Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251761	4.3	警告	Sonexis Technology, Inc.	-	Sonexis ConferenceManager の myAddressBook.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3686	2011-10-3 14:55	2011-09-27	Show	GitHub Exploit DB Packet Storm

251762	1.9	注意	Tembria	-	Tembria Server Monitor における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-3685	2011-10-3 14:54	2011-09-27	Show	GitHub Exploit DB Packet Storm

251763	4.3	警告	Tembria	-	Tembria Server Monitor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3684	2011-10-3 14:52	2011-09-27	Show	GitHub Exploit DB Packet Storm

251764	7.5	危険	Newgen Software Technologies Limited	-	Newgen OmniDocs におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3645	2011-10-3 14:48	2011-09-27	Show	GitHub Exploit DB Packet Storm

251765	7.5	危険	AliBabaClone.com	-	Alibaba Clone B2B の countrydetails.php におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4849	2011-09-30 14:24	2011-09-27	Show	GitHub Exploit DB Packet Storm

251766	4.3	警告	Diferior	-	Diferior におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4850	2011-09-30 14:22	2011-09-27	Show	GitHub Exploit DB Packet Storm

251767	7.5	危険	Eclime	-	Eclime における複数の SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4851	2011-09-30 14:19	2011-09-27	Show	GitHub Exploit DB Packet Storm

251768	4.3	警告	Eclime	-	Eclime の login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4852	2011-09-30 14:15	2011-09-27	Show	GitHub Exploit DB Packet Storm

251769	7.5	危険	Zoho Corporation	-	ManageEngine EventLog Analyzer の Syslog サーバにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4840	2011-09-30 14:13	2011-09-27	Show	GitHub Exploit DB Packet Storm

251770	4.3	警告	Zoho Corporation	-	ManageEngine EventLog Analyzer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4841	2011-09-30 14:13	2011-09-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2981	6.3	MEDIUM Network	-	-	A vulnerability was found in Bootstrap CMS 0.9.0-alpha. Affected is an unknown function of the file resources/views/pages/show.blade.php of the component Page Creation Handler. Performing a manipulat…	CWE-74 CWE-94 Injection Code Injection	CVE-2026-7508	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2982	6.3	MEDIUM Network	-	-	A vulnerability was determined in OWAP DefectDojo up to 2.55.4. Affected by this vulnerability is an unknown functionality of the component Benchmark/Engagement/Product/Survey. Executing a manipulati…	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-7510	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2983	8.8	HIGH Network	-	-	A flaw has been found in UTT HiPER 1200GW up to 2.5.3-1703. The affected element is the function strcpy of the file /goform/formUser. Executing a manipulation can lead to buffer overflow. The attack …	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7512	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2984	8.8	HIGH Network	-	-	A vulnerability has been found in UTT HiPER 1200GW up to 2.5.3-170306. The impacted element is the function strcpy of the file /goform/formRemoteControl. The manipulation leads to buffer overflow. Th…	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7513	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2985	4.3	MEDIUM Network	-	-	A flaw has been found in Open5GS up to 2.7.7. This issue affects the function amf_namf_callback_handle_sdm_data_change_notify of the file /namf-callback/v1/{id}/sdmsubscription-notify of the componen…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7518	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2986	7.3	HIGH Network	-	-	A vulnerability has been found in Fujian Apex LiveBOS up to 2.0. Impacted is an unknown function of the file /feed/UploadImage.do of the component Endpoint. Such manipulation of the argument filename…	CWE-22 Path Traversal	CVE-2026-7519	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2987	4.3	MEDIUM Network	-	-	A vulnerability was found in Open5GS up to 2.7.7. This affects the function amf_namf_comm_handle_registration_status_update_request in the library /lib/app/ogs-init.c of the file /namf-comm/v1/ue-con…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7535	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2988	5.3	MEDIUM Network	-	-	A vulnerability was determined in Open5GS up to 2.7.7. This vulnerability affects the function bsf_sess_add_by_ip_address of the file /nbsf-management/v1/pcfBindings of the component BSF. Executing a…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7536	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2989	9.8	CRITICAL Network	-	-	A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function Vulnerability of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation o…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7538	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

2990	7.3	HIGH Network	-	-	A weakness has been identified in SourceCodester Advanced School Management System 1.0. The affected element is an unknown function of the file commonController.php of the component checkEmail Endpoi…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7545	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm