Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253941	2.1	注意	VMware	-	VMware vCenter Server の vCenter Tomcat Management Application における権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-2928	2011-03-17 16:27	2011-02-10	Show	GitHub Exploit DB Packet Storm

253942	5	警告	OpenBSD	-	OpenSSH の key_certify 関数におけるスタックメモリ領域の重要なコンテンツ情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0539	2011-03-17 16:24	2011-02-10	Show	GitHub Exploit DB Packet Storm

253943	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-0694	2011-03-17 16:22	2011-02-8	Show	GitHub Exploit DB Packet Storm

253944	5	警告	レッドハット MIT Kerberos オラクル	-	Kerberos の do_standalone 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4022	2011-03-17 15:51	2011-02-8	Show	GitHub Exploit DB Packet Storm

253945	4.3	警告	アドビシステムズ	-	Adobe ColdFusion における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2011-0584	2011-03-17 15:47	2011-02-8	Show	GitHub Exploit DB Packet Storm

253946	4.3	警告	アドビシステムズ	-	Adobe ColdFusion におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0583	2011-03-17 15:45	2011-02-8	Show	GitHub Exploit DB Packet Storm

253947	5	警告	アドビシステムズ	-	Adobe ColdFusion の administrator コンソールにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-0582	2011-03-17 15:43	2011-02-8	Show	GitHub Exploit DB Packet Storm

253948	4.3	警告	アドビシステムズ	-	Adobe ColdFusion における任意の HTTP ヘッダを挿入される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0581	2011-03-17 15:41	2011-02-8	Show	GitHub Exploit DB Packet Storm

253949	4.3	警告	アドビシステムズ	-	Adobe ColdFusion の administrator コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0580	2011-03-17 15:39	2011-02-8	Show	GitHub Exploit DB Packet Storm

253950	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の Font Xtra.x32 モジュールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0569	2011-03-17 15:37	2011-02-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
5081	8.8	HIGH Network	-	-	Cross Site Request Forgery vulnerability in diskoverdata diskover-community v.2.3.5. and before allows a remote attacker to escalate privileges and obtain sensitive information via the public/setting…	CWE-352 Origin Validation Error	CVE-2026-38934	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

5082	6.1	MEDIUM Network	-	-	A reflected cross-site scripting (XSS) vulnerability exists in diskover-community <= 2.3.5 in public/view.php via the doctype parameter	CWE-79 Cross-site Scripting	CVE-2026-38935	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

5083	6.1	MEDIUM Network	-	-	A reflected cross-site scripting (XSS) vulnerability exists in diskover-community <= 2.3.5 in public/selectindices.php via the namecontains parameter	CWE-79 Cross-site Scripting	CVE-2026-38936	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

5084	9.8	CRITICAL Network	-	-	A flaw has been found in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the …	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7139	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

5085	9.8	CRITICAL Network	-	-	A vulnerability has been found in Totolink A8000RU 7.1cu.643_b20200521. Impacted is the function CsteSystem of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the arg…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7140	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

5086	5.4	MEDIUM Network	-	-	A weakness has been identified in mettle sendportal up to 3.0.1. Affected is the function destroy of the file app/Http/Controllers/Workspaces/WorkspaceInvitationsController.php of the component Invit…	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-7145	2026-04-28 03:35	2026-04-28	Show	GitHub Exploit DB Packet Storm

5087	4.0	MEDIUM Local	gnupg	libgcrypt	Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data.	CWE-787 Out-of-bounds Write	CVE-2026-41990	2026-04-28 03:33	2026-04-23	Show	GitHub Exploit DB Packet Storm

5088	6.7	MEDIUM Local	gnupg	libgcrypt	Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcry_pk_decrypt.	CWE-787 Out-of-bounds Write	CVE-2026-41989	2026-04-28 03:33	2026-04-23	Show	GitHub Exploit DB Packet Storm

5089	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: af_unix: read UNIX_DIAG_VFS data under unix_state_lock Exact UNIX diag lookups hold a reference to the socket, but not to u->path…	-	CVE-2026-31673	2026-04-28 03:32	2026-04-25	Show	GitHub Exploit DB Packet Storm

5090	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() Reject rt match rules whose addrnr exceeds IP6T_RT_HOPS. rt_mt6() …	-	CVE-2026-31674	2026-04-28 03:32	2026-04-25	Show	GitHub Exploit DB Packet Storm