Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192051	6.4	警告 Local	IBM	-	IBM Emptoris Strategic Supply Management Platform におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2017-1190	2017-09-8 11:28	2017-08-4	Show	GitHub Exploit DB Packet Storm

192052	5.9	警告 Network	IBM	-	IBM Emptoris Strategic Supply Management Platform における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2016-6029	2017-09-8 11:27	2016-06-29	Show	GitHub Exploit DB Packet Storm

192053	5.4	警告 Network	IBM	-	IBM Emptoris Strategic Supply Management Platform におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6021	2017-09-8 11:27	2016-06-29	Show	GitHub Exploit DB Packet Storm

192054	7.5	重要 Network	Synology Inc.	-	Synology Photo Station における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2017-11155	2017-09-8 11:01	2017-08-8	Show	GitHub Exploit DB Packet Storm

192055	9.8	緊急 Network	Synology Inc.	-	Synology Photo Station における信頼性のないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2017-11153	2017-09-8 11:01	2017-08-8	Show	GitHub Exploit DB Packet Storm

192056	9.8	緊急 Network	Synology Inc.	-	Synology Photo Station における認証に関する脆弱性	CWE-287 不適切な認証	CVE-2017-11151	2017-09-8 11:01	2017-08-8	Show	GitHub Exploit DB Packet Storm

192057	7.3	重要 Network	Apache Software Foundation	-	Apache Struts2 に任意のコードが実行可能な脆弱性 (S2-052)	-	CVE-2017-9805	2017-09-8 10:28	2017-09-6	Show	GitHub Exploit DB Packet Storm

192058	9.8	緊急 Network	Mod Nss Project	-	mod_nss における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5244	2017-09-8 10:19	2015-10-2	Show	GitHub Exploit DB Packet Storm

192059	7.5	重要 Network	The Grml Team	-	Debian の grml-debootstrap における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-1378	2017-09-8 10:19	2015-03-10	Show	GitHub Exploit DB Packet Storm

192060	7.5	重要 Network	シーメンス	-	Siemens SIMATIC Logon における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-9938	2017-09-7 18:15	2017-07-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2891	-		-	-	Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Versions 10.9.5 and prior, in addition to 11.0.0-alpha.1 through 11.12.0 are vulnerable to CSS …	CWE-94 Code Injection	CVE-2026-41148	2026-05-27 04:37	2026-05-23	Show	GitHub Exploit DB Packet Storm

2892	-		-	-	Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Versions 10.9.5 and earlier, as well as 11.0.0-alpha.1 through 11.14.0, are vulnerable to HTML …	CWE-94 Code Injection	CVE-2026-41149	2026-05-27 04:37	2026-05-23	Show	GitHub Exploit DB Packet Storm

2893	8.8	HIGH Network	-	-	A vulnerability was identified in Edimax BR-6428NS 1.10. The impacted element is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. Such manip…	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-9294	2026-05-27 04:37	2026-05-23	Show	GitHub Exploit DB Packet Storm

2894	8.8	HIGH Network	-	-	A security flaw has been discovered in Edimax BR-6428NS 1.10. This affects the function formWirelessTbl of the file /goform/formWirelessTbl of the component POST Request Handler. Performing a manipul…	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-9295	2026-05-27 04:37	2026-05-23	Show	GitHub Exploit DB Packet Storm

2895	6.3	MEDIUM Network	-	-	A security vulnerability has been detected in Edimax BR-6428NS 1.10. Affected is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. The manipulation of th…	CWE-74 CWE-77 Injection Command Injection	CVE-2026-9297	2026-05-27 04:37	2026-05-23	Show	GitHub Exploit DB Packet Storm

2896	6.3	MEDIUM Network	-	-	A weakness has been identified in Edimax BR-6428NS 1.10. This impacts the function system of the file /goform/formWlanM of the component POST Request Handler. Executing a manipulation of the argument…	CWE-74 CWE-77 Injection Command Injection	CVE-2026-9296	2026-05-27 04:37	2026-05-23	Show	GitHub Exploit DB Packet Storm

2897	6.3	MEDIUM Network	-	-	A vulnerability was determined in 546669204 vps-inventory-monitoring up to 98c00b370668c96ae75e91c15548d9ea113652d9. This issue affects the function eval of the file app/index/command/VpsTest.php of …	CWE-74 CWE-94 Injection Code Injection	CVE-2026-9302	2026-05-27 04:37	2026-05-23	Show	GitHub Exploit DB Packet Storm

2898	4.3	MEDIUM Network	-	-	A vulnerability was identified in calcom cal.diy up to 4.9.4. Impacted is an unknown function. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. Th…	CWE-352 CWE-862 Origin Validation Error Missing Authorization	CVE-2026-9303	2026-05-27 04:37	2026-05-23	Show	GitHub Exploit DB Packet Storm

2899	5.0	MEDIUM Network	-	-	A security flaw has been discovered in calcom cal.diy up to 4.9.4. The affected element is the function validateUrlForSSRF of the file apps/web/app/api/logo/route.ts of the component Logo API. The ma…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-9304	2026-05-27 04:37	2026-05-23	Show	GitHub Exploit DB Packet Storm

2900	6.3	MEDIUM Network	-	-	A weakness has been identified in Edimax EW-7438RPn up to 1.31. The affected element is the function formWpsStart of the file /goform/formWpsStart of the component webs. This manipulation of the argu…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-9343	2026-05-27 04:37	2026-05-24	Show	GitHub Exploit DB Packet Storm