Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
461	6.5	警告 Network	Raindrop	Raindrop	Raindropにおける複数の脆弱性 New	CWE-20 CWE-284	CVE-2026-31192	2026-05-14 10:13	2026-04-22	Show	GitHub Exploit DB Packet Storm

462	7.3	重要 Network	D-Link Systems, Inc.	DCS-932L Firmware	D-Link CorporationのDCS-932L Firmwareにおけるコマンドインジェクションの脆弱性 New	CWE-77 コマンドインジェクション	CVE-2026-36983	2026-05-14 10:13	2026-05-11	Show	GitHub Exploit DB Packet Storm

463	7.5	重要 Network	Niko Fohr (fohrloop)	dash-uploader	Niko Fohr (fohrloop)のdash-uploaderにおける複数の脆弱性 New	CWE-400 CWE-670 CWE-noinfo	CVE-2026-38361	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

464	9.8	緊急 Network	Mauricio Poppe (mauriciopoppe)	math-codegen	Mauricio Poppe (mauriciopoppe)のmath-codegenにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-41507	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

465	9.8	緊急 Network	CROSS-CRYPT.COM	CROSS	CROSS-CRYPT.COMのCROSSにおける複数の脆弱性 New	CWE-121 CWE-122	CVE-2026-41509	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

466	7.5	重要 Network	DCIT	CryptX	DCITのCryptXにおける複数の脆弱性 New	CWE-335 CWE-338	CVE-2026-41564	2026-05-14 10:12	2026-04-23	Show	GitHub Exploit DB Packet Storm

467	6.1	警告 Network	th30d4y	w4nn4d13/ip	th30d4yのw4nn4d13/ipにおける複数の脆弱性 New	CWE-79 CWE-79 CWE-80	CVE-2026-41575	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

468	7.8	重要 Local	dail8859	Notepad Next	dail8859のNotepad Nextにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-42214	2026-05-14 10:12	2026-05-7	Show	GitHub Exploit DB Packet Storm

469	7.1	重要 Network	Legeling	PromptHUB	LegelingのPromptHUBにおける複数の脆弱性 New	CWE-20 CWE-693 CWE-918	CVE-2026-42261	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

470	9.9	緊急 Network	Apache Software Foundation	Polaris	Apache Software FoundationのPolarisにおける複数の脆弱性 New	CWE-20 CWE-862	CVE-2026-42809	2026-05-14 10:12	2026-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312131	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: vivid: fix compose size exceed boundary syzkaller found a bug: BUG: unable to handle page fault for address: ffffc9000a3…	-	CVE-2022-48945	2024-09-26 22:32	2024-09-23	Show	GitHub Exploit DB Packet Storm

312132	-	-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ElementsKit ElementsKit Pro allows PHP Local File Inclusion.This issue affects ElementsKit Pro: from n/…	CWE-22 Path Traversal	CVE-2024-43996	2024-09-26 22:32	2024-09-23	Show	GitHub Exploit DB Packet Storm

312133	-	-	-	A stored cross-site scripting (XSS) vulnerability exists in NetBox 4.1.0 within the "Configuration History" feature of the "Admin" panel via a /core/config-revisions/ Add action. An authenticated use…	-	CVE-2024-47226	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312134	-	-	-	An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTT…	-	CVE-2024-47220	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312135	-	-	-	An issue was discovered in vesoft NebulaGraph through 3.8.0. It allows shell command injection.	-	CVE-2024-47219	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312136	-	-	-	An issue was discovered in vesoft NebulaGraph through 3.8.0. It allows bypassing authentication.	-	CVE-2024-47218	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312137	-	-	-	Gladys Assistant before 4.45.1 allows Privilege Escalation (a user changing their own role) because req.body.role can be used in updateMySelf in server/api/controllers/user.controller.js.	-	CVE-2024-47210	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312138	-	-	-	eNMS up to 4.7.1 is vulnerable to Directory Traversal via download/folder.	-	CVE-2024-46649	2024-09-26 22:32	2024-09-21	Show	GitHub Exploit DB Packet Storm

312139	-	-	-	eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via scan_folder.	-	CVE-2024-46648	2024-09-26 22:32	2024-09-21	Show	GitHub Exploit DB Packet Storm

312140	-	-	-	eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via upload_files.	-	CVE-2024-46647	2024-09-26 22:32	2024-09-21	Show	GitHub Exploit DB Packet Storm