Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3151	8.8	重要 Network	WAVLINK	WL-NU516U1 ファームウェア	WAVLINKのWL-NU516U1 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-4861	2026-05-1 10:45	2026-03-26	Show	GitHub Exploit DB Packet Storm

3152	2.7	低 Network	OpenBMB	XAgent	OpenBMBのXAgentにおける複数の脆弱性	CWE-200 CWE-532 CWE-532	CVE-2026-4957	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3153	6.5	警告 Network	OpenBMB	XAgent	OpenBMBのXAgentにおける複数の脆弱性	CWE-285 CWE-639	CVE-2026-4958	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3154	7	重要 Local	UVNC	Ultra VNC	UVNCのUltra VNCにおける複数の脆弱性	CWE-426 CWE-427	CVE-2026-4962	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3155	6.5	警告 Network	Letta	Letta	Lettaにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-4964	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3156	9.8	緊急 Network	Letta	Letta	Lettaにおける複数の脆弱性	CWE-94 CWE-95	CVE-2026-4965	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3157	4.2	警告 Network	FRRouting Project	FRRouting	FRRouting ProjectのFRRoutingにおける複数の脆弱性	CWE-266 CWE-284	CVE-2026-5107	2026-05-1 10:45	2026-03-30	Show	GitHub Exploit DB Packet Storm

3158	8.8	重要 Network	TRENDnet	TEW-713RE FIRMWARE	TRENDnetのTEW-713RE FIRMWAREにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-5184	2026-05-1 10:45	2026-03-31	Show	GitHub Exploit DB Packet Storm

3159	9.8	緊急 Network	Cesanta	Mongoose	CesantaのMongooseにおける複数の脆弱性	CWE-119 CWE-122	CVE-2026-5244	2026-05-1 10:45	2026-04-2	Show	GitHub Exploit DB Packet Storm

3160	8.1	重要 Network	Cesanta	Mongoose	CesantaのMongooseにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5245	2026-05-1 10:45	2026-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316421	-	-	-	Insecure Permissions vulnerability in Friendica v.2023.12 allows a remote attacker to obtain sensitive information and execute arbitrary code via the cid parameter of the calendar event feature.	-	CVE-2024-27730	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316422	-	-	-	Vulnerability in Xiexe XSOverlay before build 647 allows non-local websites to send the malicious commands to the WebSocket API, resulting in the arbitrary code execution.	-	CVE-2024-23168	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316423	-	-	-	XML External Entity (XXE) vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC versions up to 1.0.4 allows authenticated users to submit malicious XML via unspecified features which cou…	-	CVE-2024-22218	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316424	-	-	-	Module savepoints could be abused to inject references to malicious code delivered through the same domain. Attackers could perform malicious API requests or extract information from the users accoun…	-	CVE-2024-25582	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm

316425	-	-	-	Authorization Bypass Through User-Controlled Key vulnerability in Propovoice Propovoice CRM.This issue affects Propovoice CRM: from n/a through 1.7.6.4.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-43350	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm

316426	-	-	-	Authorization Bypass Through User-Controlled Key vulnerability in Dylan James Zephyr Project Manager.This issue affects Zephyr Project Manager: from n/a through 3.3.100.	-	CVE-2024-43322	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm

316427	-	-	-	Authorization Bypass Through User-Controlled Key vulnerability in Checkout Plugins Stripe Payments For WooCommerce by Checkout.This issue affects Stripe Payments For WooCommerce by Checkout: from n/a…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-43315	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm

316428	-	-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in BoldThemes Bold Timeline Lite allows Stored XSS.This issue affects Bold Timeline Lite: fro…	CWE-79 Cross-site Scripting	CVE-2024-43294	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm

316429	-	-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in EnvoThemes Envo's Elementor Templates & Widgets for WooCommerce allows Stored XSS.This iss…	CWE-79 Cross-site Scripting	CVE-2024-43292	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm

316430	-	-	-	Authorization Bypass Through User-Controlled Key vulnerability in gVectors Team wpForo Forum.This issue affects wpForo Forum: from n/a through 2.3.4.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-43288	2024-08-19 21:59	2024-08-19	Show	GitHub Exploit DB Packet Storm