Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251321	7.8	危険	アップル	-	Apple Mac OS X の AirPort におけるサービス運用妨害 (out-of-bounds read および、リブート) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0196	2011-07-5 09:01	2011-06-24	Show	GitHub Exploit DB Packet Storm

251322	7.8	危険	Linux	-	Linux kernel の dccp_parse_options 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1770	2011-07-4 08:39	2011-05-18	Show	GitHub Exploit DB Packet Storm

251323	3.5	注意	ターボリナックス Timo Sirainen	-	Dovecot におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3779	2011-07-4 08:36	2010-10-2	Show	GitHub Exploit DB Packet Storm

251324	5.5	警告	ターボリナックス Timo Sirainen	-	Dovecot の plugins/acl/acl-backend-vfile.c におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3706	2011-07-4 08:33	2010-10-2	Show	GitHub Exploit DB Packet Storm

251325	6.4	警告	ターボリナックス Timo Sirainen	-	Dovecot の ACL プラグインにおけるメールボックスを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3304	2011-07-4 08:32	2010-07-24	Show	GitHub Exploit DB Packet Storm

251326	5.8	警告	レッドハット	-	TigerVNC の vncviewer コンポネント内にある CSecurityTLS::processMsg 関数における TLS VNC サーバを偽造される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1775	2011-07-4 08:30	2011-05-26	Show	GitHub Exploit DB Packet Storm

251327	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2128	2011-07-1 15:32	2011-06-14	Show	GitHub Exploit DB Packet Storm

251328	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2127	2011-07-1 15:31	2011-06-14	Show	GitHub Exploit DB Packet Storm

251329	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2126	2011-07-1 15:30	2011-06-14	Show	GitHub Exploit DB Packet Storm

251330	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の Dirapix.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2125	2011-07-1 10:19	2011-06-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2211	-		-	-	authd prior to version 0.6.4 contains a logic error in primary group ID assignment that can lead to local privilege escalation. When a user's primary group ID (GID) differs from their UID, either bec…	CWE-842 Placement of User into Incorrect Group	CVE-2026-6970	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

2212	9.8	CRITICAL Network	-	-	A weakness has been identified in Totolink A8000RU 7.1cu.643_b20200521. Affected by this issue is the function setDmzCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a man…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7136	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

2213	9.8	CRITICAL Network	-	-	A security vulnerability has been detected in Totolink A8000RU 7.1cu.643_b20200521. This affects the function setStorageCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipula…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7137	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

2214	9.8	CRITICAL Network	-	-	A vulnerability was detected in Totolink A8000RU 7.1cu.643_b20200521. This vulnerability affects the function setNtpCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7138	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

2215	4.3	MEDIUM Network	-	-	An open redirect in the /api/google/authorize endpoint of hunvreus DevPush v0.3.2 allows attackers to redirect users to malicious sites via supplying a crafted URL.	CWE-601 Open Redirect	CVE-2026-30346	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

2216	4.3	MEDIUM Network	-	-	A path traversal vulnerability in the Blocks module of Daylight Studio FuelCMS v1.5.2 allows attackers to execute a directory traversal.	CWE-22 Path Traversal	CVE-2026-30462	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

2217	8.8	HIGH Network	-	-	Cross Site Request Forgery vulnerability in diskoverdata diskover-community v.2.3.5. and before allows a remote attacker to escalate privileges and obtain sensitive information via the public/setting…	CWE-352 Origin Validation Error	CVE-2026-38934	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

2218	6.1	MEDIUM Network	-	-	A reflected cross-site scripting (XSS) vulnerability exists in diskover-community <= 2.3.5 in public/view.php via the doctype parameter	CWE-79 Cross-site Scripting	CVE-2026-38935	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

2219	6.1	MEDIUM Network	-	-	A reflected cross-site scripting (XSS) vulnerability exists in diskover-community <= 2.3.5 in public/selectindices.php via the namecontains parameter	CWE-79 Cross-site Scripting	CVE-2026-38936	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

2220	9.8	CRITICAL Network	-	-	A flaw has been found in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the …	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7139	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm