Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
541 7.2 重要
Network 		ディーリンクジャパン株式会社 dir-882 ファームウェア D-Link CorporationのDIR-882 ファームウェアにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-5844 2026-05-1 10:44 2026-04-9 Show GitHub Exploit DB Packet Storm
542 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. I12 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のI12 ファームウェアにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-5849 2026-05-1 10:43 2026-04-9 Show GitHub Exploit DB Packet Storm
543 5.5 警告
Local 		Foxit pdf editor
pdf reader 		Foxitのpdf editor等の複数製品におけるキャッチされない例外に関する脆弱性 CWE-248
キャッチされない例外 		CVE-2026-5937 2026-05-1 10:43 2026-04-27 Show GitHub Exploit DB Packet Storm
544 5.5 警告
Local 		Foxit pdf editor
pdf reader 		Foxitのpdf editor等の複数製品における不十分な制御フロー管理に関する脆弱性 CWE-691
不十分な制御フロー管理 		CVE-2026-5938 2026-05-1 10:43 2026-04-27 Show GitHub Exploit DB Packet Storm
545 5.5 警告
Local 		Foxit pdf editor
pdf reader 		Foxitのpdf editor等の複数製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-5939 2026-05-1 10:43 2026-04-27 Show GitHub Exploit DB Packet Storm
546 5.5 警告
Local 		Foxit pdf editor
pdf reader 		Foxitのpdf editor等の複数製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-5940 2026-05-1 10:43 2026-04-27 Show GitHub Exploit DB Packet Storm
547 7.1 重要
Local 		Foxit pdf editor
pdf reader 		Foxitのpdf editor等の複数製品における入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-5941 2026-05-1 10:43 2026-04-27 Show GitHub Exploit DB Packet Storm
548 5.5 警告
Local 		Foxit pdf editor
pdf reader 		Foxitのpdf editor等の複数製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-5942 2026-05-1 10:43 2026-04-27 Show GitHub Exploit DB Packet Storm
549 7.8 重要
Local 		Foxit pdf editor
pdf reader 		Foxitのpdf editor等の複数製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-5943 2026-05-1 10:43 2026-04-27 Show GitHub Exploit DB Packet Storm
550 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. ch22 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のch22 ファームウェアにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-5962 2026-05-1 10:43 2026-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312891 - - - Firmware in KAON AR2140 routers prior to version 4.2.16 is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability, one h… - CVE-2024-3659 2024-08-9 00:35 2024-08-8 Show GitHub Exploit DB Packet Storm
312892 7.8 HIGH
Local 		enjayworld enjay_crm An issue in the Hardware info module of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system. NVD-CWE-noinfo
CVE-2024-41309 2024-08-9 00:35 2024-08-8 Show GitHub Exploit DB Packet Storm
312893 9.8 CRITICAL
Network 		oretnom23 computer_laboratory_management_system SourceCodester Computer Laboratory Management System 1.0 allows admin/category/view_category.php id SQL Injection. CWE-89
SQL Injection 		CVE-2024-34480 2024-08-9 00:35 2024-08-8 Show GitHub Exploit DB Packet Storm
312894 - - - There is a vulnerability in the AP Certificate Management Service which could allow a threat actor to execute an unauthenticated RCE attack. Successful exploitation could allow an attacker to execute… - CVE-2024-42395 2024-08-9 00:35 2024-08-7 Show GitHub Exploit DB Packet Storm
312895 9.8 CRITICAL
Network 		gl-inet mt6000_firmware
a1300_firmware
x300b_firmware
ax1800_firmware
axt1800_firmware
mt2500_firmware
mt3000_firmware
x3000_firmware
xe3000_firmware
xe300_firmware
e750_firmwar… 		GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, XE3000/… CWE-78
OS Command  		CVE-2024-39228 2024-08-9 00:35 2024-08-7 Show GitHub Exploit DB Packet Storm
312896 9.8 CRITICAL
Network 		gl-inet mt6000_firmware
a1300_firmware
x300b_firmware
ax1800_firmware
axt1800_firmware
mt2500_firmware
mt3000_firmware
x3000_firmware
xe3000_firmware
xe300_firmware
e750_firmwar… 		GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, and XE3… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2024-39225 2024-08-9 00:35 2024-08-7 Show GitHub Exploit DB Packet Storm
312897 - - - An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a local attacker to perform a Password Brute Forcing attack due to improper re… - CVE-2024-38888 2024-08-9 00:35 2024-08-3 Show GitHub Exploit DB Packet Storm
312898 7.5 HIGH
Network 		janobe school_attendence_monitoring_system
school_event_management_system
paypal
credit_card
debit_card_payment 		SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re… CWE-89
SQL Injection 		CVE-2024-33964 2024-08-9 00:29 2024-08-6 Show GitHub Exploit DB Packet Storm
312899 7.5 HIGH
Network 		janobe school_attendence_monitoring_system
school_event_management_system
paypal
credit_card
debit_card_payment 		SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re… CWE-89
SQL Injection 		CVE-2024-33963 2024-08-9 00:29 2024-08-6 Show GitHub Exploit DB Packet Storm
312900 7.5 HIGH
Network 		janobe school_attendence_monitoring_system
school_event_management_system
paypal
credit_card
debit_card_payment 		SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re… CWE-89
SQL Injection 		CVE-2024-33962 2024-08-9 00:29 2024-08-6 Show GitHub Exploit DB Packet Storm