Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2531	6.5	警告 Network	Pterodactyl	Wings	PterodactylのWingsにおける複数の脆弱性	CWE-400 CWE-770 CWE-770	CVE-2025-69199	2026-02-4 18:37	2026-01-19	Show	GitHub Exploit DB Packet Storm

2532	9.8	緊急 Network	fabianros	Mobile Shop Management System In PHP With Source Code	Fabian RosのMobile Shop Management System In PHP With Source Codeにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2025-69564	2026-02-4 18:37	2026-01-27	Show	GitHub Exploit DB Packet Storm

2533	6.5	警告 Network	PHPGurukul	Online Course Registration	PHPGurukulのOnline Course Registrationにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2025-70899	2026-02-4 18:37	2026-01-22	Show	GitHub Exploit DB Packet Storm

2534	7.3	重要 Local	Lenovo	app store	Lenovoのapp storeにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-8485	2026-02-4 18:37	2025-11-12	Show	GitHub Exploit DB Packet Storm

2535	7.8	重要 Local	Lenovo	PCManager	LenovoのPCManagerにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2025-8486	2026-02-4 18:37	2025-10-15	Show	GitHub Exploit DB Packet Storm

2536	4.9	警告 Network	M-Files	M-Files Server	M-FilesのM-Files Serverにおける入力の構文的正当性の検証に関する脆弱性	CWE-1286 入力の構文的正当性の不適切な検証	CVE-2026-0663	2026-02-4 18:37	2026-01-21	Show	GitHub Exploit DB Packet Storm

2537	6.1	警告 Network	plantuml	plantuml	plantumlにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-0858	2026-02-4 18:37	2026-01-16	Show	GitHub Exploit DB Packet Storm

2538	9.8	緊急 Network	itsourcecode	School Management System	itsourcecodeのSchool Management Systemにおける複数の脆弱性	CWE-74 CWE-89	CVE-2026-1176	2026-02-4 18:37	2026-01-19	Show	GitHub Exploit DB Packet Storm

2539	4.6	警告 Local	Esri	ArcGIS Pro	EsriのArcGIS Proにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-1446	2026-02-4 18:37	2026-01-26	Show	GitHub Exploit DB Packet Storm

2540	6.1	警告 Network	NHN Japan	billboard.js	NHN Japanのbillboard.jsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-1513	2026-02-4 18:37	2026-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
391	8.8	HIGH Network	-	-	A flaw has been found in UTT HiPER 1200GW up to 2.5.3-1703. The affected element is the function strcpy of the file /goform/formUser. Executing a manipulation can lead to buffer overflow. The attack … New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7512	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

392	8.8	HIGH Network	-	-	A vulnerability has been found in UTT HiPER 1200GW up to 2.5.3-170306. The impacted element is the function strcpy of the file /goform/formRemoteControl. The manipulation leads to buffer overflow. Th… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7513	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

393	4.3	MEDIUM Network	-	-	A flaw has been found in Open5GS up to 2.7.7. This issue affects the function amf_namf_callback_handle_sdm_data_change_notify of the file /namf-callback/v1/{id}/sdmsubscription-notify of the componen… New	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7518	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

394	7.3	HIGH Network	-	-	A vulnerability has been found in Fujian Apex LiveBOS up to 2.0. Impacted is an unknown function of the file /feed/UploadImage.do of the component Endpoint. Such manipulation of the argument filename… New	CWE-22 Path Traversal	CVE-2026-7519	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

395	4.3	MEDIUM Network	-	-	A vulnerability was found in Open5GS up to 2.7.7. This affects the function amf_namf_comm_handle_registration_status_update_request in the library /lib/app/ogs-init.c of the file /namf-comm/v1/ue-con… New	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7535	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

396	5.3	MEDIUM Network	-	-	A vulnerability was determined in Open5GS up to 2.7.7. This vulnerability affects the function bsf_sess_add_by_ip_address of the file /nbsf-management/v1/pcfBindings of the component BSF. Executing a… New	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7536	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

397	9.8	CRITICAL Network	-	-	A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function Vulnerability of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation o… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7538	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

398	7.3	HIGH Network	-	-	A weakness has been identified in SourceCodester Advanced School Management System 1.0. The affected element is an unknown function of the file commonController.php of the component checkEmail Endpoi… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7545	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

399	9.8	CRITICAL Network	-	-	A security vulnerability has been detected in Totolink NR1800X 9.1.0u.6279_B20210910. The impacted element is the function find_host_ip of the component lighttpd. Such manipulation of the argument Ho… New	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-7546	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm

400	8.8	HIGH Network	-	-	A vulnerability was detected in Totolink NR1800X 9.1.0u.6279_B20210910. This affects the function sub_41A68C of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument setUssd result… New	CWE-74 CWE-77 Injection Command Injection	CVE-2026-7548	2026-05-2 00:26	2026-05-1	Show	GitHub Exploit DB Packet Storm