Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253311	-	-	Autonomy	-	Autonomy KeyView IDOL に複数の脆弱性	-	-	2011-06-20 11:19	2011-06-8	Show	GitHub Exploit DB Packet Storm

253312	7.6	危険	シスコシステムズ	-	Linux および Mac OS 上で稼働する Cisco AnyConnect Secure Mobility Client における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2040	2011-06-20 11:12	2011-06-1	Show	GitHub Exploit DB Packet Storm

253313	7.6	危険	シスコシステムズ	-	Windows 上で稼働する Cisco AnyConnect Secure Mobility Client における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2039	2011-06-20 11:10	2011-06-1	Show	GitHub Exploit DB Packet Storm

253314	9.3	危険	シスコシステムズ	-	Cisco WebEx WRF Player の atrpui.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2880	2011-06-17 11:28	2009-12-16	Show	GitHub Exploit DB Packet Storm

253315	9.3	危険	シスコシステムズ	-	Cisco WebEx WRF Player の atas32.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2879	2011-06-17 11:25	2009-12-16	Show	GitHub Exploit DB Packet Storm

253316	9.3	危険	シスコシステムズ	-	Cisco WebEx WRF Player の atas32.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2878	2011-06-17 11:23	2009-12-16	Show	GitHub Exploit DB Packet Storm

253317	9.3	危険	シスコシステムズ	-	Cisco WebEx WRF Player の ataudio.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2877	2011-06-17 11:18	2009-12-16	Show	GitHub Exploit DB Packet Storm

253318	6.3	警告	VMware	-	複数の VMware 製品の HGFS におけるゲスト OS 上の任意のファイルを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2145	2011-06-17 10:59	2011-06-2	Show	GitHub Exploit DB Packet Storm

253319	6.9	警告	VMware	-	複数の VMware 製品の HGFS におけるゲスト OS 上の権限を取得される脆弱性	CWE-362 競合状態	CVE-2011-1787	2011-06-17 10:58	2011-06-2	Show	GitHub Exploit DB Packet Storm

253320	2.1	注意	VMware	-	複数の Vmware 製品の HGFS におけるホスト OS 上のファイルなどの存在有無を特定される脆弱性	CWE-200 情報漏えい	CVE-2011-2146	2011-06-17 10:56	2011-06-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
5151	9.8	CRITICAL Network	-	-	A vulnerability has been found in Totolink A8000RU 7.1cu.643_b20200521. This impacts the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the ar…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7122	2026-04-28 03:36	2026-04-27	Show	GitHub Exploit DB Packet Storm

5152	9.8	CRITICAL Network	-	-	A vulnerability was found in Totolink A8000RU 7.1cu.643_b20200521. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the …	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7123	2026-04-28 03:36	2026-04-27	Show	GitHub Exploit DB Packet Storm

5153	9.8	CRITICAL Network	-	-	A vulnerability was determined in Totolink A8000RU 7.1cu.643_b20200521. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Exe…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7124	2026-04-28 03:36	2026-04-27	Show	GitHub Exploit DB Packet Storm

5154	9.8	CRITICAL Network	-	-	A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. Affected by this issue is the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipu…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7125	2026-04-28 03:36	2026-04-27	Show	GitHub Exploit DB Packet Storm

5155	5.3	MEDIUM Network	-	-	A vulnerability was found in code-projects Online Lot Reservation System up to 1.0. This affects the function readfile of the file /download.php. The manipulation of the argument File results in path…	CWE-22 Path Traversal	CVE-2026-7132	2026-04-28 03:36	2026-04-28	Show	GitHub Exploit DB Packet Storm

5156	9.8	CRITICAL Network	-	-	ProjeQtor versions 7.0 through 12.4.3 contain an unauthenticated SQL injection vulnerability in the login functionality where the login variable is directly concatenated into a SQL query without para…	CWE-89 SQL Injection	CVE-2026-41462	2026-04-28 03:36	2026-04-28	Show	GitHub Exploit DB Packet Storm

5157	8.8	HIGH Network	-	-	ProjeQtor versions 7.0 through 12.4.3 contain a ZipSlip path traversal vulnerability in the plugin upload functionality that allows authenticated attackers with upload permissions to write files outs…	CWE-22 Path Traversal	CVE-2026-41463	2026-04-28 03:36	2026-04-28	Show	GitHub Exploit DB Packet Storm

5158	6.5	MEDIUM Network	-	-	ProjeQtor versions 7.0 through 12.4.3 contain a missing authorization vulnerability in the objectDetail.php endpoint that allows authenticated users with guest-level privileges to retrieve sensitive …	CWE-862 Missing Authorization	CVE-2026-41464	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

5159	6.5	MEDIUM Network	-	-	ProjeQtor versions 7.0 through 12.4.3 contains a path traversal vulnerability in the log file viewer at dynamicDialog.php where the logname parameter is not validated against directory traversal sequ…	CWE-22 Path Traversal	CVE-2026-41465	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

5160	5.4	MEDIUM Network	-	-	ProjeQtor versions 7.0 through 12.4.3 contain a stored cross-site scripting vulnerability in the checkValidHtmlText() function within Security.php that fails to properly sanitize user input by only d…	CWE-79 Cross-site Scripting	CVE-2026-41466	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm