Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
181 4.3 警告
Network 		シックス・アパート株式会社 Movable Type Premium (Advanced Edition)
Movable Type
Movable Type Advanced
Movable Type Premium 		Movable Typeにおける権限チェックの欠如の脆弱性 New CWE-Other
その他 		CVE-2026-44392 2026-05-20 14:09 2026-05-20 Show GitHub Exploit DB Packet Storm
182 4.3 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) for Android のスプーフィングの脆弱性 New CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-40416 2026-05-20 13:31 2026-05-12 Show GitHub Exploit DB Packet Storm
183 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける有効期限後または解放後のリソースの操作に関する脆弱性 New CWE-672
有効期限後または解放後のリソースの操作 		CVE-2026-4053 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
184 6.5 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける例外的な状態のチェックに関する脆弱性 New CWE-754
例外的な状態における不適切なチェック 		CVE-2026-4054 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
185 8.2 重要
Network 		TheCodingMachine Gotenberg TheCodingMachineのGotenbergにおける複数の脆弱性 New CWE-184
CWE-73
CVE-2026-40893 2026-05-20 13:31 2026-05-14 Show GitHub Exploit DB Packet Storm
186 7.8 重要
Local 		George Nachman iTerm2 George NachmanのiTerm2における信頼できない制御領域からの機能の組み込みに関する脆弱性 New CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41253 2026-05-20 13:31 2026-04-18 Show GitHub Exploit DB Packet Storm
187 8.2 重要
Network 		Quantum Nous New API Quantum NousのNew APIにおける複数の脆弱性 New CWE-1188
CWE-345
CWE-863
CVE-2026-41432 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
188 8.8 重要
Network 		anyscale ray anyscaleのrayにおける複数の脆弱性 New CWE-502
CWE-94
CVE-2026-41486 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
189 4.4 警告
Local 		cilium cilium ciliumにおける複数の脆弱性 New CWE-200
CWE-312
CWE-312
CVE-2026-41520 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
190 7 重要
Local 		VMware VMware Fusion VMwareのVMware FusionにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41702 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311731 - - - A vulnerability was discovered in DI_8200-16.07.26A1, which has been classified as critical. This issue affects the upgrade_filter_asp function in the upgrade_filter.asp file. Manipulation of the pat… - CVE-2024-44413 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
311732 9.8 CRITICAL
Network 		dlink dir-x4860_firmware Certain models of D-Link wireless routers do not properly validate user input in the telnet service, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inj… CWE-798
 Use of Hard-coded Credentials 		CVE-2024-45698 2024-10-15 19:15 2024-09-16 Show GitHub Exploit DB Packet Storm
311733 - - - The device directly executes .patch firmware upgrade files on a USB stick without any prior authentication in the admin interface. This leads to an unauthenticated code execution via the firmware upg… - CVE-2024-47944 2024-10-15 18:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311734 - - - The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Processing Unit devices checks if the patch files are signed before executing the containing run.sh sc… - CVE-2024-47943 2024-10-15 18:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311735 9.8 CRITICAL
Network 		- - AIM LINE Marketing Platform from Esi Technology does not properly validate a specific query parameter. When the LINE Campaign Module is enabled, unauthenticated remote attackers can inject arbitrary … CWE-89
SQL Injection 		CVE-2024-9982 2024-10-15 17:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311736 7.3 HIGH
Network 		- - The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.1. This is due to the software allowi… CWE-94
Code Injection 		CVE-2024-9837 2024-10-15 17:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311737 - - - Rejected reason: Unable to reproduce. - CVE-2024-1342 2024-10-15 07:15 2024-02-17 Show GitHub Exploit DB Packet Storm
311738 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-9823. Reason: This candidate is a reservation duplicate of CVE-2024-9823. Notes: All CVE users should reference CV… - CVE-2023-45817 2024-10-15 03:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311739 - - - External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls.Thi… CWE-73
CWE-732
 External Control of File Name or Path
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-9142 2024-10-15 01:35 2024-09-25 Show GitHub Exploit DB Packet Storm
311740 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-48251. Reason: This candidate is a reservation duplicate of CVE-2024-48251. Notes: All CVE users should reference CVE-2024-4825… - CVE-2024-48261 2024-10-15 00:15 2024-10-15 Show GitHub Exploit DB Packet Storm