Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2921	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31162	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

2922	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31163	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

2923	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31166	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

2924	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31167	2026-04-30 12:10	2026-04-23	Show	GitHub Exploit DB Packet Storm

2925	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31168	2026-04-30 12:10	2026-04-23	Show	GitHub Exploit DB Packet Storm

2926	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31169	2026-04-30 12:10	2026-04-23	Show	GitHub Exploit DB Packet Storm

2927	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31173	2026-04-30 12:10	2026-04-23	Show	GitHub Exploit DB Packet Storm

2928	9.8	緊急 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-31177	2026-04-30 12:10	2026-04-23	Show	GitHub Exploit DB Packet Storm

2929	9.8	緊急 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-31178	2026-04-30 12:10	2026-04-23	Show	GitHub Exploit DB Packet Storm

2930	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31179	2026-04-30 12:10	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315891	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray Patch series "mm/filemap: Limit page cache size to that supported by xa…	NVD-CWE-noinfo	CVE-2024-42243	2024-08-8 23:53	2024-08-8	Show	GitHub Exploit DB Packet Storm

315892	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm/shmem: disable PMD-sized page cache if needed For shmem files, it's possible that PMD-sized page cache can't be supported by x…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-42241	2024-08-8 23:53	2024-08-8	Show	GitHub Exploit DB Packet Storm

315893	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: x86/bhi: Avoid warning in #DB handler due to BHI mitigation When BHI mitigation is enabled, if SYSENTER is invoked with the TF fl…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2024-42240	2024-08-8 23:53	2024-08-8	Show	GitHub Exploit DB Packet Storm

315894	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wireguard: allowedips: avoid unaligned 64-bit memory accesses On the parisc platform, the kernel issues kernel warnings because s…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-42247	2024-08-8 23:52	2024-08-8	Show	GitHub Exploit DB Packet Storm

315895	-		-	-	A SQL injection vulnerability in /smsa/teacher_login.php in Kashipara Responsive School Management System v1.0 allows an attacker to execute arbitrary SQL commands via the "username" parameter.	-	CVE-2024-41237	2024-08-8 23:35	2024-08-8	Show	GitHub Exploit DB Packet Storm

315896	-		-	-	1Password 8 before 8.10.38 for macOS allows local attackers to exfiltrate vault items by bypassing macOS-specific security mechanisms.	-	CVE-2024-42218	2024-08-8 23:35	2024-08-7	Show	GitHub Exploit DB Packet Storm

315897	-		horde	imp	Horde IMP 2.2.7 allows remote attackers to obtain the full web root pathname via an HTTP request for (1) poppassd.php3, (2) login.php3?reason=chpass2, (3) spelling.php3, and (4) ldap.search.php3?ldap…	NVD-CWE-Other	CVE-2002-2024	2024-08-8 23:35	2002-12-31	Show	GitHub Exploit DB Packet Storm

315898	9.8	CRITICAL Network	oretnom23	lot_reservation_management_system	A vulnerability was found in SourceCodester Lot Reservation Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/ajax.php?action=login. …	CWE-89 SQL Injection	CVE-2024-7279	2024-08-8 22:57	2024-07-31	Show	GitHub Exploit DB Packet Storm

315899	9.8	CRITICAL Network	oretnom23	lot_reservation_management_system	A vulnerability was found in SourceCodester Lot Reservation Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/view_reserved.php. The …	CWE-89 SQL Injection	CVE-2024-7280	2024-08-8 22:56	2024-07-31	Show	GitHub Exploit DB Packet Storm

315900	9.8	CRITICAL Network	oretnom23	lot_reservation_management_system	A vulnerability classified as critical has been found in SourceCodester Lot Reservation Management System 1.0. Affected is an unknown function of the file /admin/index.php?page=manage_lot. The manipu…	CWE-89 SQL Injection	CVE-2024-7281	2024-08-8 22:55	2024-07-31	Show	GitHub Exploit DB Packet Storm