Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
213811	4.3	警告	レッドハット	-	Teiid および Red Hat JBoss Data Virtualization における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-0170	2014-10-2 17:16	2014-07-11	Show	GitHub Exploit DB Packet Storm

213812	6.8	警告	Openfiler	-	Openfiler におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-7190	2014-10-2 16:57	2014-09-26	Show	GitHub Exploit DB Packet Storm

213813	4.3	警告	macdonaldgeek	-	Restaurant Script の register-exec.php におけるクロスサイトスクリプティングの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-6619	2014-10-2 16:56	2014-05-21	Show	GitHub Exploit DB Packet Storm

213814	5	警告	TP-LINK Technologies	-	TP-LINK N750 Wireless Dual Band Gigabit ルータのファームウェアの Web サーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-4728	2014-10-2 16:55	2014-09-16	Show	GitHub Exploit DB Packet Storm

213815	4.3	警告	TP-LINK Technologies	-	TP-LINK N750 Wireless Dual Band Gigabit ルータのファームウェアの DHCP クライアントページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4727	2014-10-2 16:54	2014-09-16	Show	GitHub Exploit DB Packet Storm

213816	4.3	警告	TP-LINK Technologies	-	TP-LINK TL-WR841N ルータのファームウェアにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6316	2014-10-2 16:53	2012-11-17	Show	GitHub Exploit DB Packet Storm

213817	4.3	警告	Plone Foundation	-	Plone の widget_traversal.py におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5504	2014-10-2 16:50	2012-11-6	Show	GitHub Exploit DB Packet Storm

213818	5	警告	Plone Foundation	-	Plone の ftp.py における隠しフォルダのコンテンツを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2012-5503	2014-10-2 16:49	2012-11-6	Show	GitHub Exploit DB Packet Storm

213819	3.5	注意	Plone Foundation	-	Plone の safe_html.py におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5502	2014-10-2 16:49	2012-11-6	Show	GitHub Exploit DB Packet Storm

213820	5	警告	Plone Foundation	-	Plone の at_download.py におけるカスタムコンテンツタイプに格納されている任意の BLOB を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5501	2014-10-2 16:48	2012-11-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
81	4.8	MEDIUM Network	-	-	Improper Certificate Validation via Global SSL Context Downgrade in Apache Storm Prometheus Reporter Versions Affected: from 2.6.3 to 2.8.6 Description: In production deployments where an admin… Update	CWE-295 Improper Certificate Validation	CVE-2026-40557	2026-05-1 01:16	2026-04-27	Show	GitHub Exploit DB Packet Storm

82	9.8	CRITICAL Network	-	-	Cockpit v2.13.5 and earlier is vulnerable to arbitrary code execution via the filter parameter within multiple endpoints. This vulnerability allows an attacker to run system commands on the underlyin… New	CWE-94 Code Injection	CVE-2026-38992	2026-05-1 01:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

83	7.5	HIGH Network	-	-	U-SPEED N300 router V1.0.0 does not implement rate limiting or account lockout protections on the /api/login endpoint. This allows an attacker on the local network to perform unlimited authentication… New	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2026-36959	2026-05-1 01:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

84	7.5	HIGH Network	-	-	A denial-of-service vulnerability exists in the U-SPEED N300 V1.0.0 wireless router. By sending a large number of concurrent HTTP requests to random or non-existent endpoints on the web management in… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-36958	2026-05-1 01:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

85	7.5	HIGH Network	-	-	Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router V1.0.0 is vulnerable to Denial of Service via the boa web server URI handler. By initiating a high-volume flood of HTTP GET requests to non-existent … New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-36957	2026-05-1 01:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

86	8.8	HIGH Network	-	-	A Cross-Site Request Forgery (CSRF) vulnerability exists in the web management interface of the Dbit N300 T1 Pro wireless router V1.0.0. The router fails to implement proper CSRF protection mechanism… New	CWE-352 Origin Validation Error	CVE-2026-36956	2026-05-1 01:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

87	-		-	-	Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. New	-	CVE-2026-34998	2026-05-1 01:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

88	-		-	-	Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. New	-	CVE-2026-34997	2026-05-1 01:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

89	-		-	-	Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. New	-	CVE-2026-34996	2026-05-1 01:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

90	-		-	-	Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. New	-	CVE-2026-34995	2026-05-1 01:16	2026-05-1	Show	GitHub Exploit DB Packet Storm