Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
213541	5.1	警告	tenfourzero	-	Shutter における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-3904	2015-01-15 17:46	2014-08-15	Show	GitHub Exploit DB Packet Storm

213542	4.3	警告	Sitecore	-	Sitecore CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-100004	2015-01-15 17:32	2014-01-22	Show	GitHub Exploit DB Packet Storm

213543	5	警告	Zoho Corporation	-	ManageEngine SupportCenter Plus におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-100002	2015-01-15 17:22	2014-03-14	Show	GitHub Exploit DB Packet Storm

213544	7.2	危険	リアルネットワークス	-	RealNetworks GameHouse RealArcade Installer における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2604	2015-01-15 17:00	2013-09-5	Show	GitHub Exploit DB Packet Storm

213545	10	危険	リアルネットワークス	-	RealNetworks GameHouse RealArcade Installer の InstallerDlg.dll の RACInstaller.StateCtrl.1 ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2013-2603	2015-01-15 16:53	2013-09-5	Show	GitHub Exploit DB Packet Storm

213546	7.5	危険	Hancom Inc.	-	Hancom Office 2010 SE におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-7420	2015-01-15 16:34	2013-12-17	Show	GitHub Exploit DB Packet Storm

213547	4.9	警告	Xen プロジェクト	-	Xen の evtchn_fifo_set_pending 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-6268	2015-01-15 16:12	2014-09-9	Show	GitHub Exploit DB Packet Storm

213548	7.8	危険	マイクロソフト	-	複数の Microsoft Windows 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-0015	2015-01-15 16:06	2015-01-13	Show	GitHub Exploit DB Packet Storm

213549	10	危険	マイクロソフト	-	複数の Microsoft Windows 製品の Telnet サービスにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-0014	2015-01-15 16:06	2015-01-13	Show	GitHub Exploit DB Packet Storm

213550	4.7	警告	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバの mrxdav.sys における偽装保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-0011	2015-01-15 16:05	2015-01-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2161	9.0	CRITICAL Network	-	-	Thymeleaf is a server-side Java template engine for web and standalone environments. Prior to 3.1.5.RELEASE, a security bypass vulnerability exists in the expression execution mechanisms of Thymeleaf…	CWE-917 CWE-1336 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') Improper Neutralization of Special Elements Used in a Template Engine	CVE-2026-41901	2026-05-14 01:10	2026-05-13	Show	GitHub Exploit DB Packet Storm

2162	6.5	MEDIUM Network	open5gs	open5gs	A flaw has been found in Open5GS up to 2.7.7. The impacted element is the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. This manipulation cause…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8249	2026-05-14 01:10	2026-05-11	Show	GitHub Exploit DB Packet Storm

2163	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A security vulnerability has been detected in Wavlink NU516U1 240425. Impacted is the function advance of the file /cgi-bin/wireless.cgi. Such manipulation of the argument wlan_conf/Channel/skiplist/…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8228	2026-05-14 01:10	2026-05-10	Show	GitHub Exploit DB Packet Storm

2164	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A weakness has been identified in Wavlink NU516U1 240425. This issue affects the function wzdapMesh of the file /cgi-bin/adm.cgi. This manipulation causes os command injection. The attack may be init…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8227	2026-05-14 01:10	2026-05-10	Show	GitHub Exploit DB Packet Storm

2165	7.5	HIGH Network	open5gs	open5gs	A vulnerability was found in Open5GS up to 2.7.7. Affected by this vulnerability is the function pcf_sess_sbi_discover_and_send of the component sm-policies Endpoint. Performing a manipulation result…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8223	2026-05-14 01:10	2026-05-10	Show	GitHub Exploit DB Packet Storm

2166	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A security flaw has been discovered in Wavlink NU516U1 M16U1_V240425. This vulnerability affects the function wzdap of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument EncrypType/…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8192	2026-05-14 01:10	2026-05-10	Show	GitHub Exploit DB Packet Storm

2167	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A vulnerability was identified in Wavlink NU516U1 M16U1_V240425. This affects the function wifi_region of the file /cgi-bin/adm.cgi. Such manipulation of the argument skiplist1/skiplist2 leads to os …	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8191	2026-05-14 01:10	2026-05-10	Show	GitHub Exploit DB Packet Storm

2168	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument ppp_username/ppp_passwd/rwa…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8190	2026-05-14 01:10	2026-05-10	Show	GitHub Exploit DB Packet Storm

2169	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A vulnerability was found in Wavlink NU516U1 M16U1_V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlan_bssid/sel_Au…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8189	2026-05-14 01:09	2026-05-10	Show	GitHub Exploit DB Packet Storm

2170	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wifi_password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl_channel/wl_Pass/Encryp…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8188	2026-05-14 01:09	2026-05-10	Show	GitHub Exploit DB Packet Storm