Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 16, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2801 | 7.4 |
重要
Network |
ERLANG |
Erlang/SSL (Erlang SSL) Erlang/OTP Erlang/Public Key (Public Key) |
ERLANGのErlang/OTP等の複数製品における証明書検証に関する脆弱性 |
CWE-295
不正な証明書検証 |
CVE-2026-32144 | 2026-04-27 11:27 | 2026-04-7 | Show | GitHub Exploit DB Packet Storm |
| 2802 | 9.8 |
緊急
Network |
CoreWeave | marimo | CoreWeaveのmarimoにおける重要な機能に対する認証の欠如に関する脆弱性 |
CWE-306
重要な機能に対する認証の欠如 解説 |
CVE-2026-39987 | 2026-04-27 11:27 | 2026-04-9 | Show | GitHub Exploit DB Packet Storm |
| 2803 | 9.8 |
緊急
Network |
codefuture | CF Image Hosting Script | codefutureのCF Image Hosting Scriptにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 |
CWE-552
外部からアクセス可能なファイルまたはディレクトリ |
CVE-2019-25709 | 2026-04-27 11:27 | 2026-04-12 | Show | GitHub Exploit DB Packet Storm |
| 2804 | 9.8 |
緊急
Network |
ERLANG |
Erlang/Inets (Inets) Erlang/OTP |
ERLANGのErlang/Inets (Inets)等の複数製品における不正な認証に関する脆弱性 |
CWE-863
不正な認証 |
CVE-2026-28808 | 2026-04-27 11:27 | 2026-04-7 | Show | GitHub Exploit DB Packet Storm |
| 2805 | 6.1 |
警告
Network |
Dovestones Software Ltd | AD Phonebook | Dovestones Software LtdのAD Phonebookにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-31013 | 2026-04-27 11:27 | 2026-04-21 | Show | GitHub Exploit DB Packet Storm |
| 2806 | 6.3 |
警告
Network |
Dovestones Software Ltd | AD Self Update | Dovestones Software LtdのAD Self Updateにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2026-31014 | 2026-04-27 11:27 | 2026-04-21 | Show | GitHub Exploit DB Packet Storm |
| 2807 | 9.8 |
緊急
Network |
reconurge | Flowsint | reconurgeのFlowsintにおけるOS コマンドインジェクションの脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2026-32311 | 2026-04-27 11:27 | 2026-04-20 | Show | GitHub Exploit DB Packet Storm |
| 2808 | 7.5 |
重要
Network |
freedom | SecureDrop-Client | freedomのSecureDrop-Clientにおける複数の脆弱性 |
CWE-36 CWE-73 |
CVE-2026-35465 | 2026-04-27 11:27 | 2026-04-18 | Show | GitHub Exploit DB Packet Storm |
| 2809 | 8.4 |
重要
Local |
Gitlawb | OpenClaude | GitlawbのOpenClaudeにおける複数の脆弱性 |
CWE-22 CWE-284 |
CVE-2026-35570 | 2026-04-27 11:27 | 2026-04-21 | Show | GitHub Exploit DB Packet Storm |
| 2810 | 8.8 |
重要
Network |
M1k1o | Neko | M1k1oのNekoにおける複数の脆弱性 |
CWE-20 CWE-269 CWE-284 CWE-639 CWE-862 |
CVE-2026-39386 | 2026-04-27 11:27 | 2026-04-21 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 16, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 314451 | 7.8 |
HIGH
Local |
catonetworks | cato_client | Cato Networks Windows SDP Client Local Privilege Escalation via self-upgradeThis issue affects SDP Client: before 5.10.34. |
CWE-426 CWE-276 Untrusted Search Path Incorrect Default Permissions |
CVE-2024-6974 | 2024-08-28 00:36 | 2024-08-1 | Show | GitHub Exploit DB Packet Storm |
| 314452 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, … |
CWE-78
OS Command |
CVE-2024-8133 | 2024-08-28 00:35 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 314453 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, … |
CWE-78
OS Command |
CVE-2024-8132 | 2024-08-28 00:35 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 314454 | - | - | - | A SQL Injection vulnerability exists in the updateServiceHost functionality in Centreon Web 24.04.x before 24.04.3, 23.10.x before 23.10.13, 23.04.x before 23.04.19, and 22.10.x before 22.10.23. | - | CVE-2024-32501 | 2024-08-28 00:35 | 2024-08-24 | Show | GitHub Exploit DB Packet Storm | |
| 314455 | - | - | - | An issue in Netgear DGN1000WW v.1.1.00.45 allows a remote attacker to execute arbitrary code via the Diagnostics page | - | CVE-2024-42756 | 2024-08-28 00:35 | 2024-08-24 | Show | GitHub Exploit DB Packet Storm | |
| 314456 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, … |
CWE-78
OS Command |
CVE-2024-8131 | 2024-08-28 00:34 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 314457 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-72… |
CWE-78
OS Command |
CVE-2024-8130 | 2024-08-28 00:34 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 314458 | 8.8 |
HIGH
Network |
catonetworks | cato_client | Remote Code Execution in Cato Windows SDP client via crafted URLs. This issue affects Windows SDP Client before 5.10.34. |
NVD-CWE-noinfo
|
CVE-2024-6973 | 2024-08-28 00:34 | 2024-08-1 | Show | GitHub Exploit DB Packet Storm |
| 314459 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability, which was classified as critical, was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-… |
CWE-78
OS Command |
CVE-2024-8129 | 2024-08-28 00:33 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 314460 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability, which was classified as critical, has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326,… |
CWE-78
OS Command |
CVE-2024-8128 | 2024-08-28 00:32 | 2024-08-24 | Show | GitHub Exploit DB Packet Storm |