Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1351	-	-	IDrive Inc.	IDrive Cloud Backup Client for Windows	IDrive Cloud Backup Client for Windowsにおける権限昇格の脆弱性	-	CVE-2026-1995	2026-05-1 15:13	2026-04-30	Show	GitHub Exploit DB Packet Storm

1352	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年04月28日）	-	-	2026-05-1 14:31	2026-04-30	Show	GitHub Exploit DB Packet Storm

1353	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F456 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF456 Firmwareにおける複数の脆弱性	CWE-119 CWE-120	CVE-2026-7100	2026-05-1 10:49	2026-04-27	Show	GitHub Exploit DB Packet Storm

1354	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F456 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF456 Firmwareにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-7102	2026-05-1 10:49	2026-04-27	Show	GitHub Exploit DB Packet Storm

1355	7.2	重要 Local	click project	click	Pallets projectのClickにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-7246	2026-05-1 10:49	2026-04-30	Show	GitHub Exploit DB Packet Storm

1356	7.8	重要 Local	LizardSystems	Terminal Services Manager	LizardSystemsのTerminal Services Managerにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2018-25259	2026-05-1 10:49	2026-04-22	Show	GitHub Exploit DB Packet Storm

1357	5.5	警告 Local	EZB Systems	UltraISO	EZB SystemsのUltraISOにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2018-25267	2026-05-1 10:49	2026-04-22	Show	GitHub Exploit DB Packet Storm

1358	6.1	警告 Network	IceWarp, Inc.	icewarp	IceWarp, Inc.のicewarpにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2018-25269	2026-05-1 10:49	2026-04-22	Show	GitHub Exploit DB Packet Storm

1359	8.1	重要 Network	レッドハット	openshift ai	レッドハットのopenshift aiにおける隔離または分類に関する脆弱性	CWE-653 不適切な隔離または分類	CVE-2025-12805	2026-05-1 10:49	2026-03-26	Show	GitHub Exploit DB Packet Storm

1360	7.1	重要 Local	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける複数の脆弱性	CWE-121 CWE-787 CWE-787	CVE-2026-0819	2026-05-1 10:49	2026-03-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312891	9.8	CRITICAL Network	totolink	t8_firmware	A vulnerability classified as critical has been found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220. This affects the function setWiFiRepeaterCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of t…	CWE-120 Classic Buffer Overflow	CVE-2024-8579	2024-09-11 00:47	2024-09-9	Show	GitHub Exploit DB Packet Storm

312892	9.8	CRITICAL Network	fabianros	hospital_management_system	A vulnerability has been found in code-projects Hospital Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file user-login.php. The m…	CWE-89 SQL Injection	CVE-2024-8569	2024-09-11 00:45	2024-09-8	Show	GitHub Exploit DB Packet Storm

312893	9.8	CRITICAL Network	payroll_management_system_project	payroll_management_system	A vulnerability, which was classified as critical, has been found in itsourcecode Payroll Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=delete_deducti…	CWE-89 SQL Injection	CVE-2024-8567	2024-09-11 00:44	2024-09-8	Show	GitHub Exploit DB Packet Storm

312894	6.1	MEDIUM Network	online_shop_store_project	online_shop_store	A vulnerability classified as problematic was found in code-projects Online Shop Store 1.0. This vulnerability affects unknown code of the file /settings.php. The manipulation of the argument error l…	CWE-79 Cross-site Scripting	CVE-2024-8566	2024-09-11 00:42	2024-09-8	Show	GitHub Exploit DB Packet Storm

312895	9.8	CRITICAL Network	oretnom23	clinic\'s_patient_management_system	A vulnerability was found in SourceCodesters Clinics Patient Management System 2.0. It has been rated as critical. This issue affects some unknown processing of the file /print_diseases.php. The mani…	CWE-89 SQL Injection	CVE-2024-8565	2024-09-11 00:40	2024-09-8	Show	GitHub Exploit DB Packet Storm

312896	8.8	HIGH Network	rems	php_crud	A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /endpoint/update.php. The manipulation of the argument …	CWE-89 SQL Injection	CVE-2024-8564	2024-09-11 00:38	2024-09-8	Show	GitHub Exploit DB Packet Storm

312897	6.1	MEDIUM Network	rems	php_crud	A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been classified as problematic. This affects an unknown part of the file /endpoint/update.php. The manipulation of the argument first_…	CWE-79 Cross-site Scripting	CVE-2024-8563	2024-09-11 00:37	2024-09-8	Show	GitHub Exploit DB Packet Storm

312898	6.1	MEDIUM Network	rems	php_crud	A vulnerability was found in SourceCodester PHP CRUD 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /endpoint/Add.php. The manipulation of the arg…	CWE-79 Cross-site Scripting	CVE-2024-8562	2024-09-11 00:36	2024-09-8	Show	GitHub Exploit DB Packet Storm

312899	-		-	-	D-Link DI-8300 v16.07.26A1 is vulnerable to command injection via the upgrade_filter_asp function.	-	CVE-2024-44410	2024-09-11 00:35	2024-09-10	Show	GitHub Exploit DB Packet Storm

312900	-		-	-	ONLYOFFICE Docs before 8.1.0 allows XSS via a GeneratorFunction Object attack against a macro. This is related to use of an immediately-invoked function expression (IIFE) for a macro. NOTE: this issu…	-	CVE-2024-44085	2024-09-11 00:35	2024-09-10	Show	GitHub Exploit DB Packet Storm