Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1681 8.8 重要
Network 		Belkin International F9K1015 ファームウェア Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5610 2026-05-1 10:44 2026-04-6 Show GitHub Exploit DB Packet Storm
1682 8.8 重要
Network 		Belkin International F9K1015 ファームウェア Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5611 2026-05-1 10:44 2026-04-6 Show GitHub Exploit DB Packet Storm
1683 8.8 重要
Network 		Belkin International F9K1015 ファームウェア Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5612 2026-05-1 10:44 2026-04-6 Show GitHub Exploit DB Packet Storm
1684 8.8 重要
Network 		Belkin International F9K1015 ファームウェア Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5613 2026-05-1 10:44 2026-04-6 Show GitHub Exploit DB Packet Storm
1685 8.8 重要
Network 		Belkin International F9K1015 ファームウェア Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5614 2026-05-1 10:44 2026-04-6 Show GitHub Exploit DB Packet Storm
1686 8.8 重要
Network 		Belkin International F9K1015 ファームウェア Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5628 2026-05-1 10:44 2026-04-6 Show GitHub Exploit DB Packet Storm
1687 8.8 重要
Network 		Belkin International F9K1015 ファームウェア Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5629 2026-05-1 10:44 2026-04-6 Show GitHub Exploit DB Packet Storm
1688 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC15 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のAC15 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5830 2026-05-1 10:44 2026-04-9 Show GitHub Exploit DB Packet Storm
1689 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. Tenda i3 Firmware Shenzhen Tenda Technology Co.,Ltd.のTenda i3 Firmwareにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-5841 2026-05-1 10:44 2026-04-9 Show GitHub Exploit DB Packet Storm
1690 7.2 重要
Network 		ディーリンクジャパン株式会社 dir-882 ファームウェア D-Link CorporationのDIR-882 ファームウェアにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-5844 2026-05-1 10:44 2026-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1381 7.6 HIGH
Network 		- - ipl/web is a set of common web components for php projects. Prior to version 0.13.1, the vulnerability allows an attacker to inject malicious Javascript into a victim's browser to run it in the conte… CWE-79
Cross-site Scripting 		CVE-2026-42224 2026-05-9 08:16 2026-05-9 Show GitHub Exploit DB Packet Storm
1382 - - - pupnp is an SDK for development of UPnP device and control point applications. Prior to version 1.18.5, pupnp is vulnerable to SRRF port confusion due to port truncation via atoi() cast in parse_uri(… CWE-195
CWE-918
 Signed to Unsigned Conversion Error
Server-Side Request Forgery (SSRF)  		CVE-2026-41682 2026-05-9 08:16 2026-05-9 Show GitHub Exploit DB Packet Storm
1383 7.9 HIGH
Local 		- - Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.15, 1.18.9, and 1.19.3, the output of cilium-bugtool can contain sensitive data when … CWE-200
CWE-312
Information Exposure
 Cleartext Storage of Sensitive Information 		CVE-2026-41520 2026-05-9 08:16 2026-05-9 Show GitHub Exploit DB Packet Storm
1384 9.8 CRITICAL
Network 		- - ChestnutCMS v1.5.10 has a SQL injection vulnerability. The content parameter of the cms_content tag can be manipulated in the admin backend and injected into a SQL query when the template is rendered. CWE-94
Code Injection 		CVE-2026-36458 2026-05-9 08:16 2026-05-8 Show GitHub Exploit DB Packet Storm
1385 - - - Uncontrolled Resource Consumption vulnerability in ericmj decimal allows unauthenticated remote Denial of Service. The decimal library does not bound the exponent on parsed input. Storing a decimal … CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-32686 2026-05-9 08:16 2026-05-8 Show GitHub Exploit DB Packet Storm
1386 9.8 CRITICAL
Network 		- - The Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01, Android 8.0.0) exposes an HTTP API on TCP port 2345 that allows full unauthenticated remote control of the device. The API supports bot… CWE-285
Improper Authorization 		CVE-2026-30496 2026-05-9 08:16 2026-05-7 Show GitHub Exploit DB Packet Storm
1387 8.8 HIGH
Adjacent 		- - The Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01, Android 8.0.0) exposes Android Debug Bridge (ADB) on TCP port 5555 over the network without requiring authentication. The device is con… CWE-285
Improper Authorization 		CVE-2026-30495 2026-05-9 08:16 2026-05-7 Show GitHub Exploit DB Packet Storm
1388 6.1 MEDIUM
Network 		- - Sidekiq-cron thru 2.3.1, an open-source scheduling add-on for Sidekiq, is vulnerable to a cross-site scripting (xss) vulnerability via crafted URL being rended from cron.erb. CWE-79
Cross-site Scripting 		CVE-2025-67202 2026-05-9 08:16 2026-05-8 Show GitHub Exploit DB Packet Storm
1389 9.8 CRITICAL
Network 		- - NPM package next-npm-version1.0.1 is vulnerable to Command injection. CWE-94
Code Injection 		CVE-2025-63706 2026-05-9 08:16 2026-05-8 Show GitHub Exploit DB Packet Storm
1390 9.8 CRITICAL
Network 		- - npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js(). CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2025-63703 2026-05-9 08:16 2026-05-8 Show GitHub Exploit DB Packet Storm