Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3051	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F451 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-6134	2026-05-1 10:42	2026-04-12	Show	GitHub Exploit DB Packet Storm

3052	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F451 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-6135	2026-05-1 10:42	2026-04-13	Show	GitHub Exploit DB Packet Storm

3053	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F451 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-6136	2026-05-1 10:41	2026-04-13	Show	GitHub Exploit DB Packet Storm

3054	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F451 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-6137	2026-05-1 10:41	2026-04-13	Show	GitHub Exploit DB Packet Storm

3055	7.5	重要 Network	Cesanta	Mongoose	CesantaのMongooseにおける複数の脆弱性	CWE-404 CWE-835	CVE-2026-6985	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3056	3.7	低 Network	Cesanta	Mongoose	CesantaのMongooseにおける複数の脆弱性	CWE-345 CWE-347	CVE-2026-6986	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3057	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	HG10 Firmware	Shenzhen Tenda Technology Co.,Ltd.のHG10 Firmwareにおける複数の脆弱性	CWE-119 CWE-120	CVE-2026-6988	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3058	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F453 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF453 Firmwareにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-6989	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3059	7.2	重要 Network	シスコシステムズ (Linksys)	mr9600 ファームウェア	Linksysのmr9600 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-6992	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3060	4.8	警告 Network	D-Link Systems, Inc.	DSL-2740R ファームウェア	D-Link CorporationのDSL-2740R ファームウェアにおける複数の脆弱性	CWE-79 CWE-94	CVE-2026-7027	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315801	-		-	-	A Stored Cross Site Scripting (XSS) vulnerability was found in " /admin/edit_room_controller.php" of the Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary cod…	-	CVE-2024-42771	2024-08-24 01:18	2024-08-23	Show	GitHub Exploit DB Packet Storm

315802	-		-	-	A Stored Cross Site Scripting (XSS) vulnerability was found in "/core/signup_user.php" of Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary code via the "user…	-	CVE-2024-42770	2024-08-24 01:18	2024-08-23	Show	GitHub Exploit DB Packet Storm

315803	-		-	-	A Reflected Cross Site Scripting (XSS) vulnerability was found in "/core/signup_user.php " of Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary code via "user…	-	CVE-2024-42769	2024-08-24 01:18	2024-08-23	Show	GitHub Exploit DB Packet Storm

315804	-		-	-	authentik is an open-source Identity Provider. Several API endpoints can be accessed by users without correct authentication/authorization. The main API endpoints affected by this are /api/v3/crypto/…	-	CVE-2024-42490	2024-08-24 01:18	2024-08-23	Show	GitHub Exploit DB Packet Storm

315805	-		-	-	An issue has been discovered in GitLab EE affecting all versions starting from 12.5 before 17.1.6, all versions starting from 17.2 before 17.2.4, all versions starting from 17.3 before 17.3.1. Under …	-	CVE-2024-3127	2024-08-24 01:18	2024-08-23	Show	GitHub Exploit DB Packet Storm

315806	-		-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Web Security (Transaction Viewer) allows Stored XSS. The Forcepoint Web Security…	-	CVE-2023-6452	2024-08-24 01:18	2024-08-23	Show	GitHub Exploit DB Packet Storm

315807	-		-	-	Hono is a Web application framework that provides support for any JavaScript runtime. Hono CSRF middleware can be bypassed using crafted Content-Type header. MIME types are case insensitive, but isRe…	-	CVE-2024-43787	2024-08-24 01:18	2024-08-23	Show	GitHub Exploit DB Packet Storm

315808	-		-	-	gitoxide An idiomatic, lean, fast & safe pure Rust implementation of Git. gitoxide-core, which provides most underlying functionality of the gix and ein commands, does not neutralize newlines, backsp…	-	CVE-2024-43785	2024-08-24 01:18	2024-08-23	Show	GitHub Exploit DB Packet Storm

315809	-		-	-	REXML is an XML toolkit for Ruby. The REXML gem before 3.3.6 has a DoS vulnerability when it parses an XML that has many deep elements that have same local name attributes. If you need to parse untru…	-	CVE-2024-43398	2024-08-24 01:18	2024-08-23	Show	GitHub Exploit DB Packet Storm

315810	3.7	LOW Network	mattermost	mattermost	Mattermost versions 9.9.x <= 9.9.1, 9.5.x <= 9.5.7, 9.10.x <= 9.10.0, 9.8.x <= 9.8.2, when shared channels are enabled, fail to redact remote users' original email addresses stored in user props when…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-32939	2024-08-24 01:17	2024-08-22	Show	GitHub Exploit DB Packet Storm