Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3021	6.2	警告 Local	Mercurycom	MIPC252W Firmware	MercurycomのMIPC252W Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-35902	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

3022	9.8	緊急 Network	Mercurycom	MIPC252W Firmware	MercurycomのMIPC252W Firmwareにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2026-35903	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

3023	4.8	警告 Network	Apache Software Foundation	Apache Storm Prometheus Reporter	Apache Software FoundationのApache Storm Prometheus Reporterにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-40557	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

3024	8.8	重要 Network	minerva	minerva	Agilonhealth (MphRx)のMinervaにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-5779	2026-05-7 10:53	2026-04-28	Show	GitHub Exploit DB Packet Storm

3025	8.1	重要 Network	minerva	minerva	Agilonhealth (MphRx)のMinervaにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-5780	2026-05-7 10:52	2026-04-28	Show	GitHub Exploit DB Packet Storm

3026	8.8	重要 Network	Frappe	ERPNext	FrappeのERPNextにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2023-54345	2026-05-7 10:52	2026-05-5	Show	GitHub Exploit DB Packet Storm

3027	7.5	重要 Network	OpenEMR	OpenEMR	OpenEMRにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2023-54347	2026-05-7 10:52	2026-05-5	Show	GitHub Exploit DB Packet Storm

3028	7.2	重要 Network	デル	data domain operating system	デルのdata domain operating systemにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2025-46607	2026-05-7 10:52	2026-04-17	Show	GitHub Exploit DB Packet Storm

3029	6.6	警告 Network	デル	data domain operating system	デルのdata domain operating systemにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2025-46641	2026-05-7 10:52	2026-04-17	Show	GitHub Exploit DB Packet Storm

3030	8.8	重要 Adjacent	Google	Android	GoogleのAndroidにおける認証アルゴリズムの不適切な実装に関する脆弱性	CWE-303 認証アルゴリズム上の問題	CVE-2026-0073	2026-05-7 10:52	2026-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316221	-		-	-	In TRENDnet TEW-752DRU FW1.03B01, there is a buffer overflow vulnerability due to the lack of length verification for the service field in gena.cgi. Attackers who successfully exploit this vulnerabil…	-	CVE-2024-42813	2024-08-21 00:44	2024-08-20	Show	GitHub Exploit DB Packet Storm

316222	-		-	-	Command injection vulnerability in Asus RT-N15U 3.0.0.4.376_3754 allows a remote attacker to execute arbitrary code via the netstat function page.	-	CVE-2024-42757	2024-08-21 00:35	2024-08-16	Show	GitHub Exploit DB Packet Storm

316223	-		-	-	Cross Site Scripting vulnerability in Friendica v.2023.12 allows a remote attacker to obtain sensitive information via the text parameter of the babel debug feature.	-	CVE-2024-27728	2024-08-20 23:35	2024-08-16	Show	GitHub Exploit DB Packet Storm

316224	5.4	MEDIUM Network	mayurik	advocate_office_management_system	A vulnerability, which was classified as problematic, was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. This affects an unknown part of the file register_case.php. The ma…	CWE-79 Cross-site Scripting	CVE-2024-7686	2024-08-20 23:03	2024-08-12	Show	GitHub Exploit DB Packet Storm

316225	5.4	MEDIUM Network	mayurik	advocate_office_management_system	A vulnerability, which was classified as problematic, has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the f…	CWE-79 Cross-site Scripting	CVE-2024-7685	2024-08-20 22:53	2024-08-12	Show	GitHub Exploit DB Packet Storm

316226	5.4	MEDIUM Network	mayurik	advocate_office_management_system	A vulnerability classified as problematic was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected by this vulnerability is an unknown functionality of the file add_act…	CWE-79 Cross-site Scripting	CVE-2024-7684	2024-08-20 22:53	2024-08-12	Show	GitHub Exploit DB Packet Storm

316227	5.4	MEDIUM Network	mayurik	advocate_office_management_system	A vulnerability classified as problematic has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected is an unknown function of the file addcase_stage.php. The manipu…	CWE-79 Cross-site Scripting	CVE-2024-7683	2024-08-20 22:52	2024-08-12	Show	GitHub Exploit DB Packet Storm

316228	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix null pointer deref when receiving skb during sock creation The panic below is observed when receiving ICMP packets …	CWE-476 NULL Pointer Dereference	CVE-2023-52889	2024-08-20 06:19	2024-08-17	Show	GitHub Exploit DB Packet Storm

316229	9.8	CRITICAL Network	angeljudesuarez	billing_system	A vulnerability classified as critical has been found in itsourcecode Billing System 1.0. This affects an unknown part of the file addbill.php. The manipulation of the argument owners_id leads to sql…	CWE-89 SQL Injection	CVE-2024-7839	2024-08-20 06:18	2024-08-16	Show	GitHub Exploit DB Packet Storm

316230	5.4	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2024.07.1 reflected XSS was possible in the AWS Core plugin	CWE-79 Cross-site Scripting	CVE-2024-43810	2024-08-20 06:11	2024-08-17	Show	GitHub Exploit DB Packet Storm