Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1991	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	HG10 Firmware	Shenzhen Tenda Technology Co.,Ltd.のHG10 Firmwareにおける複数の脆弱性	CWE-119 CWE-120	CVE-2026-6988	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

1992	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F453 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF453 Firmwareにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-6989	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

1993	7.2	重要 Network	シスコシステムズ (Linksys)	mr9600 ファームウェア	Linksysのmr9600 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-6992	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

1994	4.8	警告 Network	D-Link Systems, Inc.	DSL-2740R ファームウェア	D-Link CorporationのDSL-2740R ファームウェアにおける複数の脆弱性	CWE-79 CWE-94	CVE-2026-7027	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

1995	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	FH1202 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のFH1202 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-7034	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

1996	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	FH1202 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のFH1202 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-7035	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

1997	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	i9 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のi9 ファームウェアにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-7036	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

1998	7.3	重要 Network	D-Link Systems, Inc.	DIR-822 ファームウェア	D-Link CorporationのDIR-822 ファームウェアにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-7067	2026-05-1 10:41	2026-04-27	Show	GitHub Exploit DB Packet Storm

1999	8.8	重要 Adjacent	ディーリンクジャパン株式会社	dir-825 ファームウェア	D-Link CorporationのDIR-825 ファームウェアにおける複数の脆弱性	CWE-119 CWE-120	CVE-2026-7068	2026-05-1 10:41	2026-04-27	Show	GitHub Exploit DB Packet Storm

2000	8	重要 Adjacent	ディーリンクジャパン株式会社	dir-825 ファームウェア	D-Link CorporationのDIR-825 ファームウェアにおける複数の脆弱性	CWE-119 CWE-120	CVE-2026-7069	2026-05-1 10:41	2026-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313431	6.5	MEDIUM Network	gitlab	gitlab	A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior to 17.1.6, 17.2 prior to 17.2.4, and 17.3 prior to 17.3.1. A denial of service could occur upon import…	NVD-CWE-noinfo	CVE-2024-8041	2024-09-12 01:54	2024-08-23	Show	GitHub Exploit DB Packet Storm

313432	6.4	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab EE affecting all versions starting 17.0 to 17.1.6, 17.2 prior to 17.2.4, and 17.3 prior to 17.3.1 allows an attacker to execute arbitrary command in a victim's pipel…	CWE-77 Command Injection	CVE-2024-7110	2024-09-12 01:52	2024-08-23	Show	GitHub Exploit DB Packet Storm

313433	6.5	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab CE/EE affecting all versions starting from 8.2 prior to 17.1.6 starting from 17.2 prior to 17.2.4, and starting from 17.3 prior to 17.3.1, which allows an attacker t…	NVD-CWE-noinfo	CVE-2024-6502	2024-09-12 01:49	2024-08-23	Show	GitHub Exploit DB Packet Storm

313434	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: spi: spi-zynq-qspi: Fix a NULL pointer dereference in zynq_qspi_exec_mem_op() In zynq_qspi_exec_mem_op(), kzalloc() is directly u…	CWE-476 NULL Pointer Dereference	CVE-2021-4441	2024-09-12 01:43	2024-08-22	Show	GitHub Exploit DB Packet Storm

313435	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race between quota rescan and disable leading to NULL pointer deref If we have one task trying to start the quota resc…	CWE-476 NULL Pointer Dereference	CVE-2023-52896	2024-09-12 01:37	2024-08-21	Show	GitHub Exploit DB Packet Storm

313436	5.4	MEDIUM Network	share-this-image	share_this_image	The Share This Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's STI Buttons shortcode in all versions up to, and including, 2.02 due to insufficient input sani…	CWE-79 Cross-site Scripting	CVE-2024-8363	2024-09-12 01:35	2024-09-5	Show	GitHub Exploit DB Packet Storm

313437	5.3	MEDIUM Network	ivorysearch	ivory_search	The Ivory Search – WordPress Search Plugin plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 5.5.6 via the ajax_load_posts function. This makes it possi…	NVD-CWE-noinfo	CVE-2024-6835	2024-09-12 01:32	2024-09-5	Show	GitHub Exploit DB Packet Storm

313438	8.1	HIGH Network	bitapps	file_manager	The Bit File Manager plugin for WordPress is vulnerable to Remote Code Execution in versions 6.0 to 6.5.5 via the 'checkSyntax' function. This is due to writing a temporary file to a publicly accessi…	CWE-362 Race Condition	CVE-2024-7627	2024-09-12 01:31	2024-09-5	Show	GitHub Exploit DB Packet Storm

313439	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: io_uring/poll: don't reissue in case of poll race on multishot request A previous commit fixed a poll race that can occur, but it…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2023-52895	2024-09-12 01:31	2024-08-21	Show	GitHub Exploit DB Packet Storm

313440	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_ncm: fix potential NULL ptr deref in ncm_bitrate() In Google internal bug 265639009 we've received an (as yet) unr…	CWE-476 NULL Pointer Dereference	CVE-2023-52894	2024-09-12 01:27	2024-08-21	Show	GitHub Exploit DB Packet Storm