Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3201 8.8 重要
Network 		D-Link Systems, Inc. DIR-605L ファームウェア D-Link CorporationのDIR-605L ファームウェアにおける複数の脆弱性 CWE-119
CWE-120
CVE-2026-5980 2026-05-1 10:43 2026-04-9 Show GitHub Exploit DB Packet Storm
3202 8.8 重要
Network 		D-Link Systems, Inc. DIR-605L ファームウェア D-Link CorporationのDIR-605L ファームウェアにおける複数の脆弱性 CWE-119
CWE-120
CVE-2026-5981 2026-05-1 10:43 2026-04-9 Show GitHub Exploit DB Packet Storm
3203 8.8 重要
Network 		D-Link Systems, Inc. DIR-605L ファームウェア D-Link CorporationのDIR-605L ファームウェアにおける複数の脆弱性 CWE-119
CWE-120
CVE-2026-5982 2026-05-1 10:43 2026-04-9 Show GitHub Exploit DB Packet Storm
3204 8.8 重要
Network 		D-Link Systems, Inc. DIR-605L ファームウェア D-Link CorporationのDIR-605L ファームウェアにおける複数の脆弱性 CWE-119
CWE-120
CVE-2026-5983 2026-05-1 10:43 2026-04-9 Show GitHub Exploit DB Packet Storm
3205 8.8 重要
Network 		D-Link Systems, Inc. DIR-605L ファームウェア D-Link CorporationのDIR-605L ファームウェアにおける複数の脆弱性 CWE-119
CWE-120
CVE-2026-5984 2026-05-1 10:43 2026-04-9 Show GitHub Exploit DB Packet Storm
3206 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5988 2026-05-1 10:43 2026-04-9 Show GitHub Exploit DB Packet Storm
3207 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5989 2026-05-1 10:43 2026-04-10 Show GitHub Exploit DB Packet Storm
3208 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5990 2026-05-1 10:42 2026-04-10 Show GitHub Exploit DB Packet Storm
3209 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5991 2026-05-1 10:42 2026-04-10 Show GitHub Exploit DB Packet Storm
3210 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5992 2026-05-1 10:42 2026-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315731 6.4 MEDIUM
Network 		- - The 140+ Widgets | Xpro Addons For Elementor – FREE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘arrow’ parameter within the Post Grid widget in all versions up to, and … - CVE-2024-7791 2024-08-27 22:01 2024-08-27 Show GitHub Exploit DB Packet Storm
315732 - - - Tophat is a mobile applications testing harness. An Improper Access Control vulnerability can expose the `TOPHAT_APP_TOKEN` token stored in `~/.tophatrc` through use of a malicious Tophat URL control… - CVE-2024-45036 2024-08-27 22:01 2024-08-27 Show GitHub Exploit DB Packet Storm
315733 - - - Chisel is a fast TCP/UDP tunnel, transported over HTTP, secured via SSH. The Chisel server doesn't ever read the documented `AUTH` environment variable used to set credentials, which allows any unaut… - CVE-2024-43798 2024-08-27 22:01 2024-08-27 Show GitHub Exploit DB Packet Storm
315734 6.1 MEDIUM
Network 		3ds 3dexperience A reflected Cross-site Scripting (XSS) vulnerability affecting 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in use… CWE-79
Cross-site Scripting 		CVE-2024-6379 2024-08-27 18:15 2024-08-20 Show GitHub Exploit DB Packet Storm
315735 - - - The Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.4.1 … - CVE-2024-8046 2024-08-27 17:15 2024-08-27 Show GitHub Exploit DB Packet Storm
315736 6.1 MEDIUM
Network 		3ds 3dexperience An URL redirection to untrusted site (open redirect) vulnerability affecting 3DPassport in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to redirect… CWE-601
Open Redirect 		CVE-2024-6377 2024-08-27 17:15 2024-08-20 Show GitHub Exploit DB Packet Storm
315737 - - - Authentication Bypass vulnerability in Hitachi Ops Center Common Services.This issue affects Hitachi Ops Center Common Services: from 10.9.3-00 before 11.0.2-01. - CVE-2024-7125 2024-08-27 14:15 2024-08-27 Show GitHub Exploit DB Packet Storm
315738 4.3 MEDIUM
Network 		- - The Oxygen Builder plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the oxy_save_css_from_admin AJAX action in all versions up to, and incl… - CVE-2024-6688 2024-08-27 14:15 2024-08-27 Show GitHub Exploit DB Packet Storm
315739 - - - Rejected reason: Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that the issue does not pose a secu… - CVE-2024-7989 2024-08-27 06:15 2024-08-27 Show GitHub Exploit DB Packet Storm
315740 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… - CVE-2024-8188 2024-08-27 05:15 2024-08-27 Show GitHub Exploit DB Packet Storm