Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1381 6.1 警告
Network 		Frappe Press FrappeのPressにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41430 2026-05-1 10:38 2026-04-24 Show GitHub Exploit DB Packet Storm
1382 8.8 重要
Network 		D-Link Systems, Inc. DHP-1320 Firmware D-Link CorporationのDHP-1320 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-4529 2026-05-1 10:38 2026-03-21 Show GitHub Exploit DB Packet Storm
1383 7 重要
Local 		flos-freeware (Florian Balmer) Notepad2 flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性 CWE-426
CWE-427
CVE-2026-4545 2026-05-1 10:38 2026-03-22 Show GitHub Exploit DB Packet Storm
1384 7 重要
Local 		flos-freeware (Florian Balmer) Notepad2 flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性 CWE-426
CWE-427
CVE-2026-4546 2026-05-1 10:38 2026-03-22 Show GitHub Exploit DB Packet Storm
1385 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. 4G03 Pro Firmware Shenzhen Tenda Technology Co.,Ltd.の4G03 Pro Firmwareにおける複数の脆弱性 CWE-266
CWE-284
CVE-2026-5526 2026-05-1 10:38 2026-04-4 Show GitHub Exploit DB Packet Storm
1386 5.3 警告
Network 		Shenzhen Tenda Technology Co.,Ltd. 4G03 Pro Firmware Shenzhen Tenda Technology Co.,Ltd.の4G03 Pro Firmwareにおける複数の脆弱性 CWE-320
CWE-321
CVE-2026-5527 2026-05-1 10:38 2026-04-5 Show GitHub Exploit DB Packet Storm
1387 8 重要
Adjacent 		Shenzhen Tenda Technology Co.,Ltd. CX12L Pro Firmware Shenzhen Tenda Technology Co.,Ltd.のCX12L Pro Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5683 2026-05-1 10:38 2026-04-6 Show GitHub Exploit DB Packet Storm
1388 8 重要
Adjacent 		Shenzhen Tenda Technology Co.,Ltd. CX12L Pro Firmware Shenzhen Tenda Technology Co.,Ltd.のCX12L Pro Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5684 2026-05-1 10:38 2026-04-6 Show GitHub Exploit DB Packet Storm
1389 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. CX12L Pro Firmware Shenzhen Tenda Technology Co.,Ltd.のCX12L Pro Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5685 2026-05-1 10:38 2026-04-6 Show GitHub Exploit DB Packet Storm
1390 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. CX12L Pro Firmware Shenzhen Tenda Technology Co.,Ltd.のCX12L Pro Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5686 2026-05-1 10:38 2026-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
891 7.3 HIGH
Network 		- - A vulnerability was determined in SourceCodester SUP Online Shopping 1.0. The impacted element is an unknown function of the file wishlist.php. Executing a manipulation of the argument delwlistid can… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8129 2026-05-9 00:41 2026-05-8 Show GitHub Exploit DB Packet Storm
892 7.3 HIGH
Network 		- - A vulnerability was identified in SourceCodester SUP Online Shopping 1.0. This affects an unknown function of the file /admin/message.php. The manipulation of the argument seenid leads to sql injecti… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8130 2026-05-9 00:41 2026-05-8 Show GitHub Exploit DB Packet Storm
893 7.3 HIGH
Network 		- - A security flaw has been discovered in SourceCodester SUP Online Shopping 1.0. This impacts an unknown function of the file /admin/replymsg.php. The manipulation of the argument msgid results in sql … CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8131 2026-05-9 00:41 2026-05-8 Show GitHub Exploit DB Packet Storm
894 2.4 LOW
Network 		- - A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /index.php?page=users. Executing a manipulation of the argument Name can lead… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-8136 2026-05-9 00:41 2026-05-8 Show GitHub Exploit DB Packet Storm
895 6.3 MEDIUM
Network 		- - A vulnerability was found in 8421bit MiniClaw up to 223c16a1088e138838dcbd18cd65a37c35ac5a84. Affected is the function executeCognitivePulse of the file src/kernel.ts. Performing a manipulation resul… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8112 2026-05-9 00:39 2026-05-8 Show GitHub Exploit DB Packet Storm
896 4.3 MEDIUM
Network 		- - A vulnerability was determined in 8421bit MiniClaw up to 43905b934cf76489ab28e4d17da28ee97970f91f. Affected by this vulnerability is the function isPathInside of the file src/kernel.ts of the compone… CWE-22
Path Traversal 		CVE-2026-8113 2026-05-9 00:39 2026-05-8 Show GitHub Exploit DB Packet Storm
897 - - - A vulnerability in Legion of the Bouncy Castle Inc. BC-FJA BC-FIPS on Linux, X86_64, AVX, AVX-512f. This vulnerability is associated with program files gcm128w, gcm512w. This issue affects BC-FJ… CWE-1068
 Inconsistency Between Implementation and Documented Design 		CVE-2026-8149 2026-05-9 00:38 2026-05-8 Show GitHub Exploit DB Packet Storm
898 - - - The VerySecureApp made by DIVD using Mendix Studio Pro 11.8.0 Beta allows unintended data exposure due to authorization misconfiguration. The VerySecureApp allows anonymous users of the MyFirstModule… CWE-277
 Insecure Inherited Permissions 		CVE-2026-7891 2026-05-9 00:37 2026-05-8 Show GitHub Exploit DB Packet Storm
899 3.3 LOW
Local 		- - Dell PowerScale OneFS versions 9.5.0.0 through 9.5.1.6, 9.6.0.0 through 9.7.1.13, 9.8.0.0 through 9.10.1.5 and 9.11.0.0 through 9.12.0.1 contains an Insufficient Logging vulnerability. A low privileg… CWE-778
 Insufficient Logging 		CVE-2026-32803 2026-05-9 00:36 2026-05-8 Show GitHub Exploit DB Packet Storm
900 - - - An Out-of-bounds Read vulnerability in the IOCTL handler in ASUS System Control Interface allows a local user to cause system crash (BSOD) via a read size that exceeds the buffer size.Refer to the ' … CWE-125
Out-of-bounds Read 		CVE-2026-3508 2026-05-9 00:34 2026-05-8 Show GitHub Exploit DB Packet Storm