Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3671	4.3	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-1272	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

3672	4.9	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるビジネスロジックエラーに関する脆弱性	CWE-840 ビジネスロジックエラー	CVE-2026-1274	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

3673	6.5	警告 Network	IBM	IBM DB2	IBMのIBM DB2における入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2026-1352	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

3674	9.8	緊急 Network	エリクソン	CodeChecker	エリクソンのCodeCheckerにおける複数の脆弱性	CWE-290 CWE-863	CVE-2026-25660	2026-04-30 12:11	2026-04-24	Show	GitHub Exploit DB Packet Storm

3675	7.8	重要 Local	マイクロソフト	PowerShell	Microsoft PowerShell セキュリティ機能のバイパスの脆弱性	CWE-20 不適切な入力確認	CVE-2026-26143	2026-04-30 12:11	2026-04-14	Show	GitHub Exploit DB Packet Storm

3676	9.8	緊急 Network	デル	PowerProtect DP Series Appliance data domain operating system	デルのdata domain operating system等の複数製品における複数の脆弱性	CWE-121 CWE-787	CVE-2026-26354	2026-04-30 12:11	2026-04-22	Show	GitHub Exploit DB Packet Storm

3677	6.2	警告 Local	アップル	iPadOS iOS	アップルのiPadOS等の複数製品における認可されていない行為者への個人情報の漏えいに関する脆弱性	CWE-359 認可されていないアクターへの個人情報の漏えい	CVE-2026-28950	2026-04-30 12:11	2026-04-22	Show	GitHub Exploit DB Packet Storm

3678	6.1	警告 Local	Chainguard	Melange	ChainguardのMelangeにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-29050	2026-04-30 12:11	2026-04-24	Show	GitHub Exploit DB Packet Storm

3679	3.3	低 Local	Chainguard	Melange	ChainguardのMelangeにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-29051	2026-04-30 12:11	2026-04-24	Show	GitHub Exploit DB Packet Storm

3680	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31162	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
401	6.3	MEDIUM Network	-	-	A weakness has been identified in code-projects Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /process/applyleaveprocess.php. This manipulatio… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9451	2026-05-25 20:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

402	6.3	MEDIUM Network	-	-	A security flaw has been discovered in code-projects Employee Management System 1.0. Affected is an unknown function of the file /psubmit.php. The manipulation of the argument pid results in sql inje… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9450	2026-05-25 20:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

403	6.3	MEDIUM Network	-	-	A vulnerability was identified in code-projects Employee Management System 1.0. This impacts an unknown function of the file /changepassemp.php. The manipulation leads to sql injection. It is possibl… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9449	2026-05-25 20:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

404	4.3	MEDIUM Network	-	-	A vulnerability was determined in code-projects Employee Management System 1.0. This affects an unknown function of the file /applyleave.php. Executing a manipulation of the argument ID can lead to c… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-9448	2026-05-25 20:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

405	7.3	HIGH Network	-	-	A vulnerability was found in SourceCodester Simple POS and Inventory System 1.0. The impacted element is an unknown function of the file /user/search.php. Performing a manipulation of the argument Na… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9447	2026-05-25 20:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

406	-		-	-	OutSystems Lifetime is vulnerable to Authorization Bypass Through User-Controlled Key vulnerability in ApplicationID parameter. Any authenticated user, can read the Change Log containing actions perf… New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-40127	2026-05-25 20:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

407	4.7	MEDIUM Network	-	-	A vulnerability has been found in SourceCodester Simple POS and Inventory System 1.0. The affected element is an unknown function of the file /admin/edit_customer.php. Such manipulation of the argume… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9446	2026-05-25 19:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

408	6.3	MEDIUM Network	-	-	A flaw has been found in SourceCodester Simple POS and Inventory System 1.0. Impacted is an unknown function of the file /admin/addproduct.php of the component File Extension Handler. This manipulati… New	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2026-9445	2026-05-25 19:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

409	4.7	MEDIUM Network	-	-	A vulnerability was detected in SourceCodester Simple POS and Inventory System 1.0. This issue affects the function delete of the file /admin/deleteproduct.php of the component GET Parameter Handler.… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9444	2026-05-25 19:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

410	8.8	HIGH Network	-	-	A security vulnerability has been detected in Edimax BR-6478AC 1.23. This vulnerability affects the function formL2TPSetup of the file /goform/formL2TPSetup of the component POST Request Handler. The… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-9443	2026-05-25 19:16	2026-05-25	Show	GitHub Exploit DB Packet Storm