Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
212111	5.4	警告	synapse	-	Android 用 iShuttle アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7787	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212112	5.4	警告	Magzter Inc.	-	Android 用 English Football Magazine アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7786	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212113	5.4	警告	onesolutionapps	-	Android 用 AAAA Discount Bail アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7785	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212114	5.4	警告	Magzter Inc.	-	Android 用 Schon! Magazine アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7784	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212115	5.4	警告	billgbennett	-	Android 用 Bill G. Bennett アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7783	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212116	5.4	警告	macedonia hacienda hotel project	-	Android 用 Macedonia Hacienda Hotel アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7782	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212117	5.4	警告	fallacystudios	-	Android 用 Marijuana Handbook Lite - Weed アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7781	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212118	5.4	警告	ienvisage	-	Android 用 Pakistan Cricket News アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7780	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212119	5.4	警告	kuran'in bilimsel mucizeleri project	-	Android 用 Kuran'in Bilimsel Mucizeleri アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7779	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212120	5.4	警告	Magzter Inc.	-	Android 用 Epc World アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-7778	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1211	6.5	MEDIUM Network	n8n	n8n	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user with a valid API key scoped to variable:list could read variables from projec… Update	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-42227	2026-05-7 03:08	2026-05-5	Show	GitHub Exploit DB Packet Storm

1212	6.5	MEDIUM Network	n8n	n8n	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /chat WebSocket endpoint used by the Chat Trigger node's Hosted Chat feature did not verify tha… Update	CWE-862 Missing Authorization	CVE-2026-42228	2026-05-7 03:08	2026-05-5	Show	GitHub Exploit DB Packet Storm

1213	9.8	CRITICAL Network	n8n	n8n	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the Oracle Database node's select operation allowed user-controlled input passed into the… Update	CWE-89 SQL Injection	CVE-2026-42233	2026-05-7 03:07	2026-05-5	Show	GitHub Exploit DB Packet Storm

1214	8.8	HIGH Network	n8n	n8n	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user with permission to create or modify workflows containing a Python Code Node c… Update	CWE-94 Code Injection	CVE-2026-42234	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

1215	9.6	CRITICAL Network	n8n	n8n	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an unauthenticated attacker could register a malicious MCP OAuth client with a crafted client_name.… Update	CWE-79 CWE-87 Cross-site Scripting Improper Neutralization of Alternate XSS Syntax	CVE-2026-42235	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

1216	7.3	HIGH Network	apache	thrift	Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixe… Update	CWE-297 Improper Validation of Certificate with Host Mismatch	CVE-2026-43869	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

1217	5.3	MEDIUM Network	apache	thrift	Memory Allocation with Excessive Size Value vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issu… Update	CWE-789 Memory Allocation with Excessive Size Value	CVE-2026-43868	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

1218	7.3	HIGH Network	apache	thrift	Origin Validation Error, Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting'),… Update	CWE-22 CWE-113 CWE-346 CWE-400 Path Traversal HTTP Response Splitting Origin Validation Error Uncontrolled Resource Consumption	CVE-2026-43870	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

1219	7.5	HIGH Network	qualcomm	fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_firmware fwa_gen_3_ultra_firmware g2_gen_1_firmware g3x_gen_…	Transient DOS when processing target power rate tables during channel configuration. Update	CWE-126 CWE-125 Buffer Over-read Out-of-bounds Read	CVE-2025-47401	2026-05-7 03:03	2026-05-5	Show	GitHub Exploit DB Packet Storm

1220	7.5	HIGH Network	qualcomm	snapdragon_x65_5g_modem-rf_firmware snapdragon_x72_5g_modem-rf_firmware snapdragon_x75_5g_modem-rf_firmware srv1h_firmware srv1m_firmware sxr2230p_firmware sxr2250p_firmware sxr2…	Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming. Update	CWE-126 CWE-125 Buffer Over-read Out-of-bounds Read	CVE-2025-47403	2026-05-7 03:03	2026-05-5	Show	GitHub Exploit DB Packet Storm