Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197491 8.8 重要
Network 		web2py - Web2py におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-4808 2017-01-24 16:21 2016-04-4 Show GitHub Exploit DB Packet Storm
197492 7.5 重要
Network 		web2py - Web2py におけるローカルファイルインクルージョンの脆弱性 CWE-200
情報漏えい 		CVE-2016-4806 2017-01-24 16:20 2016-04-4 Show GitHub Exploit DB Packet Storm
197493 9.1 緊急
Network 		libimobiledevice - libimobiledevice libplist の base64.c の base64decode 関数におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2017-5209 2017-01-24 15:58 2017-01-11 Show GitHub Exploit DB Packet Storm
197494 7.5 重要
Network 		NetApp - Clustered Data ONTAP 用 MetroCluster Tiebreaker における重要な情報を平文で開示される脆弱性 CWE-200
情報漏えい 		CVE-2016-6820 2017-01-24 15:22 2016-09-29 Show GitHub Exploit DB Packet Storm
197495 3.7
Network 		NetApp - Clustered Data ONTAP における情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2015-8020 2017-01-24 15:21 2015-10-28 Show GitHub Exploit DB Packet Storm
197496 3.7
Network 		Python Software Foundation - Python urllib3 ライブラリにおける特定の設定下で TLS 証明書を適切に検証しない脆弱性 CWE-295
不正な証明書検証 		CVE-2016-9015 2017-01-24 15:13 2016-10-27 Show GitHub Exploit DB Packet Storm
197497 7.8 重要
Local 		Linux - Qualcomm メディア コーデックにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6761 2017-01-24 14:57 2016-12-5 Show GitHub Exploit DB Packet Storm
197498 7.8 重要
Local 		Linux - Qualcomm メディア コーデックにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6760 2017-01-24 14:57 2016-12-5 Show GitHub Exploit DB Packet Storm
197499 7.8 重要
Local 		Linux - Qualcomm メディア コーデックにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6759 2017-01-24 14:57 2016-12-5 Show GitHub Exploit DB Packet Storm
197500 7.8 重要
Local 		Linux - Qualcomm メディア コーデックにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6758 2017-01-24 14:57 2016-12-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
71 3.5 LOW
Adjacent 		- - A vulnerability was found in Dotouch XproUPF 2.0.0-release-088aa7c4. This impacts the function vlib_worker_loop in the library /usr/xpro/upf/tools/libs/libvlib.so of the component UPF Process. The ma… New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8232 2026-05-10 15:16 2026-05-10 Show GitHub Exploit DB Packet Storm
72 6.3 MEDIUM
Network 		- - A vulnerability has been found in CodeAstro Online Catering Ordering System 1.0. This affects an unknown function of the file /deleteorder.php. The manipulation of the argument ID leads to sql inject… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8231 2026-05-10 15:16 2026-05-10 Show GitHub Exploit DB Packet Storm
73 - - - In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data incorrectly, causing a circular linked list in the data structure representing the XML docu… New CWE-404
CWE-835
 Improper Resource Shutdown or Release
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2026-7263 2026-05-10 15:16 2026-05-10 Show GitHub Exploit DB Packet Storm
74 - - - In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL byte is passed to mb_convert_encoding() or related mbstring functions, the code incorrectl… New CWE-125
Out-of-bounds Read 		CVE-2026-6104 2026-05-10 15:16 2026-05-10 Show GitHub Exploit DB Packet Storm
75 6.3 MEDIUM
Network 		- - A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function sys_login1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8230 2026-05-10 14:16 2026-05-10 Show GitHub Exploit DB Packet Storm
76 6.3 MEDIUM
Network 		- - A vulnerability was detected in Wavlink NU516U1 240425. The affected element is the function WifiBasic of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument AuthMethod/EncrypTy… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8229 2026-05-10 14:16 2026-05-10 Show GitHub Exploit DB Packet Storm
77 6.3 MEDIUM
Network 		- - A security vulnerability has been detected in Wavlink NU516U1 240425. Impacted is the function advance of the file /cgi-bin/wireless.cgi. Such manipulation of the argument wlan_conf/Channel/skiplist/… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8228 2026-05-10 14:16 2026-05-10 Show GitHub Exploit DB Packet Storm
78 6.3 MEDIUM
Network 		- - A weakness has been identified in Wavlink NU516U1 240425. This issue affects the function wzdapMesh of the file /cgi-bin/adm.cgi. This manipulation causes os command injection. The attack may be init… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8227 2026-05-10 14:16 2026-05-10 Show GitHub Exploit DB Packet Storm
79 5.3 MEDIUM
Network 		- - A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogs_pcc_rule_install_flow_from_media in the library /lib/proto/types.c. The manipulation results in… New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8226 2026-05-10 14:16 2026-05-10 Show GitHub Exploit DB Packet Storm
80 5.3 MEDIUM
Network 		- - A vulnerability was identified in Open5GS up to 2.7.7. This affects the function pcf_npcf_smpolicycontrol_handle_delete of the file src/pcf/sm-sm.c of the component delete Endpoint. The manipulation … New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8225 2026-05-10 14:16 2026-05-10 Show GitHub Exploit DB Packet Storm