Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1911 7 重要
Local 		UVNC Ultra VNC UVNCのUltra VNCにおける複数の脆弱性 CWE-426
CWE-427
CVE-2026-4962 2026-05-1 10:45 2026-03-27 Show GitHub Exploit DB Packet Storm
1912 6.5 警告
Network 		Letta Letta Lettaにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-4964 2026-05-1 10:45 2026-03-27 Show GitHub Exploit DB Packet Storm
1913 9.8 緊急
Network 		Letta Letta Lettaにおける複数の脆弱性 CWE-94
CWE-95
CVE-2026-4965 2026-05-1 10:45 2026-03-27 Show GitHub Exploit DB Packet Storm
1914 4.2 警告
Network 		FRRouting Project FRRouting FRRouting ProjectのFRRoutingにおける複数の脆弱性 CWE-266
CWE-284
CVE-2026-5107 2026-05-1 10:45 2026-03-30 Show GitHub Exploit DB Packet Storm
1915 8.8 重要
Network 		TRENDnet TEW-713RE FIRMWARE TRENDnetのTEW-713RE FIRMWAREにおける複数の脆弱性 CWE-74
CWE-77
CVE-2026-5184 2026-05-1 10:45 2026-03-31 Show GitHub Exploit DB Packet Storm
1916 9.8 緊急
Network 		Cesanta Mongoose CesantaのMongooseにおける複数の脆弱性 CWE-119
CWE-122
CVE-2026-5244 2026-05-1 10:45 2026-04-2 Show GitHub Exploit DB Packet Storm
1917 8.1 重要
Network 		Cesanta Mongoose CesantaのMongooseにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5245 2026-05-1 10:45 2026-04-2 Show GitHub Exploit DB Packet Storm
1918 8.1 重要
Network 		Cesanta Mongoose CesantaのMongooseにおける複数の脆弱性 CWE-285
CWE-639
CVE-2026-5246 2026-05-1 10:45 2026-04-2 Show GitHub Exploit DB Packet Storm
1919 6.5 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-5263 2026-05-1 10:45 2026-04-9 Show GitHub Exploit DB Packet Storm
1920 9.8 緊急
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-5264 2026-05-1 10:45 2026-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313371 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: btrfs: prevent copying too big compressed lzo segment Compressed length can be corrupted to be a lot larger than memory we have a… CWE-787
 Out-of-bounds Write 		CVE-2022-48923 2024-09-12 21:50 2024-08-22 Show GitHub Exploit DB Packet Storm
313372 7.2 HIGH
Network 		lifterlms lifterlms The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to blind SQL Injection via the 'order' parameter in all versions up to, and including, 7.7.5 due to … CWE-89
SQL Injection 		CVE-2024-7349 2024-09-12 21:43 2024-09-6 Show GitHub Exploit DB Packet Storm
313373 9.8 CRITICAL
Network 		plechevandrey wp-recall The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to privilege escalation/account takeover in all versions up to, and including, 16.26.8. This is due to to plu… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-8292 2024-09-12 21:37 2024-09-6 Show GitHub Exploit DB Packet Storm
313374 - - - A vulnerability was found in Shandong Star Measurement and Control Equipment Heating Network Wireless Monitoring System 5.6.2 and classified as critical. Affected by this issue is the function GetDat… CWE-89
SQL Injection 		CVE-2024-8705 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
313375 - - - A vulnerability, which was classified as problematic, was found in JFinalCMS up to 20240903. This affects the function update of the file /admin/template/update of the component com.cms.controller.ad… CWE-22
Path Traversal 		CVE-2024-8694 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
313376 - - - A vulnerability, which was classified as problematic, has been found in Kaon CG3000 1.01.43. Affected by this issue is some unknown functionality of the component dhcpcd Command Handler. The manipula… CWE-79
Cross-site Scripting 		CVE-2024-8693 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
313377 - - - evilnapsis Inventio Lite Versions v4 and before is vulnerable to SQL Injection via the "username" parameter in "/?action=processlogin." - CVE-2024-44541 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
313378 - - - A problem with the ActiveMQ integration for both Cortex XSOAR and Cortex XSIAM can result in the cleartext exposure of the configured ActiveMQ credentials in log bundles. - CVE-2024-8689 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
313379 - - - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Payara Platform Payara Server (Logging modules) allows Sensitive credentials posted in plain-text on the server log.This is… - CVE-2024-8097 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
313380 - - - RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the time_date function. - CVE-2024-44577 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm