Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245641 10 危険 DELL EMC (旧 EMC Corporation) - EMV DiskXtender における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-0961 2012-06-26 15:55 2008-04-14 Show GitHub Exploit DB Packet Storm
245642 6.8 警告 alivemedia
online media technologies
ussun
orion studios		 - NCTAudioInformation2 ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0959 2012-06-26 15:55 2008-05-29 Show GitHub Exploit DB Packet Storm
245643 9.3 危険 backweb
Logitech		 - BackWeb の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0956 2012-06-26 15:55 2008-06-11 Show GitHub Exploit DB Packet Storm
245644 9.3 危険 creative - CTSUEng.ocx におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0955 2012-06-26 15:55 2008-05-29 Show GitHub Exploit DB Packet Storm
245645 7.5 危険 aeries - Eagle Software ABI における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0943 2012-06-26 15:55 2008-02-25 Show GitHub Exploit DB Packet Storm
245646 7.5 危険 aeries - Eagle Software ABI の GradebookStuScores.aspSQL における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0942 2012-06-26 15:55 2008-02-25 Show GitHub Exploit DB Packet Storm
245647 4.3 警告 aeries - Eagle Software ABI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0941 2012-06-26 15:55 2008-02-25 Show GitHub Exploit DB Packet Storm
245648 7.2 危険 freshmeat
Debian		 - Debian GNU/Linux の XWine の w_editeur.c における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-0930 2012-06-26 15:55 2008-02-26 Show GitHub Exploit DB Packet Storm
245649 7.5 危険 becontent - beContent の news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0921 2012-06-26 15:55 2008-02-22 Show GitHub Exploit DB Packet Storm
245650 7.5 危険 astats
Joomla!		 - Joomla! の astatspro コンポーネントの includes/count_dl_or_link.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0918 2012-06-26 15:55 2008-02-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
101 6.6 MEDIUM
Network 		jenkins active_directory Jenkins Active Directory Plugin 2.41 and earlier follows LDAP referrals by default. New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-48918 2026-05-29 02:17 2026-05-28 Show GitHub Exploit DB Packet Storm
102 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. New - CVE-2026-9818 2026-05-29 02:16 2026-05-28 Show GitHub Exploit DB Packet Storm
103 6.3 MEDIUM
Network 		- - A weakness has been identified in Totolink CA750-PoE 6.2c.510. Impacted is the function setUpgradeUboot of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. This manipulation of the arg… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-9531 2026-05-29 02:16 2026-05-26 Show GitHub Exploit DB Packet Storm
104 8.8 HIGH
Network 		- - A vulnerability has been found in Edimax EW-7438RPn 1.31. This impacts the function formSDHCP of the file /goform/formSDHCP. Such manipulation of the argument submit-url leads to stack-based buffer o… New CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9482 2026-05-29 02:16 2026-05-26 Show GitHub Exploit DB Packet Storm
105 - - - When calicoctl is invoked with --log-level=info or --log-level=debug, the client prints the full contents of its loaded connection-configuration struct to stderr in a single log line. The struct embe… New CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-6720 2026-05-29 02:16 2026-05-29 Show GitHub Exploit DB Packet Storm
106 7.5 HIGH
Network 		- - Taipy 4.1.1, fixed in commit 129fd40, contains a path traversal vulnerability in the ElementLibrary.get_resource() method in taipy/gui/extension/library.py that allows unauthenticated attackers to es… New CWE-22
Path Traversal 		CVE-2026-48544 2026-05-29 02:16 2026-05-28 Show GitHub Exploit DB Packet Storm
107 5.3 MEDIUM
Network 		- - Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, app.mount() strips the mount prefix from the incoming request path using the raw URL pathname, … New CWE-444
CWE-693
HTTP Request Smuggling
 Protection Mechanism Failure 		CVE-2026-47676 2026-05-29 02:16 2026-05-29 Show GitHub Exploit DB Packet Storm
108 4.3 MEDIUM
Network 		- - Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the serialize() function in hono/cookie validates domain and path options against characters th… New CWE-113
CWE-1287
HTTP Response Splitting
 Improper Validation of Specified Type of Input 		CVE-2026-47675 2026-05-29 02:16 2026-05-29 Show GitHub Exploit DB Packet Storm
109 5.3 MEDIUM
Network 		- - Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the ip-restriction middleware (hono/ip-restriction) compares incoming IP addresses against conf… New CWE-185
CWE-1289
 Incorrect Regular Expression
 Improper Validation of Unsafe Equivalence in Input 		CVE-2026-47674 2026-05-29 02:16 2026-05-29 Show GitHub Exploit DB Packet Storm
110 4.8 MEDIUM
Network 		- - Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the jwt and jwk middlewares do not verify that the Authorization header value uses theBearer sc… New CWE-285
Improper Authorization 		CVE-2026-47673 2026-05-29 02:16 2026-05-29 Show GitHub Exploit DB Packet Storm