Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251031	6.8	警告	ヒューレット・パッカード	-	HP LoadRunner にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2328	2011-06-16 10:21	2011-06-1	Show	GitHub Exploit DB Packet Storm

251032	5	警告	Anymacro	-	Anymacro Mail System G4X にディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-2468	2011-06-16 10:19	2011-06-1	Show	GitHub Exploit DB Packet Storm

251033	2.6	注意	マイクロソフト	-	Microsoft Outlook における開封確認機能に関する脆弱性	CWE-Other その他	-	2011-06-15 14:17	2011-06-15	Show	GitHub Exploit DB Packet Storm

251034	4.3	警告	マイクロソフト	-	ASP.NET におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2011-06-15 14:16	2011-06-15	Show	GitHub Exploit DB Packet Storm

251035	4.3	警告	マイクロソフト	-	Internet Explorer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2011-06-15 14:16	2011-06-15	Show	GitHub Exploit DB Packet Storm

251036	4.3	警告	マイクロソフト	-	Microsoft 製 MSXML における HTTP リクエスト処理に関する脆弱性	CWE-Other その他	-	2011-06-15 14:15	2011-06-15	Show	GitHub Exploit DB Packet Storm

251037	5.8	警告	マイクロソフト	-	Internet Explorer におけるクリップボードの操作に関する脆弱性	CWE-Other その他	-	2011-06-15 14:15	2011-06-15	Show	GitHub Exploit DB Packet Storm

251038	5	警告	マイクロソフト	-	Windows の VBScript 実装における情報漏えいの脆弱性	CWE-264 認可・権限・アクセス制御	-	2011-06-15 14:14	2011-06-15	Show	GitHub Exploit DB Packet Storm

251039	3.5	注意	IBM	-	IBM DB2 における SYSSTAT.TABLES 統計コラムを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1847	2011-06-15 09:54	2011-04-26	Show	GitHub Exploit DB Packet Storm

251040	3.3	注意	シスコシステムズ	-	Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2056	2011-06-15 09:50	2009-08-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1521	8.8	HIGH Network	-	-	Cross Site Request Forgery vulnerability in diskoverdata diskover-community v.2.3.5. and before allows a remote attacker to escalate privileges and obtain sensitive information via the public/setting…	CWE-352 Origin Validation Error	CVE-2026-38934	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

1522	6.1	MEDIUM Network	-	-	A reflected cross-site scripting (XSS) vulnerability exists in diskover-community <= 2.3.5 in public/view.php via the doctype parameter	CWE-79 Cross-site Scripting	CVE-2026-38935	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

1523	6.1	MEDIUM Network	-	-	A reflected cross-site scripting (XSS) vulnerability exists in diskover-community <= 2.3.5 in public/selectindices.php via the namecontains parameter	CWE-79 Cross-site Scripting	CVE-2026-38936	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

1524	9.8	CRITICAL Network	-	-	A flaw has been found in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the …	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7139	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

1525	9.8	CRITICAL Network	-	-	A vulnerability has been found in Totolink A8000RU 7.1cu.643_b20200521. Impacted is the function CsteSystem of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the arg…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7140	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

1526	5.4	MEDIUM Network	-	-	A weakness has been identified in mettle sendportal up to 3.0.1. Affected is the function destroy of the file app/Http/Controllers/Workspaces/WorkspaceInvitationsController.php of the component Invit…	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-7145	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

1527	4.0	MEDIUM Local	gnupg	libgcrypt	Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data.	CWE-787 Out-of-bounds Write	CVE-2026-41990	2026-04-28 03:33	2026-04-23	Show	GitHub Exploit DB Packet Storm

1528	6.7	MEDIUM Local	gnupg	libgcrypt	Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcry_pk_decrypt.	CWE-787 Out-of-bounds Write	CVE-2026-41989	2026-04-28 03:33	2026-04-23	Show	GitHub Exploit DB Packet Storm

1529	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: af_unix: read UNIX_DIAG_VFS data under unix_state_lock Exact UNIX diag lookups hold a reference to the socket, but not to u->path…	-	CVE-2026-31673	2026-04-28 03:32	2026-04-25	Show	GitHub Exploit DB Packet Storm

1530	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() Reject rt match rules whose addrnr exceeds IP6T_RT_HOPS. rt_mt6() …	-	CVE-2026-31674	2026-04-28 03:32	2026-04-25	Show	GitHub Exploit DB Packet Storm