Network 		- - A vulnerability was found in Tenda F1202 1.2.0.20(408). Affected by this vulnerability is the function formWrlExtraSet of the file /goform/WrlExtraSet. Performing a manipulation of the argument delno… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9429 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2785 8.8 HIGH
Network 		- - A vulnerability was determined in Tenda F1202 1.2.0.20(408). Affected by this issue is the function formGstDhcpSetSer of the file /goform/GstDhcpSetSerof. Executing a manipulation of the argument dip… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9430 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2786 8.8 HIGH
Network 		- - A vulnerability was identified in Tenda F1202 1.2.0.20(408). This affects the function fromPptpUserAdd of the file /goform/PptpUserAdd. The manipulation of the argument opttype leads to stack-based b… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9431 2026-05-27 04:57 2026-05-25 Show GitHub Exploit DB Packet Storm
2787 5.3 MEDIUM
Network 		- - A vulnerability was determined in calcom cal.diy up to 4.9.4. Affected by this issue is the function getServerSideProps of the file apps/web/modules/bookings/views/bookings-single-view.getServerSideP… CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-9349 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm
2788 3.5 LOW
Network 		- - A vulnerability was found in vBulletin 6.x. This impacts an unknown function of the component Login. Performing a manipulation results in cross site scripting. It is possible to initiate the attack r… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-9357 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm
2789 4.3 MEDIUM
Network 		- - A vulnerability was determined in postcss up to 7.1.1. Affected is the function toString of the file src/selectors/container.js of the component AST Serialization. Executing a manipulation can lead t… CWE-404
CWE-674
 Improper Resource Shutdown or Release
 Uncontrolled Recursion 		CVE-2026-9358 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm
2790 5.6 MEDIUM
Network 		- - A security vulnerability has been detected in ItzCrazyKns Vane up to 1.12.1. Affected by this issue is some unknown functionality of the file route.ts of the component API. The manipulation leads to … CWE-287
CWE-306
Improper Authentication
Missing Authentication for Critical Function 		CVE-2026-9371 2026-05-27 04:54 2026-05-24 Show GitHub Exploit DB Packet Storm