Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251191	7.5	危険	Parallels	-	Parallels Plesk Panel の Control Panel における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4734	2011-12-19 16:40	2011-12-16	Show	GitHub Exploit DB Packet Storm

251192	10	危険	Parallels	-	Parallels Plesk Panel の Server Administration Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4733	2011-12-19 16:39	2011-12-16	Show	GitHub Exploit DB Packet Storm

251193	10	危険	Parallels	-	Parallels Plesk Panel の Server Administration Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4732	2011-12-19 16:38	2011-12-16	Show	GitHub Exploit DB Packet Storm

251194	10	危険	Parallels	-	Parallels Plesk Panel の Administration Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4731	2011-12-19 16:37	2011-12-16	Show	GitHub Exploit DB Packet Storm

251195	10	危険	Parallels	-	Parallels Plesk Panel の Server Administration Panel における認証を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4730	2011-12-19 16:34	2011-12-16	Show	GitHub Exploit DB Packet Storm

251196	5	警告	Parallels	-	Parallels Plesk Panel の Server Administration Panel における重要な情報を取得される脆弱性	CWE-DesignError	CVE-2011-4729	2011-12-19 16:33	2011-12-16	Show	GitHub Exploit DB Packet Storm

251197	5	警告	Parallels	-	Parallels Plesk Panel の Server Administration Panel における Cookie をキャプチャされる脆弱性	CWE-200 情報漏えい	CVE-2011-4728	2011-12-19 16:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

251198	10	危険	Parallels	-	Parallels Plesk Panel の Server Administration Panel におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-4727	2011-12-19 16:30	2011-12-16	Show	GitHub Exploit DB Packet Storm

251199	4.3	警告	Parallels	-	Parallels Plesk Panel の Server Administration Panel におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4726	2011-12-19 16:28	2011-12-16	Show	GitHub Exploit DB Packet Storm

251200	7.5	危険	Parallels	-	Parallels Plesk Panel の Server Administration Panel における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4725	2011-12-19 16:28	2011-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3481	6.3	MEDIUM Network	-	-	A vulnerability was identified in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected is an unknown function of the file /product_expiry/edit-admin.php. Such manipulation of the…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7746	2026-05-5 00:17	2026-05-4	Show	GitHub Exploit DB Packet Storm

3482	9.8	CRITICAL Network	-	-	A security flaw has been discovered in Totolink N300RH 3.2.4-B20220812. Affected by this vulnerability is the function loginauth of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. P…	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7747	2026-05-5 00:17	2026-05-4	Show	GitHub Exploit DB Packet Storm

3483	8.8	HIGH Network	-	-	A weakness has been identified in Totolink N300RH 3.2.4-B20220812. Affected by this issue is the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Executin…	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7748	2026-05-5 00:17	2026-05-4	Show	GitHub Exploit DB Packet Storm

3484	8.8	HIGH Network	-	-	A security vulnerability has been detected in Totolink N300RH 3.2.4-B20220812. This affects the function setWanConfig of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manip…	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7749	2026-05-5 00:17	2026-05-4	Show	GitHub Exploit DB Packet Storm

3485	8.8	HIGH Network	-	-	A vulnerability was detected in Totolink N300RH 3.2.4-B20220812. This vulnerability affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The …	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7750	2026-05-5 00:17	2026-05-4	Show	GitHub Exploit DB Packet Storm

3486	6.5	MEDIUM Network	vmware	spring_framework	A WebFlux server application that processes multipart requests creates temp files for parts larger than 10 K. Under some circumstances, temp files may remain not deleted after the request is fully pr…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-22740	2026-05-4 23:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

3487	3.1	LOW Network	vmware	spring_framework	Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static resources. More precisely, an application can be vulnerable when all the following are true: * the ap…	CWE-524 Use of Cache Containing Sensitive Information	CVE-2026-22741	2026-05-4 23:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

3488	5.3	MEDIUM Network	vmware	spring_framework	Spring MVC and WebFlux applications are vulnerable to Denial of Service attacks when resolving static resources. More precisely, an application can be vulnerable when all the following are true: …	CWE-400 Uncontrolled Resource Consumption	CVE-2026-22745	2026-05-4 23:50	2026-04-29	Show	GitHub Exploit DB Packet Storm

3489	9.8	CRITICAL Network	nvidia	nvflare	NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A succ…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-24178	2026-05-4 23:34	2026-04-29	Show	GitHub Exploit DB Packet Storm

3490	8.8	HIGH Network	nvidia	nvflare	NVIDIA FLARE SDK contains a vulnerability in FOBS, where an attacker may cause deserialization of untrusted data by sending a malicious FOBS- encoded message. A successful exploit of this vulnerabil…	CWE-502 Deserialization of Untrusted Data	CVE-2026-24186	2026-05-4 23:33	2026-04-29	Show	GitHub Exploit DB Packet Storm