Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1441	7.6	重要 Network	WWBN	AVideo	WWBNのAVideoにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39369	2026-04-24 11:42	2026-04-7	Show	GitHub Exploit DB Packet Storm

1442	7.1	重要 Network	WWBN	AVideo	WWBNのAVideoにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-39370	2026-04-24 11:42	2026-04-7	Show	GitHub Exploit DB Packet Storm

1443	7.8	重要 Local	Vim	Vim	Vimにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-39881	2026-04-24 11:42	2026-04-8	Show	GitHub Exploit DB Packet Storm

1444	5.3	警告 Network	OpenEXR	OpenEXR	OpenEXRにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-39886	2026-04-24 11:42	2026-04-21	Show	GitHub Exploit DB Packet Storm

1445	8.8	重要 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAIにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-39891	2026-04-24 11:42	2026-04-8	Show	GitHub Exploit DB Packet Storm

1446	4.3	警告 Network	lycheeorg	lychee	lycheeorgのLycheeにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-39957	2026-04-24 11:42	2026-04-9	Show	GitHub Exploit DB Packet Storm

1447	9.6	緊急 Network	MISP	MISP	MISPにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-39962	2026-04-24 11:42	2026-04-9	Show	GitHub Exploit DB Packet Storm

1448	6.9	警告 Network	s9y	Serendipity	s9yのSerendipityにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性	CWE-565 検証および完全性チェックを行っていない Cookie への依存	CVE-2026-39963	2026-04-24 11:42	2026-04-15	Show	GitHub Exploit DB Packet Storm

1449	7.2	重要 Network	s9y	Serendipity	s9yのSerendipityにおけるHTTP レスポンス分割に関する脆弱性	CWE-113 HTTP レスポンスの分割	CVE-2026-39971	2026-04-24 11:42	2026-04-15	Show	GitHub Exploit DB Packet Storm

1450	7.1	重要 Local	apktool	apktool	Apktoolにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39973	2026-04-24 11:42	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
171	8.8	HIGH Network	-	-	A vulnerability was detected in code-projects for Plugin 4.1.2cu.5137. The impacted element is the function setWiFiMultipleConfig in the library /lib/cste_modules/wireless.so of the file /cgi-bin/cst… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7503	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

172	7.3	HIGH Network	-	-	A flaw has been found in nextlevelbuilder GoClaw and GoClaw Lite up to 3.8.5. This affects an unknown function of the component RPC Handler. This manipulation causes improper authorization. The attac… New	CWE-266 CWE-285 Incorrect Privilege Assignment Improper Authorization	CVE-2026-7505	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

173	7.3	HIGH Network	-	-	A vulnerability has been found in SourceCodester Hotel Management System 1.0. This impacts an unknown function of the file /index.php/reservation/check. Such manipulation of the argument room_type le… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7506	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

174	6.3	MEDIUM Network	-	-	A vulnerability was found in Bootstrap CMS 0.9.0-alpha. Affected is an unknown function of the file resources/views/pages/show.blade.php of the component Page Creation Handler. Performing a manipulat… New	CWE-74 CWE-94 Injection Code Injection	CVE-2026-7508	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

175	6.3	MEDIUM Network	-	-	A vulnerability was determined in OWAP DefectDojo up to 2.55.4. Affected by this vulnerability is an unknown functionality of the component Benchmark/Engagement/Product/Survey. Executing a manipulati… New	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-7510	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

176	8.8	HIGH Network	-	-	A flaw has been found in UTT HiPER 1200GW up to 2.5.3-1703. The affected element is the function strcpy of the file /goform/formUser. Executing a manipulation can lead to buffer overflow. The attack … New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7512	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

177	8.8	HIGH Network	-	-	A vulnerability has been found in UTT HiPER 1200GW up to 2.5.3-170306. The impacted element is the function strcpy of the file /goform/formRemoteControl. The manipulation leads to buffer overflow. Th… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7513	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

178	4.3	MEDIUM Network	-	-	A flaw has been found in Open5GS up to 2.7.7. This issue affects the function amf_namf_callback_handle_sdm_data_change_notify of the file /namf-callback/v1/{id}/sdmsubscription-notify of the componen… New	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7518	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

179	7.3	HIGH Network	-	-	A vulnerability has been found in Fujian Apex LiveBOS up to 2.0. Impacted is an unknown function of the file /feed/UploadImage.do of the component Endpoint. Such manipulation of the argument filename… New	CWE-22 Path Traversal	CVE-2026-7519	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

180	4.3	MEDIUM Network	-	-	A vulnerability was found in Open5GS up to 2.7.7. This affects the function amf_namf_comm_handle_registration_status_update_request in the library /lib/app/ogs-init.c of the file /namf-comm/v1/ue-con… New	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7535	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm