Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251261 5.1 警告 drake team - Drake CMS の index.php における CRLF インジェクションの脆弱性 - CVE-2007-2618 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251262 7.5 危険 crie sue - Crie seu PHPLojaFacil における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2615 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251263 6.8 警告 cgx - CGX における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2611 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251264 7.5 危険 gnuedu - gnuedu における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-2609 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251265 7.8 危険 Firebird Project - Firebird におけるバッファオーバーフローの脆弱性 - CVE-2007-2606 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251266 7.1 危険 brujula toolbar - Brujula Toolbar の BRUJULA4.NET.DLL におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2605 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251267 7.8 危険 brew city software - FlexLabel ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2604 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251268 7.8 危険 audio cd tools - Audio CD Ripper OCX ActiveX コントロールの Init 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2603 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251269 9.3 危険 divx city - fix.dll の GDivX Zenith Player AviFixer クラスの ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - CVE-2007-2601 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251270 7.5 危険 agner fog - aForum の common/func.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2596 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
5291 6.3 MEDIUM
Network
- - A vulnerability was detected in CodeAstro Ingredients Stock Management System 1.0. This impacts an unknown function of the file /Ingredients-Stock/add_stock.php. The manipulation of the argument ID r… CWE-74
CWE-89
Injection
SQL Injection
CVE-2026-11495 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
5292 8.8 HIGH
Network
- - A vulnerability was found in Tenda HG7HG9 and HG10 300001138_en_xpon. Affected by this issue is the function asp_voip_OtherSet of the file /boaform/voip_other_set of the component Web Management Inte… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow
CVE-2026-11498 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
5293 9.8 CRITICAL
Network
- - A vulnerability was determined in Tenda HG7HG9 and HG10 300001138_en_xpon. This affects the function formDOMAINBLK of the file /boaform/formDOMAINBLK. Executing a manipulation of the argument blkDoma… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow
CVE-2026-11499 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
5294 7.3 HIGH
Network
- - A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This issue affects some unknown processing of the file /classes/Master.php?f=save_patient. The m… CWE-74
CWE-89
Injection
SQL Injection
CVE-2026-11501 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
5295 8.8 HIGH
Network
- - A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is the function form_fast_setting_wifi_set of the file /goform/fast_setting_wifi_set of the component Wi-Fi… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow
CVE-2026-11503 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
5296 5.0 MEDIUM
Network
- - A vulnerability was identified in Weaviate up to 1.37.7. This vulnerability affects the function validateConfig of the file usecases/auth/authentication/apikey/client.go of the component Static API K… CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key
CVE-2026-11500 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
5297 3.1 LOW
Network
- - A weakness has been identified in JeecgBoot up to 3.9.2. Impacted is the function HttpServletResponse.sendRedirect of the file jeecg-module-system/jeecg-system-biz/src/main/java/org/jeecg/modules/sys… CWE-601
Open Redirect
CVE-2026-11502 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
5298 8.8 HIGH
Network
- - A vulnerability was detected in Tenda CX12L 16.03.53.12. The impacted element is the function setSchedWifi of the file /goform/openSchedWifi of the component Wi-Fi Schedule Configuration Endpoint. Pe… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow
CVE-2026-11504 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
5299 5.0 MEDIUM
Network
- - A flaw has been found in GL.iNet A1300, AX1800, AXT1800, MT2500, MT3000, MT6000, X3000 and XE3000 4.8.x. This affects an unknown function of the component glnassys. Executing a manipulation can lead … CWE-320
CWE-321
 Key Management Errors
 Use of Hard-coded Cryptographic Key
CVE-2026-11505 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
5300 6.3 MEDIUM
Network
- - A vulnerability has been found in CodeAstro Leave Management System 1.0. This impacts an unknown function of the file /admin/search_staff_for_deletion.php. The manipulation of the argument Name leads… CWE-74
CWE-89
Injection
SQL Injection
CVE-2026-11506 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm