Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220191 9 危険 ジュニパーネットワークス - Juniper Junos の J-Web の jsdm/ajax/port.php における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6618 2013-11-7 16:48 2013-05-9 Show GitHub Exploit DB Packet Storm
220192 6.4 警告 Smackcoders - Wordpress 用 WP Ultimate Email Marketer プラグインにおけるリストまたはキャンペーンのデータを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3264 2013-11-7 16:10 2013-09-24 Show GitHub Exploit DB Packet Storm
220193 4.3 警告 Smackcoders - Wordpress 用 WP Ultimate Email Marketer プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3263 2013-11-7 16:06 2013-09-24 Show GitHub Exploit DB Packet Storm
220194 5.8 警告 シトリックス・システムズ - Citrix XenDesktop における制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6077 2013-11-7 15:49 2013-10-22 Show GitHub Exploit DB Packet Storm
220195 4.3 警告 s9y - Serendipity で使用される htmlarea SpellChecker モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5670 2013-11-7 15:46 2013-08-28 Show GitHub Exploit DB Packet Storm
220196 10 危険 SaltStack - Salt の salt master における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6617 2013-11-7 13:55 2013-10-18 Show GitHub Exploit DB Packet Storm
220197 4.9 警告 SaltStack - Salt における任意の minion になりすまされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4439 2013-11-7 13:47 2013-10-18 Show GitHub Exploit DB Packet Storm
220198 7.5 危険 SaltStack - Salt における任意の YAML コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-4438 2013-11-7 13:42 2013-10-18 Show GitHub Exploit DB Packet Storm
220199 10 危険 SaltStack - Salt の salt-ssh における脆弱性 CWE-noinfo
情報不足 		CVE-2013-4437 2013-11-7 11:54 2013-10-18 Show GitHub Exploit DB Packet Storm
220200 4.3 警告 Wikiwig - WikiWig などの製品で使用される Xinha の SpellChecker モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5267 2013-11-7 11:42 2011-03-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
611 9.8 CRITICAL
Network 		- - Cockpit v2.13.5 and earlier is vulnerable to arbitrary code execution via the filter parameter within multiple endpoints. This vulnerability allows an attacker to run system commands on the underlyin… CWE-94
Code Injection 		CVE-2026-38992 2026-05-1 01:16 2026-04-30 Show GitHub Exploit DB Packet Storm
612 7.5 HIGH
Network 		- - U-SPEED N300 router V1.0.0 does not implement rate limiting or account lockout protections on the /api/login endpoint. This allows an attacker on the local network to perform unlimited authentication… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-36959 2026-05-1 01:16 2026-05-1 Show GitHub Exploit DB Packet Storm
613 7.5 HIGH
Network 		- - A denial-of-service vulnerability exists in the U-SPEED N300 V1.0.0 wireless router. By sending a large number of concurrent HTTP requests to random or non-existent endpoints on the web management in… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-36958 2026-05-1 01:16 2026-05-1 Show GitHub Exploit DB Packet Storm
614 7.5 HIGH
Network 		- - Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router V1.0.0 is vulnerable to Denial of Service via the boa web server URI handler. By initiating a high-volume flood of HTTP GET requests to non-existent … CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-36957 2026-05-1 01:16 2026-05-1 Show GitHub Exploit DB Packet Storm
615 8.8 HIGH
Network 		- - A Cross-Site Request Forgery (CSRF) vulnerability exists in the web management interface of the Dbit N300 T1 Pro wireless router V1.0.0. The router fails to implement proper CSRF protection mechanism… CWE-352
 Origin Validation Error 		CVE-2026-36956 2026-05-1 01:16 2026-05-1 Show GitHub Exploit DB Packet Storm
616 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2026-34998 2026-05-1 01:16 2026-05-1 Show GitHub Exploit DB Packet Storm
617 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2026-34997 2026-05-1 01:16 2026-05-1 Show GitHub Exploit DB Packet Storm
618 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2026-34996 2026-05-1 01:16 2026-05-1 Show GitHub Exploit DB Packet Storm
619 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2026-34995 2026-05-1 01:16 2026-05-1 Show GitHub Exploit DB Packet Storm
620 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2026-34994 2026-05-1 01:16 2026-05-1 Show GitHub Exploit DB Packet Storm