Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1961	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34539	2026-04-21 10:48	2026-03-31	Show	GitHub Exploit DB Packet Storm

1962	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34540	2026-04-21 10:47	2026-03-31	Show	GitHub Exploit DB Packet Storm

1963	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-34541	2026-04-21 10:47	2026-03-31	Show	GitHub Exploit DB Packet Storm

1964	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-34542	2026-04-21 10:47	2026-03-31	Show	GitHub Exploit DB Packet Storm

1965	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2026-34546	2026-04-21 10:47	2026-03-31	Show	GitHub Exploit DB Packet Storm

1966	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性	CWE-758 未定義、未指定、または実装定義の動作への依存	CVE-2026-34547	2026-04-21 10:47	2026-03-31	Show	GitHub Exploit DB Packet Storm

1967	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおける数値型間の変換の誤りに関する脆弱性	CWE-681 数値型間の変換の誤り	CVE-2026-34548	2026-04-21 10:47	2026-03-31	Show	GitHub Exploit DB Packet Storm

1968	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性	CWE-758 未定義、未指定、または実装定義の動作への依存	CVE-2026-34549	2026-04-21 10:47	2026-03-31	Show	GitHub Exploit DB Packet Storm

1969	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおける数値型間の変換の誤りに関する脆弱性	CWE-681 数値型間の変換の誤り	CVE-2026-34550	2026-04-21 10:47	2026-03-31	Show	GitHub Exploit DB Packet Storm

1970	5.5	警告 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-34551	2026-04-21 10:47	2026-03-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
231	8.1	HIGH Network	-	-	Improper Control of Interaction Frequency vulnerability in MeWare Software Development Inc. PDKS allows Flooding. This issue affects PDKS: from V16.20200313 before VMYR_3.5.2025117. New	CWE-799 Improper Control of Interaction Frequency	CVE-2026-7402	2026-05-1 00:09	2026-04-30	Show	GitHub Exploit DB Packet Storm

232	7.5	HIGH Network	frappe	press	Press, a Frappe custom app that runs Frappe Cloud, manages infrastructure, subscription, marketplace, and software-as-a-service (SaaS).`press.api.account.create_api_secret` is prone to CSRF-like expl… Update	CWE-352 Origin Validation Error	CVE-2026-41317	2026-04-30 23:53	2026-04-24	Show	GitHub Exploit DB Packet Storm

233	6.3	MEDIUM Network	-	-	A vulnerability was detected in Tenda 4G300 US_4G300V1.0Mt_V1.01.42_CN_TDC01. This impacts the function sub_425A28 of the file /goform/DelFil. The manipulation of the argument delflag results in comm… New	CWE-74 CWE-77 Injection Command Injection	CVE-2026-7469	2026-04-30 23:53	2026-04-30	Show	GitHub Exploit DB Packet Storm

234	8.8	HIGH Network	-	-	A flaw has been found in Tenda 4G300 US_4G300V1.0Mt_V1.01.42_CN_TDC01. Affected is the function sub_427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based… New	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-7470	2026-04-30 23:53	2026-04-30	Show	GitHub Exploit DB Packet Storm

235	4.7	MEDIUM Network	-	-	A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function save_user of the file /admin/ajax.php?action=save_user. Executing a manipulation can lead to sql inject… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7409	2026-04-30 23:52	2026-04-30	Show	GitHub Exploit DB Packet Storm

236	6.3	MEDIUM Network	-	-	A vulnerability has been found in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=add_to_cart. The manipulation of the argument… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7410	2026-04-30 23:52	2026-04-30	Show	GitHub Exploit DB Packet Storm

237	7.3	HIGH Network	-	-	A vulnerability was found in PolarVista xcode-mcp-server 1.0.0. This issue affects the function build_project/run_tests of the file src/index.ts of the component MCP Interface. The manipulation of th… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7416	2026-04-30 23:52	2026-04-30	Show	GitHub Exploit DB Packet Storm

238	7.3	HIGH Network	-	-	A vulnerability was found in Algovate xhs-mcp 0.8.11. This affects the function xhs_publish_content of the file src/server/mcp.server.ts of the component MCP Interface. Performing a manipulation of t… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-7417	2026-04-30 23:52	2026-04-30	Show	GitHub Exploit DB Packet Storm

239	8.8	HIGH Network	-	-	A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Pro… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7418	2026-04-30 23:52	2026-04-30	Show	GitHub Exploit DB Packet Storm

240	8.8	HIGH Network	-	-	A vulnerability was identified in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the function strcpy of the file route/goform/formTaskEdit_ap. The manipulation of the argument Profile… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7419	2026-04-30 23:52	2026-04-30	Show	GitHub Exploit DB Packet Storm