Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2681	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind…	Windows カーネルの情報漏えいの脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-32215	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

2682	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 26h1	Windows リダイレクトドライブバッファリングシステムのサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-32216	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

2683	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows カーネルの情報漏えいの脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-32217	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

2684	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 22h2 Microsoft Windows 10 21h2 Microsoft Windows&…	Windows カーネルの情報漏えいの脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-32218	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

2685	7	重要 Local	マイクロソフト	Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 25h2	Microsoft Resilient File System の特権昇格の脆弱性	CWE-362 CWE-415	CVE-2026-32219	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

2686	9.8	緊急 Network	DataEase	DataEase	DataEaseにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33082	2026-04-21 10:49	2026-04-16	Show	GitHub Exploit DB Packet Storm

2687	8.8	重要 Network	DataEase	DataEase	DataEaseにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33083	2026-04-21 10:49	2026-04-16	Show	GitHub Exploit DB Packet Storm

2688	8.8	重要 Network	DataEase	DataEase	DataEaseにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33084	2026-04-21 10:49	2026-04-16	Show	GitHub Exploit DB Packet Storm

2689	8.8	重要 Network	DataEase	DataEase	DataEaseにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33121	2026-04-21 10:49	2026-04-16	Show	GitHub Exploit DB Packet Storm

2690	9.8	緊急 Network	DataEase	DataEase	DataEaseにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33122	2026-04-21 10:49	2026-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	6.3	MEDIUM Network	-	-	A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument ppp_username/ppp_passwd/rwa… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8190	2026-05-10 03:16	2026-05-10	Show	GitHub Exploit DB Packet Storm

2	6.3	MEDIUM Network	-	-	A vulnerability was found in Wavlink NU516U1 M16U1_V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlan_bssid/sel_Au… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8189	2026-05-10 02:16	2026-05-10	Show	GitHub Exploit DB Packet Storm

3	6.3	MEDIUM Network	-	-	A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wifi_password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl_channel/wl_Pass/Encryp… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8188	2026-05-10 01:16	2026-05-10	Show	GitHub Exploit DB Packet Storm

4	5.3	MEDIUM Network	-	-	The Activity Logs, User Activity Tracking, Multisite Activity Log from Logtivity plugin for WordPress is vulnerable to Authentication Bypass to Information Disclosure in versions up to, and including… New	CWE-200 Information Exposure	CVE-2026-8198	2026-05-9 22:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

5	-		-	-	Allocation of Resources Without Limits or Throttling vulnerability in absinthe-graphql absinthe allows unauthenticated denial of service via atom table exhaustion when parsing attacker-controlled Gra… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-42793	2026-05-9 22:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

6	5.3	MEDIUM Network	-	-	A vulnerability was detected in Open5GS up to 2.7.7. This affects the function ogs_sbi_client_send_via_scp_or_sepp in the library lib/sbi/client.c of the component NF. Performing a manipulation resul… New	CWE-119 CWE-125 Incorrect Access of Indexable Resource ('Range Error') Out-of-bounds Read	CVE-2026-8186	2026-05-9 21:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

7	5.3	MEDIUM Network	-	-	A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component UPF. Executing a manipulation can lead to resource consumption… New	CWE-400 CWE-404 Uncontrolled Resource Consumption Improper Resource Shutdown or Release	CVE-2026-8187	2026-05-9 20:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

8	6.3	MEDIUM Adjacent	-	-	A security vulnerability has been detected in UGREEN CM933 1.1.59.4319. The impacted element is an unknown function of the component Administrative Interface. Such manipulation leads to missing authe… New	CWE-287 CWE-306 Improper Authentication Missing Authentication for Critical Function	CVE-2026-8185	2026-05-9 20:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

9	7.2	HIGH Network	-	-	Some Hikvision switch products (discontinued since December 2023) are vulnerable to authenticated remote command execution due to insufficient input validation. Attackers with valid credentials can e… New	-	CVE-2026-3828	2026-05-9 18:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

10	5.3	MEDIUM Adjacent	-	-	Some EZVIZ products utilize older versions of cloud feature modules with legacy API interfaces, which pose a data transmission risk. Attackers can exploit this by eavesdropping on network requests to… New	-	CVE-2026-32683	2026-05-9 18:16	2026-05-9	Show	GitHub Exploit DB Packet Storm