Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3381	4.8	警告 Network	WAVLINK	WL-WN578W2 ファームウェア	WAVLINKのWL-WN578W2 ファームウェアにおける複数の脆弱性	CWE-79 CWE-94	CVE-2026-4544	2026-05-1 10:45	2026-03-22	Show	GitHub Exploit DB Packet Storm

3382	8.8	重要 Network	シスコシステムズ (Linksys)	mr9600 ファームウェア	Linksysのmr9600 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-4558	2026-05-1 10:45	2026-03-22	Show	GitHub Exploit DB Packet Storm

3383	8.8	重要 Network	Belkin International	F9K1122 ファームウェア	Belkin InternationalのF9K1122 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-4566	2026-05-1 10:45	2026-03-23	Show	GitHub Exploit DB Packet Storm

3384	8.8	重要 Network	WAVLINK	WL-NU516U1 ファームウェア	WAVLINKのWL-NU516U1 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-4861	2026-05-1 10:45	2026-03-26	Show	GitHub Exploit DB Packet Storm

3385	2.7	低 Network	OpenBMB	XAgent	OpenBMBのXAgentにおける複数の脆弱性	CWE-200 CWE-532 CWE-532	CVE-2026-4957	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3386	6.5	警告 Network	OpenBMB	XAgent	OpenBMBのXAgentにおける複数の脆弱性	CWE-285 CWE-639	CVE-2026-4958	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3387	7	重要 Local	UVNC	Ultra VNC	UVNCのUltra VNCにおける複数の脆弱性	CWE-426 CWE-427	CVE-2026-4962	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3388	6.5	警告 Network	Letta	Letta	Lettaにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-4964	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3389	9.8	緊急 Network	Letta	Letta	Lettaにおける複数の脆弱性	CWE-94 CWE-95	CVE-2026-4965	2026-05-1 10:45	2026-03-27	Show	GitHub Exploit DB Packet Storm

3390	4.2	警告 Network	FRRouting Project	FRRouting	FRRouting ProjectのFRRoutingにおける複数の脆弱性	CWE-266 CWE-284	CVE-2026-5107	2026-05-1 10:45	2026-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313861	9.8	CRITICAL Network	oceanicsoft	valeapp	Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking.This issue affects ValeApp: before v2.0.0.	CWE-384 Session Fixation	CVE-2024-8643	2024-10-5 02:14	2024-09-27	Show	GitHub Exploit DB Packet Storm

313862	6.1	MEDIUM Network	projectcaruso	flaming_forms	The Flaming Forms WordPress plugin through 1.0.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used agains…	CWE-79 Cross-site Scripting	CVE-2024-7692	2024-10-5 02:14	2024-09-2	Show	GitHub Exploit DB Packet Storm

313863	7.5	HIGH Network	oceanicsoft	valeapp	Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information.This issue affects ValeApp: before v2.0.0.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-8609	2024-10-5 02:12	2024-09-27	Show	GitHub Exploit DB Packet Storm

313864	9.8	CRITICAL Network	oceanicsoft	valeapp	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oceanic Software ValeApp allows SQL Injection.This issue affects ValeApp: before v2.0.0.	CWE-89 SQL Injection	CVE-2024-8607	2024-10-5 02:12	2024-09-27	Show	GitHub Exploit DB Packet Storm

313865	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: the warning dereferencing obj for nbio_v7_4 if ras_manager obj null, don't print NBIO err data	CWE-476 NULL Pointer Dereference	CVE-2024-46819	2024-10-5 02:11	2024-09-27	Show	GitHub Exploit DB Packet Storm

313866	5.4	MEDIUM Network	oceanicsoft	valeapp	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Oceanic Software ValeApp allows Stored XSS.This issue affects ValeApp: before v2.0.0.	CWE-79 Cross-site Scripting	CVE-2024-8608	2024-10-5 02:11	2024-09-27	Show	GitHub Exploit DB Packet Storm

313867	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix negative array index read Avoid using the negative values for clk_idex as an index into an array pptable->DpmDesc…	CWE-129 Improper Validation of Array Index	CVE-2024-46821	2024-10-5 02:06	2024-09-27	Show	GitHub Exploit DB Packet Storm

313868	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: Check for unset descriptor Make sure the descriptor has been set before looking at maxpacket. This fixes a nul…	CWE-476 NULL Pointer Dereference	CVE-2024-44960	2024-10-5 01:44	2024-09-5	Show	GitHub Exploit DB Packet Storm

313869	7.8	HIGH Local	randygaul	cute_png	cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_load_png_mem() function at cute_png.h.	CWE-787 Out-of-bounds Write	CVE-2024-46258	2024-10-5 01:41	2024-10-1	Show	GitHub Exploit DB Packet Storm

313870	7.8	HIGH Local	randygaul	cute_png	cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_make32() function at cute_png.h.	CWE-787 Out-of-bounds Write	CVE-2024-46261	2024-10-5 01:40	2024-10-1	Show	GitHub Exploit DB Packet Storm