Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3571	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F451 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-6134	2026-05-1 10:42	2026-04-12	Show	GitHub Exploit DB Packet Storm

3572	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F451 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-6135	2026-05-1 10:42	2026-04-13	Show	GitHub Exploit DB Packet Storm

3573	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F451 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-6136	2026-05-1 10:41	2026-04-13	Show	GitHub Exploit DB Packet Storm

3574	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F451 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-6137	2026-05-1 10:41	2026-04-13	Show	GitHub Exploit DB Packet Storm

3575	7.5	重要 Network	Cesanta	Mongoose	CesantaのMongooseにおける複数の脆弱性	CWE-404 CWE-835	CVE-2026-6985	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3576	3.7	低 Network	Cesanta	Mongoose	CesantaのMongooseにおける複数の脆弱性	CWE-345 CWE-347	CVE-2026-6986	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3577	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	HG10 Firmware	Shenzhen Tenda Technology Co.,Ltd.のHG10 Firmwareにおける複数の脆弱性	CWE-119 CWE-120	CVE-2026-6988	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3578	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F453 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF453 Firmwareにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-6989	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3579	7.2	重要 Network	シスコシステムズ (Linksys)	mr9600 ファームウェア	Linksysのmr9600 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-6992	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

3580	4.8	警告 Network	D-Link Systems, Inc.	DSL-2740R ファームウェア	D-Link CorporationのDSL-2740R ファームウェアにおける複数の脆弱性	CWE-79 CWE-94	CVE-2026-7027	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315541	6.1	MEDIUM Network	ibericode	mailchimp	The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'email' parameter when a placeholder such as {email} is used for the field in versions …	CWE-79 Cross-site Scripting	CVE-2024-8850	2024-09-26 03:49	2024-09-19	Show	GitHub Exploit DB Packet Storm

315542	8.8	HIGH Network	jeanmarc77	123solar	A vulnerability was found in jeanmarc77 123solar 1.8.4.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file config/config_invt1.php. The manipulation of …	CWE-94 Code Injection	CVE-2024-9006	2024-09-26 03:44	2024-09-20	Show	GitHub Exploit DB Packet Storm

315543	5.4	MEDIUM Network	jeanmarc77	123solar	A vulnerability classified as problematic has been found in jeanmarc77 123solar 1.8.4.5. This affects an unknown part of the file /detailed.php. The manipulation of the argument date1 leads to cross …	CWE-79 Cross-site Scripting	CVE-2024-9007	2024-09-26 03:40	2024-09-20	Show	GitHub Exploit DB Packet Storm

315544	5.3	MEDIUM Network	overleaf	overleaf	Overleaf is a web-based collaborative LaTeX editor. Overleaf Community Edition and Server Pro prior to version 5.0.7 (or 4.2.7 for the 4.x series) contain a vulnerability that allows an arbitrary lan…	CWE-74 Injection	CVE-2024-45312	2024-09-26 03:37	2024-09-3	Show	GitHub Exploit DB Packet Storm

315545	6.0	MEDIUM Network	fortinet	forticlient_endpoint_management_server	A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiClientEMS versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.13, 6.4.0 through 6.4.9, 6.2.0 through 6.2.…	CWE-22 Path Traversal	CVE-2024-21753	2024-09-26 03:36	2024-09-11	Show	GitHub Exploit DB Packet Storm

315546	5.4	MEDIUM Network	overleaf	overleaf	Overleaf is a web-based collaborative LaTeX editor. When installing Server Pro using the Overleaf Toolkit from before 2024-07-17 or legacy docker-compose.yml from before 2024-08-28, the configuration…	CWE-1188 Insecure Default Initialization of Resource	CVE-2024-45313	2024-09-26 03:12	2024-09-3	Show	GitHub Exploit DB Packet Storm

315547	6.5	MEDIUM Network	opendaylight	model-driven_service_abstraction_layer	In OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) through 13.0.1, a controller with a follower role can configure flow entries in an OpenDaylight clustering deployment.	NVD-CWE-noinfo	CVE-2024-46942	2024-09-26 03:08	2024-09-16	Show	GitHub Exploit DB Packet Storm

315548	5.4	MEDIUM Network	workdo	crmgo_saas	A vulnerability classified as problematic was found in CodeCanyon CRMGo SaaS 7.2. This vulnerability affects unknown code of the file /deal/{note_id}/note. The manipulation of the argument notes lead…	CWE-79 Cross-site Scripting	CVE-2024-9030	2024-09-26 03:01	2024-09-20	Show	GitHub Exploit DB Packet Storm

315549	9.8	CRITICAL Network	cellopoint	secure_email_gateway	Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers can send crafted packets to crash the process, thereby bypassing aut…	CWE-787 Out-of-bounds Write	CVE-2024-9043	2024-09-26 02:54	2024-09-20	Show	GitHub Exploit DB Packet Storm

315550	9.8	CRITICAL Network	medialibs	webo-facto	The Webo-facto plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.40 due to insufficient restriction on the 'doSsoAuthentification' function. This makes it…	NVD-CWE-noinfo	CVE-2024-8853	2024-09-26 02:49	2024-09-20	Show	GitHub Exploit DB Packet Storm