Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
411	5.9	警告 Network	Haxx	cURL	HaxxのcURLにおける認証情報の不十分な保護に関する脆弱性 New	CWE-522 認証情報の不十分な保護	CVE-2026-6253	2026-05-18 12:10	2026-05-13	Show	GitHub Exploit DB Packet Storm

412	7.5	重要 Network	Haxx	cURL	HaxxのcURLにおける重要な情報の平文での送信に関する脆弱性 New	CWE-319 重要な情報の平文での送信	CVE-2026-6276	2026-05-18 12:10	2026-05-13	Show	GitHub Exploit DB Packet Storm

413	5.3	警告 Network	Haxx	cURL	HaxxのcURLにおける不特定の脆弱性 New	CWE-noinfo 情報不足	CVE-2026-6429	2026-05-18 12:10	2026-05-13	Show	GitHub Exploit DB Packet Storm

414	7.5	重要 Network	PgBouncer	PgBouncer	PgBouncerにおける整数オーバーフローの脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-6664	2026-05-18 12:10	2026-05-9	Show	GitHub Exploit DB Packet Storm

415	9.8	緊急 Network	PgBouncer	PgBouncer	PgBouncerにおけるスタックベースのバッファオーバーフローの脆弱性 New	CWE-121 スタックオーバーフロー	CVE-2026-6665	2026-05-18 12:10	2026-05-9	Show	GitHub Exploit DB Packet Storm

416	7.5	重要 Network	PgBouncer	PgBouncer	PgBouncerにおけるNULL ポインタデリファレンスに関する脆弱性 New	CWE-476 NULL ポインタデリファレンス	CVE-2026-6666	2026-05-18 12:09	2026-05-9	Show	GitHub Exploit DB Packet Storm

417	4.3	警告 Network	PgBouncer	PgBouncer	PgBouncerにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-6667	2026-05-18 12:09	2026-05-9	Show	GitHub Exploit DB Packet Storm

418	5.3	警告 Network	Haxx	cURL	HaxxのcURLにおける証明書検証に関する脆弱性 New	CWE-295 不正な証明書検証	CVE-2026-7009	2026-05-18 12:09	2026-05-13	Show	GitHub Exploit DB Packet Storm

419	5.3	警告 Network	Haxx	cURL	HaxxのcURLにおけるCapture-replay による認証回避に関する脆弱性 New	CWE-294 Capture-replayによる認証回避	CVE-2026-7168	2026-05-18 12:09	2026-05-13	Show	GitHub Exploit DB Packet Storm

420	3.5	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-7471	2026-05-18 12:09	2026-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311781	8.8	HIGH Network	dlink	dir-605l_firmware	A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It has been declared as critical. Affected by this vulnerability is the function formSetWanL2TP of the file /goform/formSetWanL2TP. The mani…	CWE-120 Classic Buffer Overflow	CVE-2024-9551	2024-10-9 20:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

311782	8.8	HIGH Network	dlink	dir-605l_firmware	A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It has been classified as critical. Affected is the function formLogDnsquery of the file /goform/formLogDnsquery. The manipulation of the ar…	CWE-120 Classic Buffer Overflow	CVE-2024-9550	2024-10-9 20:15	2024-10-6	Show	GitHub Exploit DB Packet Storm

311783	8.8	HIGH Network	dlink	dir-619l_firmware	A vulnerability was found in D-Link DIR-619L B1 2.06 and classified as critical. Affected by this issue is the function formEasySetTimezone of the file /goform/formEasySetTimezone. The manipulation o…	CWE-120 Classic Buffer Overflow	CVE-2024-9570	2024-10-9 20:13	2024-10-8	Show	GitHub Exploit DB Packet Storm

311784	-		-	-	Products for macOS enables a user logged on to the system to perform a denial-of-service attack, which could be misused to disable the protection of the ESET security product and cause general system…	-	CVE-2024-6654	2024-10-9 18:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

311785	5.5	MEDIUM Local	-	-	Rejected reason: Maintainer contacted. This is a false-positive. The flaw does not actually exist and was erroneously tested.	-	CVE-2022-3857	2024-10-9 13:15	2023-03-7	Show	GitHub Exploit DB Packet Storm

311786	7.8	HIGH Local	-	-	Memory corruption while maintaining memory maps of HLOS memory.	-	CVE-2024-43047	2024-10-9 10:00	2024-10-7	Show	GitHub Exploit DB Packet Storm

311787	4.3	MEDIUM Network	ultimatemember	ultimate_member	The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up …	CWE-352 Origin Validation Error	CVE-2024-8520	2024-10-9 06:50	2024-10-4	Show	GitHub Exploit DB Packet Storm

311788	8.8	HIGH Network	cisco	ios_xr network_services_orchestrator small_business_rv_series_router_firmware	A vulnerability in the JSON-RPC API feature in Cisco Crosswork Network Services Orchestrator (NSO) and ConfD that is used by the web-based management interfaces of Cisco Optical Site Manager and Cisc…	NVD-CWE-noinfo	CVE-2024-20381	2024-10-9 06:43	2024-09-12	Show	GitHub Exploit DB Packet Storm

311789	5.3	MEDIUM Network	cisco	meraki_mx65_firmware meraki_mx64_firmware meraki_z4c_firmware meraki_z4_firmware meraki_z3c_firmware meraki_z3_firmware meraki_vmx_firmware meraki_mx600_firmware meraki_mx450_…	A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition for…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-20513	2024-10-9 06:16	2024-10-3	Show	GitHub Exploit DB Packet Storm

311790	7.5	HIGH Network	cisco	ios_xe	A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service feature is enabled could allow an unauthenticated, remote attacker to cause a denial of service (DoS) co…	CWE-476 NULL Pointer Dereference	CVE-2024-20436	2024-10-9 06:00	2024-09-26	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed