Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4381	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	W308R Firmware	Shenzhen Tenda Technology Co.,Ltd.のW308R Firmwareにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2018-25316	2026-05-7 11:31	2026-04-29	Show	GitHub Exploit DB Packet Storm

4382	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	W3002R Firmware A302 Firmware W309R Firmware	Shenzhen Tenda Technology Co.,Ltd.のA302 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2018-25317	2026-05-7 11:31	2026-04-29	Show	GitHub Exploit DB Packet Storm

4383	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	FH303 Firmware A300 Firmware	Shenzhen Tenda Technology Co.,Ltd.のA300 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2018-25318	2026-05-7 11:31	2026-04-29	Show	GitHub Exploit DB Packet Storm

4384	9.8	緊急 Network	DeanWu (pylixm)	Django-mdeditor	DeanWu (pylixm)のDjango-mdeditorにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2025-13030	2026-05-7 11:31	2026-04-30	Show	GitHub Exploit DB Packet Storm

4385	7.8	重要 Local	The Qt Company	qtdeclarative	The Qt Companyのqtdeclarativeにおける複数の脆弱性	CWE-20 CWE-94 CWE-94	CVE-2025-14576	2026-05-7 11:30	2026-04-30	Show	GitHub Exploit DB Packet Storm

4386	6.4	警告 Local	レッドハット	OpenShift Update Service (OSUS)	レッドハットのOpenShift Update Service (OSUS)における不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-57854	2026-05-7 11:30	2026-04-8	Show	GitHub Exploit DB Packet Storm

4387	5.4	警告 Network	Wolters Kluwer Financial Services, Inc.	LEX Baza Dokumentow	Wolters Kluwer Financial Services, Inc.のLEX Baza Dokumentowにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-1493	2026-05-7 11:30	2026-04-30	Show	GitHub Exploit DB Packet Storm

4388	5.7	警告 Adjacent	シスコシステムズ	Firepower Threat Defense (FTD) Adaptive Security Appliance (ASA) Software	シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品における入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-20020	2026-05-7 11:30	2026-03-4	Show	GitHub Exploit DB Packet Storm

4389	6.1	警告 Network	シスコシステムズ	Firepower Threat Defense (FTD) Adaptive Security Appliance (ASA) Software	シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-80 クロスサイトスクリプティング (Basic XSS)	CVE-2026-20070	2026-05-7 11:30	2026-03-4	Show	GitHub Exploit DB Packet Storm

4390	5.8	警告 Network	シスコシステムズ	Firepower Threat Defense (FTD) Adaptive Security Appliance (ASA) Software	シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品におけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-20073	2026-05-7 11:30	2026-03-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314641	-	-	-	D-Link DSL6740C v6.TR069.20211230 was discovered to use an insecure default Wifi password, possibly allowing attackers to connect to the device via a bruteforce attack.	-	CVE-2024-48272	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm

314642	-	-	-	D-Link DSL6740C v6.TR069.20211230 was discovered to use insecure default credentials for Administrator access, possibly allowing attackers to bypass authentication and escalate privileges on the devi…	-	CVE-2024-48271	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm

314643	-	-	-	icecms <=3.4.7 has a File Upload vulnerability in FileUtils.java,uploadFile.	-	CVE-2024-48202	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm

314644	-	-	-	phpgurukul Vehicle Record Management System v1.0 was discovered to contain a SQL injection vulnerability via the searchinputdata parameter at /index.php.	-	CVE-2024-46531	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm

314645	-	-	-	Client / Server PCs with the HP Smart Universal Printing Driver installed are potentially vulnerable to Remote Code Execution and/or Elevation of Privilege. A client using the HP Smart Universal Prin…	-	CVE-2024-9419	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm

314646	-	-	-	A Reflected Cross-Site Scripting (XSS) vulnerability exists in the Sage 1000 v 7.0.0. This vulnerability allows attackers to inject malicious scripts into URLs, which are reflected back by the server…	-	CVE-2024-48648	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm

314647	-	-	-	A file disclosure vulnerability exists in Sage 1000 v7.0.0. This vulnerability allows remote attackers to retrieve arbitrary files from the server's file system by manipulating the URL parameter in H…	-	CVE-2024-48647	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm

314648	-	-	-	An Unrestricted File Upload vulnerability exists in Sage 1000 v7.0.0, which allows authorized users to upload files without proper validation. An attacker could exploit this vulnerability by uploadin…	-	CVE-2024-48646	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm

314649	-	-	-	Proactive Risk Manager version 9.1.1.0 is affected by multiple Cross-Site Scripting (XSS) vulnerabilities in the add/edit form fields, at the urls starting with the subpaths: /ar/config/configuation/…	-	CVE-2024-48569	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm

314650	-	-	-	An issue in radare2 v5.8.0 through v5.9.4 allows a local attacker to cause a denial of service via the __bf_div function.	-	CVE-2024-48241	2024-11-1 21:57	2024-10-31	Show	GitHub Exploit DB Packet Storm