Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3111 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-43504 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
3112 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-43505 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
3113 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43506 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
3114 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-43507 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
3115 7.5 重要
Network 		Debian
GStreamer
レッドハット		 GStreamer
Debian GNU/Linux
Red Hat Enterprise Linux
GStreamer Good Plug-ins 		Debian等の複数ベンダの製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-1940 2026-05-7 11:31 2026-03-23 Show GitHub Exploit DB Packet Storm
3116 9.8 緊急
Network 		OPPO ColorOS Assistant OPPOのColorOS Assistantにおける複数の脆弱性 CWE-22
CWE-23
CVE-2026-22070 2026-05-7 11:31 2026-04-30 Show GitHub Exploit DB Packet Storm
3117 8.8 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42364 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3118 7.5 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における観測された状態からの推測に関する脆弱性 CWE-341
観測された状態からの推測 		CVE-2026-42365 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3119 6.1 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42366 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3120 6.5 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-42367 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317631 - - - H3C GR1100-P v100R009 was discovered to use a hardcoded password in /etc/shadow, which allows attackers to log in as root. - CVE-2024-42639 2024-08-20 03:35 2024-08-17 Show GitHub Exploit DB Packet Storm
317632 - - - XML External Entity (XXE) vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC versions up to 1.0.4 allows authenticated users to submit malicious XML via unspecified features which cou… - CVE-2024-22219 2024-08-20 03:35 2024-08-16 Show GitHub Exploit DB Packet Storm
317633 9.8 CRITICAL
Network 		dlink dns-120_firmware
dnr-202l_firmware
dns-315l_firmware
dns-320_firmware
dns-320l_firmware
dns-320lw_firmware
dns-321_firmware
dnr-322l_firmware
dns-323_firmware
dns-325_firmw… 		** UNSUPPORTED WHEN ASSIGNED ** A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DN… CWE-120
Classic Buffer Overflow 		CVE-2024-7831 2024-08-20 03:35 2024-08-15 Show GitHub Exploit DB Packet Storm
317634 9.8 CRITICAL
Network 		dlink dns-120_firmware
dnr-202l_firmware
dns-315l_firmware
dns-320_firmware
dns-320l_firmware
dns-320lw_firmware
dns-321_firmware
dnr-322l_firmware
dns-323_firmware
dns-325_firmw… 		** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, … CWE-120
Classic Buffer Overflow 		CVE-2024-7830 2024-08-20 03:34 2024-08-15 Show GitHub Exploit DB Packet Storm
317635 9.8 CRITICAL
Network 		dlink dns-120_firmware
dnr-202l_firmware
dns-315l_firmware
dns-320_firmware
dns-320l_firmware
dns-320lw_firmware
dns-321_firmware
dnr-322l_firmware
dns-323_firmware
dns-325_firmw… 		** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-… CWE-120
Classic Buffer Overflow 		CVE-2024-7829 2024-08-20 03:34 2024-08-15 Show GitHub Exploit DB Packet Storm
317636 9.8 CRITICAL
Network 		dlink dns-120_firmware
dnr-202l_firmware
dns-315l_firmware
dns-320_firmware
dns-320l_firmware
dns-320lw_firmware
dns-321_firmware
dnr-322l_firmware
dns-323_firmware
dns-325_firmw… 		** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS… CWE-120
Classic Buffer Overflow 		CVE-2024-7828 2024-08-20 03:33 2024-08-15 Show GitHub Exploit DB Packet Storm
317637 4.8 MEDIUM
Network 		online_railway_reservation_system_project online_railway_reservation_system A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin-up… CWE-79
Cross-site Scripting 		CVE-2024-7815 2024-08-20 03:32 2024-08-15 Show GitHub Exploit DB Packet Storm
317638 4.8 MEDIUM
Network 		online_railway_reservation_system_project online_railway_reservation_system A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php of the co… CWE-79
Cross-site Scripting 		CVE-2024-7814 2024-08-20 03:31 2024-08-15 Show GitHub Exploit DB Packet Storm
317639 4.3 MEDIUM
Network 		monospace directus Directus v10.13.0 allows an authenticated external attacker to modify presets created by the same user to assign them to another user. This is possible because the application only validates the user… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-6534 2024-08-20 03:17 2024-08-15 Show GitHub Exploit DB Packet Storm
317640 7.5 HIGH
Network 		prison_management_system_project prison_management_system A vulnerability, which was classified as problematic, has been found in SourceCodester Prison Management System 1.0. This issue affects some unknown processing of the file /uploadImage/Profile/ of th… CWE-522
 Insufficiently Protected Credentials 		CVE-2024-7813 2024-08-20 03:16 2024-08-15 Show GitHub Exploit DB Packet Storm