Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3501	6.5	警告 Network	nothings	stb vorbis.c	nothingsのstb vorbis.cにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-5316	2026-05-7 12:28	2026-04-2	Show	GitHub Exploit DB Packet Storm

3502	8.8	重要 Network	nothings	stb vorbis.c	nothingsのstb vorbis.cにおける複数の脆弱性	CWE-119 CWE-787	CVE-2026-5317	2026-05-7 12:28	2026-04-2	Show	GitHub Exploit DB Packet Storm

3503	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	ch22 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のch22 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5604	2026-05-7 12:28	2026-04-5	Show	GitHub Exploit DB Packet Storm

3504	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	ch22 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のch22 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5605	2026-05-7 12:28	2026-04-6	Show	GitHub Exploit DB Packet Storm

3505	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	HG3 Firmware	Shenzhen Tenda Technology Co.,Ltd.のHG3 Firmwareにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-7119	2026-05-7 12:28	2026-04-27	Show	GitHub Exploit DB Packet Storm

3506	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	HG3 Firmware	Shenzhen Tenda Technology Co.,Ltd.のHG3 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-7151	2026-05-7 12:28	2026-04-27	Show	GitHub Exploit DB Packet Storm

3507	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	HG3 Firmware	Shenzhen Tenda Technology Co.,Ltd.のHG3 Firmwareにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-7160	2026-05-7 12:28	2026-04-27	Show	GitHub Exploit DB Packet Storm

3508	7.3	重要 Network	NextChat	NextChat	NextChatにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-7177	2026-05-7 12:28	2026-04-27	Show	GitHub Exploit DB Packet Storm

3509	7.3	重要 Network	NextChat	NextChat	NextChatにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-7178	2026-05-7 12:28	2026-04-27	Show	GitHub Exploit DB Packet Storm

3510	7.3	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性	CWE-119 CWE-787	CVE-2026-7323	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316371	-	-	-	It is currently unknown if this issue is exploitable but a condition may arise where the structured clone of certain objects could lead to memory corruption. This vulnerability affects Firefox < 131,…	-	CVE-2024-9396	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm

316372	-	-	-	A compromised content process could have allowed for the arbitrary loading of cross-origin pages. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Firefox ESR < 115.16, Thunderbird < 12…	-	CVE-2024-9392	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm

316373	-	-	-	OSS Endpoint Manager is an endpoint manager module for FreePBX. OSS Endpoint Manager module activation can allow authenticated web users unauthorized access to read system files with the permissions …	CWE-22 Path Traversal	CVE-2024-47071	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm

316374	-	-	-	The WebDAV service in Infinera TNMS (Transcend Network Management System) 19.10.3 allows a low-privileged remote attacker to conduct unauthorized file operations, because of execution with unnecessar…	-	CVE-2024-25660	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm

316375	-	-	-	In Infinera TNMS (Transcend Network Management System) 19.10.3, an insecure default configuration of the internal SFTP server on Linux servers allows remote attacker to access files and directories o…	-	CVE-2024-25659	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm

316376	-	-	-	Pagekit 1.0.18 is vulnerable to Cross Site Scripting (XSS) in index.php/admin/site/widget.	-	CVE-2024-45967	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm

316377	-	-	-	eLabFTW is an open source electronic lab notebook for research labs. An incorrect permission check has been found that could allow an authenticated user to access several kinds of otherwise restricte…	CWE-284 Improper Access Control	CVE-2024-45408	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm

316378	-	-	-	PCAN-Ethernet Gateway FD before 1.3.0 and PCAN-Ethernet Gateway before 2.11.0 are vulnerable to Command injection via shell metacharacters in a Software Update to processing.php.	-	CVE-2024-44610	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm

316379	-	-	-	Decidim is a participatory democracy framework. The version control feature used in resources is subject to potential XSS attack through a malformed URL. This vulnerability is fixed in 0.27.8.	CWE-79 Cross-site Scripting	CVE-2024-41673	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm

316380	-	-	-	In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive information in memory of the desktop application TNMS Client allows guest OS administrators to obtain va…	-	CVE-2024-25661	2024-10-4 22:51	2024-10-2	Show	GitHub Exploit DB Packet Storm