Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208701	7.5	危険	Users Ultra Pro	-	WordPress 用 Users Ultra プラグインの ratings モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-4109	2015-06-12 11:42	2015-06-4	Show	GitHub Exploit DB Packet Storm

208702	7.5	危険	Montala Limited	-	Montala Limited ResourceSpace の pages/setup.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-3648	2015-06-12 11:40	2015-05-6	Show	GitHub Exploit DB Packet Storm

208703	6.6	警告	Zarafa	-	Zarafa Collaboration Platform の provider/server/ECServer.cpp における任意のファイルに書き込まれる脆弱性	CWE-59 リンク解釈の問題	CVE-2015-3436	2015-06-12 11:38	2015-04-15	Show	GitHub Exploit DB Packet Storm

208704	3.5	注意	Episerver	-	Ektron Content Management System の Test/WorkArea/workarea.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-4427	2015-06-12 10:08	2015-05-31	Show	GitHub Exploit DB Packet Storm

208705	5.8	警告	Episerver	-	Ektron Content Management System の Test/WorkArea/DmsMenu/menuActions/MenuActions.aspx におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-3624	2015-06-12 10:08	2015-05-31	Show	GitHub Exploit DB Packet Storm

208706	10	危険	Pivotal Software, Inc.	-	Redis における任意の Lua バイトコードを実行される脆弱性	CWE-Other その他	CVE-2015-4335	2015-06-12 10:07	2015-06-4	Show	GitHub Exploit DB Packet Storm

208707	6.8	警告	Kankun	-	Kankun Smart Socket デバイスおよびモバイルアプリケーションにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2015-4080	2015-06-12 10:07	2015-06-5	Show	GitHub Exploit DB Packet Storm

208708	7.2	危険	Comodo	-	Comodo GeekBuddy における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-7872	2015-06-12 10:06	2014-10-6	Show	GitHub Exploit DB Packet Storm

208709	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 6 から 11 における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2015-1766	2015-06-11 17:10	2015-06-9	Show	GitHub Exploit DB Packet Storm

208710	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 におけるブラウザの履歴を読まれる脆弱性	CWE-200 情報漏えい	CVE-2015-1765	2015-06-11 17:10	2015-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1401	8.8	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate num_aces and harden ACE walk in smb_inherit_dacl() smb_inherit_dacl() trusts the on-disk num_aces value from the …	NVD-CWE-noinfo	CVE-2026-31706	2026-05-7 05:27	2026-05-1	Show	GitHub Exploit DB Packet Storm

1402	7.3	HIGH Network	osrg	gobgp	A vulnerability was found in osrg GoBGP up to 4.3.0. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component AIGP Attribute Parser. Performing a …	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7735	2026-05-7 05:27	2026-05-4	Show	GitHub Exploit DB Packet Storm

1403	7.5	HIGH Network	osrg	gobgp	A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefix_sid.go of the component SRv6 L3 Service. S…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7734	2026-05-7 05:26	2026-05-4	Show	GitHub Exploit DB Packet Storm

1404	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate response sizes in ipc_validate_msg() ipc_validate_msg() computes the expected message size for each response type…	CWE-787 Out-of-bounds Write	CVE-2026-31707	2026-05-7 05:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

1405	8.1	HIGH Network	trendnet	tew-821dap_firmware	A vulnerability was found in TRENDnet TEW-821DAP up to 1.12B01. This impacts the function platform_do_upgrade_cameo_dev of the file cameo_dev.sh of the component Firmware Update Handler. Performing a…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2026-7611	2026-05-7 05:26	2026-05-2	Show	GitHub Exploit DB Packet Storm

1406	8.1	HIGH Network	trendnet	tew-821dap_firmware	A vulnerability has been found in TRENDnet TEW-821DAP 1.12B01. This affects an unknown function of the file /www/cgi/ssi of the component Firmware Update. Such manipulation leads to cleartext transmi…	CWE-310 CWE-319 Cryptographic Issues Cleartext Transmission of Sensitive Information	CVE-2026-7610	2026-05-7 05:25	2026-05-2	Show	GitHub Exploit DB Packet Storm

1407	8.1	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB read in smb2_ioctl_query_info QUERY_INFO path smb2_ioctl_query_info() has two response-copy branches: PASSTH…	CWE-125 Out-of-bounds Read	CVE-2026-31708	2026-05-7 05:25	2026-05-1	Show	GitHub Exploit DB Packet Storm

1408	8.8	HIGH Network	trendnet	tew-821dap_firmware	A flaw has been found in TRENDnet TEW-821DAP up to 1.12B01. The impacted element is the function tools_diagnostic of the file /tmp/diagnostic of the component Firmware Udpate. This manipulation cause…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7609	2026-05-7 05:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

1409	8.0	HIGH Adjacent	trendnet	tew-821dap_firmware	A vulnerability was detected in TRENDnet TEW-821DAP up to 1.12B01. The affected element is the function tools_diagnostic. The manipulation results in os command injection. The exploit is now public a…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7608	2026-05-7 05:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

1410	8.8	HIGH Network	trendnet	tew-821dap_firmware	A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function auto_update_firmware of the component Firmware Udpate. The manipulation of the argument str leads t…	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7607	2026-05-7 05:23	2026-05-2	Show	GitHub Exploit DB Packet Storm