Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1091	6.1	警告 Network	GitHub	Enterprise Server	GitHubのEnterprise Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-8106	2026-05-13 10:21	2026-05-7	Show	GitHub Exploit DB Packet Storm

1092	7.2	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC6 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8259	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

1093	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC6 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8264	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

1094	7.2	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC6 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8265	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

1095	7.2	重要 Network	D-Link Systems, Inc.	D-Link DNS-320 ファームウェア	D-Link CorporationのD-Link DNS-320 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8271	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

1096	7.2	重要 Network	D-Link Systems, Inc.	D-Link DNS-320 ファームウェア	D-Link CorporationのD-Link DNS-320 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8272	2026-05-13 10:20	2026-05-11	Show	GitHub Exploit DB Packet Storm

1097	7.2	重要 Network	D-Link Systems, Inc.	D-Link DNS-320 ファームウェア	D-Link CorporationのD-Link DNS-320 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8273	2026-05-13 10:20	2026-05-11	Show	GitHub Exploit DB Packet Storm

1098	9.8	緊急 Network	エレコム株式会社	WAB-S300IW2-PD WRC-X3000GST2-B WRC-X1800GS-B WRC-X6000QSA-G WRC-X3000GS2-W WAB-S733IW2-PD WAB-S733IW-AC WAB-S733IW-PD WRC-XE5400GS-G WRC-X3000GS2-B WRC-X1800GSA-B WRC…	エレコム無線LAN関連製品における複数の脆弱性	CWE-352 CWE-78 CWE-Other	CVE-2026-20704 CVE-2026-22550 CVE-2026-24449 CVE-2026-24465	2026-05-12 15:09	2026-02-3	Show	GitHub Exploit DB Packet Storm

1099	8.8	重要 Adjacent	エレコム株式会社	WRC-X3000GS2-B ファームウェア WAB-I1750-PS WAB-S1775 ファームウェア WRC-X3000GST2-B WAB-S733MI WAB-S1167-PS WRC-X3000GS2A-B ファームウェア WAB-M1775-PS ファームウェア WRC-X3000GS2-W&n…	エレコム製無線LANルーターおよび無線アクセスポイントにおける複数の脆弱性	CWE-119 CWE-79 CWE-Other	CVE-2024-34577 CVE-2024-39300 CVE-2024-42412 CVE-2024-43689	2026-05-12 15:01	2024-08-27	Show	GitHub Exploit DB Packet Storm

1100	6.8	警告 Adjacent	エレコム株式会社	WRC-2533GST2 ファームウェア WRC-X3000GST2-B WRC-X1800GS-B WRC-X6000QSA-G WRC-2533GS2V-B WMC-X1800GST-B WRC-G01-W WRC-XE5400GS-G WRC-X1800GSA-B WRC-X1800GSH-B WRC-X6000XST-…	エレコム製無線LANルーターにおける複数の脆弱性	CWE-352 CWE-78 CWE-Other	CVE-2024-34021 CVE-2024-39607 CVE-2024-40883	2026-05-12 14:51	2024-07-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346271	-	university_of_washington	uw-imap	The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrar…	NVD-CWE-Other	CVE-2002-1782	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346272	-	php	php	CRLF injection vulnerability in PHP 4.2.1 through 4.2.3, when allow_url_fopen is enabled, allows remote attackers to modify HTTP headers for outgoing requests by causing CRLF sequences to be injected…	NVD-CWE-Other	CVE-2002-1783	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346273	-	openbb	openbb	Cross-site scripting (XSS) vulnerability in codeparse.php in Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to inject arbitrary web script or HTML via (1) myhome.php, (2) an onerror a…	NVD-CWE-Other	CVE-2002-1829	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346274	-	microsoft	data_access_components	Buffer overflow in Microsoft Active Data Objects (ADO) in Microsoft MDAC 2.5 through 2.7 allows remote attackers to have unknown impact with unknown attack vectors. NOTE: due to the lack of details …	NVD-CWE-Other	CVE-2002-1918	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346275	-	aquonics_scripting	aquonics_file_manager	Aquonics File Manager 1.5 allows users with edit privileges to modify user accounts by editing the userlist.cgi file.	NVD-CWE-Other	CVE-2002-1927	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346276	-	qnx	rtos	The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service (hang) and possibly execute arbitrary code by creating multiple timers with a 1-ms tick.	NVD-CWE-Other	CVE-2002-1983	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346277	-	zonelabs	zonealarm	ZoneAlarm Pro 3.0 MailSafe allows remote attackers to bypass filtering and possibly execute arbitrary code via email attachments containing a trailing dot after the file extension.	NVD-CWE-Other	CVE-2002-1997	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346278	-	xqus	x-stat	x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to (1) execute PHP commands such as phpinfo or (2) obtain the full path of the web server via an invalid action parameter, which lea…	NVD-CWE-Other	CVE-2002-2045	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346279	-	squirrelmail	squirrelmail	Multiple cross-site scripting (XSS) vulnerabilities in magicHTML of SquirrelMail before 1.2.6 allow remote attackers to inject arbitrary web script or HTML via (1) "<<script" in unspecified input fie…	NVD-CWE-Other	CVE-2002-2086	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

346280	-	gianni_tedesco	fwmon	Fwmon before 1.0.10 allows remote attackers to cause a denial of service (crash) by causing the kernel to return a large packet.	NVD-CWE-Other	CVE-2002-2111	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm