Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208911	-	-	サムスン	-	削除 Samsung Galaxy S にプリインストールされた Swiftkey が言語パックのアップデートを正しく検証しない脆弱性	-	CVE-2015-2865	2015-06-22 16:30	2015-06-16	Show	GitHub Exploit DB Packet Storm

208912	6.8	警告	Vesta Control Panel	-	Vesta Control Panel にクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-2861	2015-06-22 16:23	2015-06-16	Show	GitHub Exploit DB Packet Storm

208913	4	警告	シスコシステムズ	-	Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-4195	2015-06-22 15:24	2015-06-18	Show	GitHub Exploit DB Packet Storm

208914	5	警告	シスコシステムズ	-	Cisco WebEx Meeting Center の Web ベースの管理インターフェースにおけるアカウント名を列挙される脆弱性	CWE-200 情報漏えい	CVE-2015-4194	2015-06-22 15:24	2015-06-18	Show	GitHub Exploit DB Packet Storm

208915	5	警告	シスコシステムズ	-	Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-4191	2015-06-22 15:24	2015-06-17	Show	GitHub Exploit DB Packet Storm

208916	6.8	警告	Labsmedia Cloud Computing Center	-	ClickHeat におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-4659	2015-06-22 14:42	2015-06-11	Show	GitHub Exploit DB Packet Storm

208917	7.5	危険	Milw0rm project	-	Milw0rm Clone Script の admin/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-4658	2015-06-22 14:12	2015-06-13	Show	GitHub Exploit DB Packet Storm

208918	4.3	警告	Mailbird	-	Mailbird におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-4657	2015-06-22 14:07	2015-05-9	Show	GitHub Exploit DB Packet Storm

208919	4.3	警告	Alcatel-Lucent	-	Alcatel-Lucent CellPipe 7130 ルータのファームウェアにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-4587	2015-06-22 14:00	2015-06-16	Show	GitHub Exploit DB Packet Storm

208920	6.8	警告	WP Smiley project	-	WordPress 用 WP Smiley プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-4140	2015-06-22 13:59	2015-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1411	8.1	HIGH Network	trendnet	tew-821dap_firmware	A weakness has been identified in TRENDnet TEW-821DAP 1.12B01. This issue affects the function find_hwid/new_gui_update_firmware of the component Firmware Update Handler. Executing a manipulation of …	CWE-345 Insufficient Verification of Data Authenticity	CVE-2026-7606	2026-05-7 05:23	2026-05-2	Show	GitHub Exploit DB Packet Storm

1412	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: smb: client: fix dir separator in SMB1 UNIX mounts When calling cifs_mount_get_tcon() with SMB1 UNIX mounts, @cifs_sb->mnt_cifs_f…	NVD-CWE-noinfo	CVE-2026-31710	2026-05-7 05:21	2026-05-1	Show	GitHub Exploit DB Packet Storm

1413	7.5	HIGH Network	lobster-world	lobster_pro	Unauthenticated attackers can exploit a weakness in the XML parser functionality of Lobster_pro prior to version 4.12.6-GA. This allows them to obtain read access to files on the application server a…	CWE-611 XXE	CVE-2024-13971	2026-05-7 05:19	2026-04-30	Show	GitHub Exploit DB Packet Storm

1414	7.5	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: smb: server: fix active_num_conn leak on transport allocation failure Commit 77ffbcac4e56 ("smb: server: fix leak of active_num_c…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-31711	2026-05-7 05:18	2026-05-1	Show	GitHub Exploit DB Packet Storm

1415	8.8	HIGH Network	-	-	Vvveb before version 1.0.8.2 contains an unrestricted file upload vulnerability in the media upload handler that allows authenticated users with media-upload permissions to bypass extension restricti…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-41938	2026-05-7 05:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1416	8.1	HIGH Network	-	-	Vvveb before version 1.0.8.2 contains an XML external entity (XXE) injection vulnerability in the admin Tools/Import feature that allows authenticated site_admin users to read arbitrary files and mod…	CWE-611 XXE	CVE-2026-41936	2026-05-7 05:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1417	5.3	MEDIUM Network	-	-	Vvveb before version 1.0.8.2 contains an information disclosure vulnerability that allows unauthenticated attackers to obtain sensitive server information by triggering unhandled exceptions in the pa…	CWE-209 CWE-1188 Information Exposure Through an Error Message Insecure Default Initialization of Resource	CVE-2026-41931	2026-05-7 05:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1418	9.8	CRITICAL Network	-	-	Vvveb before version 1.0.8.2 contains a hard-coded credentials vulnerability in its docker-compose-apache.yaml configuration that allows unauthenticated attackers to access the bundled phpMyAdmin con…	CWE-306 Missing Authentication for Critical Function	CVE-2026-41930	2026-05-7 05:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1419	-		-	-	Rejected reason: This CVE is a duplicate of another CVE: CVE-2026-33079.	-	CVE-2026-33441	2026-05-7 05:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1420	8.3	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ksmbd: require minimum ACE size in smb_check_perm_dacl() Both ACE-walk loops in smb_check_perm_dacl() only guard against an under…	CWE-787 Out-of-bounds Write	CVE-2026-31712	2026-05-7 05:16	2026-05-1	Show	GitHub Exploit DB Packet Storm