Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211 4.3 警告
Network 		mintplexlabs anythingllm mintplexlabsのanythingllmにおける複数の脆弱性 New CWE-200
CWE-639
CWE-639
CVE-2026-42456 2026-05-20 13:30 2026-05-8 Show GitHub Exploit DB Packet Storm
212 6.1 警告
Network 		Gofiber Fiber GofiberのFiberにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42554 2026-05-20 13:29 2026-05-11 Show GitHub Exploit DB Packet Storm
213 9 緊急
Network 		Gitroom Postiz GitroomのPostizにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42556 2026-05-20 13:29 2026-05-8 Show GitHub Exploit DB Packet Storm
214 7.5 重要
Network 		Netty Netty Nettyにおける有効なライフタイム後のリソースの解放の欠如に関する脆弱性 New CWE-772
有効なライフタイム後のリソースの解放の欠如 		CVE-2026-42577 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
215 7.5 重要
Network 		Netty Netty NettyにおけるHTTP レスポンス分割に関する脆弱性 New CWE-113
HTTP レスポンスの分割 		CVE-2026-42578 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
216 9.1 緊急
Network 		Netty Netty Nettyにおける複数の脆弱性 New CWE-20
CWE-400
CWE-626
CVE-2026-42579 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
217 6.5 警告
Network 		Netty Netty Nettyにおける複数の脆弱性 New CWE-190
CWE-444
CVE-2026-42580 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
218 9.8 緊急
Network 		Netty Netty NettyにおけるHTTP リクエストスマグリングに関する脆弱性 New CWE-444
HTTP リクエストスマグリング 		CVE-2026-42581 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
219 7.5 重要
Network 		Netty Netty Nettyにおける複数の脆弱性 New CWE-770
CWE-789
CVE-2026-42582 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
220 7.5 重要
Network 		Netty Netty Nettyにおける複数の脆弱性 New CWE-400
CWE-770
CVE-2026-42583 2026-05-20 13:29 2026-05-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311731 - - - A vulnerability was discovered in DI_8200-16.07.26A1, which has been classified as critical. This issue affects the upgrade_filter_asp function in the upgrade_filter.asp file. Manipulation of the pat… - CVE-2024-44413 2024-10-15 21:57 2024-10-12 Show GitHub Exploit DB Packet Storm
311732 9.8 CRITICAL
Network 		dlink dir-x4860_firmware Certain models of D-Link wireless routers do not properly validate user input in the telnet service, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inj… CWE-798
 Use of Hard-coded Credentials 		CVE-2024-45698 2024-10-15 19:15 2024-09-16 Show GitHub Exploit DB Packet Storm
311733 - - - The device directly executes .patch firmware upgrade files on a USB stick without any prior authentication in the admin interface. This leads to an unauthenticated code execution via the firmware upg… - CVE-2024-47944 2024-10-15 18:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311734 - - - The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Processing Unit devices checks if the patch files are signed before executing the containing run.sh sc… - CVE-2024-47943 2024-10-15 18:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311735 9.8 CRITICAL
Network 		- - AIM LINE Marketing Platform from Esi Technology does not properly validate a specific query parameter. When the LINE Campaign Module is enabled, unauthenticated remote attackers can inject arbitrary … CWE-89
SQL Injection 		CVE-2024-9982 2024-10-15 17:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311736 7.3 HIGH
Network 		- - The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.1. This is due to the software allowi… CWE-94
Code Injection 		CVE-2024-9837 2024-10-15 17:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311737 - - - Rejected reason: Unable to reproduce. - CVE-2024-1342 2024-10-15 07:15 2024-02-17 Show GitHub Exploit DB Packet Storm
311738 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-9823. Reason: This candidate is a reservation duplicate of CVE-2024-9823. Notes: All CVE users should reference CV… - CVE-2023-45817 2024-10-15 03:15 2024-10-15 Show GitHub Exploit DB Packet Storm
311739 - - - External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls.Thi… CWE-73
CWE-732
 External Control of File Name or Path
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-9142 2024-10-15 01:35 2024-09-25 Show GitHub Exploit DB Packet Storm
311740 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-48251. Reason: This candidate is a reservation duplicate of CVE-2024-48251. Notes: All CVE users should reference CVE-2024-4825… - CVE-2024-48261 2024-10-15 00:15 2024-10-15 Show GitHub Exploit DB Packet Storm