Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207121	7.5	危険	DELL EMC (旧 EMC Corporation)	-	複数の EMC RSA BSAFE 製品の base64-decoding の実装における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2015-0537	2015-08-25 10:21	2015-08-17	Show	GitHub Exploit DB Packet Storm

207122	2.6	注意	DELL EMC (旧 EMC Corporation)	-	EMC RSA BSAFE Micro Edition Suite および RSA BSAFE SSL-C におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2015-0536	2015-08-25 10:21	2015-08-17	Show	GitHub Exploit DB Packet Storm

207123	4.3	警告	DELL EMC (旧 EMC Corporation)	-	EMC RSA BSAFE Micro Edition Suite および RSA BSAFE SSL-C における EXPORT_RSA 暗号ダウングレード攻撃を実行される脆弱性	CWE-Other その他	CVE-2015-0535	2015-08-25 10:21	2015-08-17	Show	GitHub Exploit DB Packet Storm

207124	4.3	警告	DELL EMC (旧 EMC Corporation)	-	EMC RSA BSAFE Micro Edition Suite および RSA BSAFE SSL-C における ECDHE-to-ECDH ダウングレード攻撃を実行される脆弱性	CWE-310 暗号の問題	CVE-2015-0533	2015-08-25 10:21	2015-08-17	Show	GitHub Exploit DB Packet Storm

207125	6.8	警告	Lisa Westlund	-	WordPress 用 Portfolio プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-6523	2015-08-24 16:37	2015-06-5	Show	GitHub Exploit DB Packet Storm

207126	7.5	危険	WP Symposium	-	WordPress 用 WP Symposium プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-6522	2015-08-24 16:37	2015-08-10	Show	GitHub Exploit DB Packet Storm

207127	4	警告	Dev4Press	-	WordPress 用 GD bbPress Attachments プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-5482	2015-08-24 16:36	2015-07-9	Show	GitHub Exploit DB Packet Storm

207128	4.3	警告	Dev4Press	-	WordPress 用 GD bbPress Attachments プラグインの forms/panels.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-5481	2015-08-24 16:36	2015-07-4	Show	GitHub Exploit DB Packet Storm

207129	5	警告	Apache Software Foundation	-	Apache ActiveMQ の blob メッセージ用ファイルサーバのアップロード／ダウンロード機能におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-1830	2015-08-24 16:12	2015-08-18	Show	GitHub Exploit DB Packet Storm

207130	7.5	危険	Arab Portal	-	Arab Portal における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-6519	2015-08-24 16:01	2015-07-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	6.3	MEDIUM Network	-	-	A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument ppp_username/ppp_passwd/rwa… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8190	2026-05-10 03:16	2026-05-10	Show	GitHub Exploit DB Packet Storm

2	6.3	MEDIUM Network	-	-	A vulnerability was found in Wavlink NU516U1 M16U1_V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlan_bssid/sel_Au… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8189	2026-05-10 02:16	2026-05-10	Show	GitHub Exploit DB Packet Storm

3	6.3	MEDIUM Network	-	-	A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wifi_password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl_channel/wl_Pass/Encryp… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8188	2026-05-10 01:16	2026-05-10	Show	GitHub Exploit DB Packet Storm

4	5.3	MEDIUM Network	-	-	The Activity Logs, User Activity Tracking, Multisite Activity Log from Logtivity plugin for WordPress is vulnerable to Authentication Bypass to Information Disclosure in versions up to, and including… New	CWE-200 Information Exposure	CVE-2026-8198	2026-05-9 22:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

5	-		-	-	Allocation of Resources Without Limits or Throttling vulnerability in absinthe-graphql absinthe allows unauthenticated denial of service via atom table exhaustion when parsing attacker-controlled Gra… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-42793	2026-05-9 22:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

6	5.3	MEDIUM Network	-	-	A vulnerability was detected in Open5GS up to 2.7.7. This affects the function ogs_sbi_client_send_via_scp_or_sepp in the library lib/sbi/client.c of the component NF. Performing a manipulation resul… New	CWE-119 CWE-125 Incorrect Access of Indexable Resource ('Range Error') Out-of-bounds Read	CVE-2026-8186	2026-05-9 21:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

7	5.3	MEDIUM Network	-	-	A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component UPF. Executing a manipulation can lead to resource consumption… New	CWE-400 CWE-404 Uncontrolled Resource Consumption Improper Resource Shutdown or Release	CVE-2026-8187	2026-05-9 20:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

8	6.3	MEDIUM Adjacent	-	-	A security vulnerability has been detected in UGREEN CM933 1.1.59.4319. The impacted element is an unknown function of the component Administrative Interface. Such manipulation leads to missing authe… New	CWE-287 CWE-306 Improper Authentication Missing Authentication for Critical Function	CVE-2026-8185	2026-05-9 20:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

9	7.2	HIGH Network	-	-	Some Hikvision switch products (discontinued since December 2023) are vulnerable to authenticated remote command execution due to insufficient input validation. Attackers with valid credentials can e… New	-	CVE-2026-3828	2026-05-9 18:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

10	5.3	MEDIUM Adjacent	-	-	Some EZVIZ products utilize older versions of cloud feature modules with legacy API interfaces, which pose a data transmission risk. Attackers can exploit this by eavesdropping on network requests to… New	-	CVE-2026-32683	2026-05-9 18:16	2026-05-9	Show	GitHub Exploit DB Packet Storm