Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2581 6.5 警告
Network 		シックス・アパート株式会社 Movable Type Premium
Movable Type
Movable Type Advanced
Movable Type Premium (Advanced Edition) 		Movable Typeにおける複数の脆弱性 CWE-79
CWE-Other
CVE-2026-21393
CVE-2026-22875
CVE-2026-23704
CVE-2026-24447 		2026-02-4 12:10 2026-02-4 Show GitHub Exploit DB Packet Storm
2582 6.8 警告
Adjacent 		エレコム株式会社 WRC-2533GST2 ファームウェア
WRC-G01-W
WMC-2LX2-B
WRC-2533GS2V-B
WMC-X1800GST-B
WRC-1167GS2-B
WRC-1167GST2 ファームウェア
WSC-X1800GS2-B
WRC-X3200GST3-B
WRC-1167GS2H-B
WMC-X1… 		エレコム製無線 LAN ルーターにおける OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-25579 2026-02-4 11:55 2024-02-20 Show GitHub Exploit DB Packet Storm
2583 7.5 重要
Network 		三菱電機 CC-Link IE TSNリモートI/Oユニット
MELSEC iQ-Rシリーズ CC-Link IE TSN マスタ・ローカルユニット
CC-Link IE TSN FPGAユニット
CC-Link IE TSN マスタ局・ローカル局用通信LSI… 		三菱電機製 FA 製品の Ethernet 機能におけるサービス運用妨害(DoS)の脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2025-3511 2026-02-4 11:55 2025-05-14 Show GitHub Exploit DB Packet Storm
2584 - - OpenSSL Project OpenSSL OpenSSLにおける複数の脆弱性(OpenSSL Security Advisory [27th January 2026]) - CVE-2025-11187
CVE-2025-15467
CVE-2025-15468
CVE-2025-15469
CVE-2025-66199
CVE-2025-68160
CVE-2025-69418
CVE-2025-69419
CVE-2025-69420
CVE-2025-69421
CVE-2026-22795
C… 		2026-02-4 11:14 2026-02-3 Show GitHub Exploit DB Packet Storm
2585 9.8 緊急
Network 		エレコム株式会社 WRC-1167GST2 ファームウェア
WRC-X3000GSN ファームウェア
WRH-733GBK ファームウェア
WRC-X3000GSA ファームウェア
WRH-733GWH ファームウェア
WRC-X3000GS ファームウェア
WRC-1167GS2-B
WRC-2533GS2V-… 		エレコム製無線LANルータにおける複数の脆弱性 CWE-78
CWE-79
CVE-2025-36519
CVE-2025-41427
CVE-2025-43877
CVE-2025-43879
CVE-2025-48890 		2026-02-3 14:29 2025-06-24 Show GitHub Exploit DB Packet Storm
2586 6.8 警告
Adjacent 		エレコム株式会社 WRC-XE5400GS-G
WRC-2533GS2V-B
WRC-X6000XST-G
WRC-X3000GS2-B ファームウェア
WRC-1167GS2H-B
WRC-XE5400GSA-G
WRC-X6000QS-G
WRC-X1500GSA-B
WRC-X1800GSH-B
WRC-X6000XS-G
WRC-X15… 		エレコム製無線LANルーターにおける複数の脆弱性 CWE-352
CWE-78
CWE-Other
CVE-2024-34021
CVE-2024-39607
CVE-2024-40883 		2026-02-3 14:25 2024-07-30 Show GitHub Exploit DB Packet Storm
2587 9.8 緊急
Network 		エレコム株式会社 WAB-S300IW2-PD
WRC-X1500GSA-B
WAB-S300IW-AC
WAB-S733IW2-PD
WRC-X1500GS-B
WAB-S300IW-PD
WAB-S733IW-PD
WAB-S733IW-AC 		エレコム無線LAN関連製品における複数の脆弱性 CWE-352
CWE-78
CWE-Other
CVE-2026-20704
CVE-2026-22550
CVE-2026-24449
CVE-2026-24465 		2026-02-3 14:15 2026-02-3 Show GitHub Exploit DB Packet Storm
2588 7.8 重要
Local 		三菱電機 FREQSHIP-mini 三菱小容量UPS用シャットダウンソフトウェア FREQSHIP-mini for Windowsにおけるインストール時の不適切なファイルアクセス権設定の脆弱性 CWE-Other
その他 		CVE-2025-10314 2026-02-3 12:35 2026-02-3 Show GitHub Exploit DB Packet Storm
2589 7.8 重要
Local 		ローランド株式会社 Roland Cloud Manager Roland Cloud ManagerのインストーラにおけるDLL読み込みに関する脆弱性 CWE-Other
その他 		CVE-2026-24694 2026-02-3 12:08 2026-02-3 Show GitHub Exploit DB Packet Storm
2590 7.5 重要
Network 		trustwallet trust wallet core trustwalletのtrust wallet coreにおけるバッファオーバーリードの脆弱性 CWE-126
バッファオーバーリード 		CVE-2025-66692 2026-02-2 19:40 2026-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
571 3.7 LOW
Network 		- - A vulnerability has been found in TRENDnet TEW-821DAP 1.12B01. This affects an unknown function of the file /www/cgi/ssi of the component Firmware Update. Such manipulation leads to cleartext transmi… CWE-310
CWE-319
Cryptographic Issues
Cleartext Transmission of Sensitive Information 		CVE-2026-7610 2026-05-2 19:16 2026-05-2 Show GitHub Exploit DB Packet Storm
572 6.3 MEDIUM
Network 		- - A flaw has been found in TRENDnet TEW-821DAP up to 1.12B01. The impacted element is the function tools_diagnostic of the file /tmp/diagnostic of the component Firmware Udpate. This manipulation cause… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7609 2026-05-2 19:16 2026-05-2 Show GitHub Exploit DB Packet Storm
573 8.1 HIGH
Network 		- - School App developed by Zyosoft has an Insecure Direct Object Reference vulnerability, allowing authenticated remote attackers to modify a specific parameter to read and modify other users' data. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-7491 2026-05-2 19:16 2026-05-2 Show GitHub Exploit DB Packet Storm
574 7.2 HIGH
Network 		- - CTMS and CPAS developed by Sunnet has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-7490 2026-05-2 19:16 2026-05-2 Show GitHub Exploit DB Packet Storm
575 8.8 HIGH
Network 		- - CTMS developed by Sunnet has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents. CWE-89
SQL Injection 		CVE-2026-7489 2026-05-2 19:16 2026-05-2 Show GitHub Exploit DB Packet Storm
576 5.4 MEDIUM
Network 		- - The Total theme for WordPress is vulnerable to Stored Cross-Site Scripting via post titles in versions up to, and including, 2.2.1 due to insufficient output escaping when rendering the_title() insid… CWE-79
Cross-site Scripting 		CVE-2026-5077 2026-05-2 19:16 2026-05-2 Show GitHub Exploit DB Packet Storm
577 5.5 MEDIUM
Adjacent 		- - A vulnerability was detected in TRENDnet TEW-821DAP up to 1.12B01. The affected element is the function tools_diagnostic. The manipulation results in os command injection. The exploit is now public a… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7608 2026-05-2 18:16 2026-05-2 Show GitHub Exploit DB Packet Storm
578 7.2 HIGH
Network 		- - The Brizy – Page Builder plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in all versions up to, and including, 2.8.11 This is due to a combination of missing nonce v… CWE-79
Cross-site Scripting 		CVE-2026-5324 2026-05-2 18:16 2026-05-2 Show GitHub Exploit DB Packet Storm
579 5.3 MEDIUM
Network 		- - The Royal Addons for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the `wpr_update_form_action_meta` AJAX action in all versio… CWE-862
 Missing Authorization 		CVE-2026-4024 2026-05-2 18:16 2026-05-2 Show GitHub Exploit DB Packet Storm
580 7.5 HIGH
Network 		- - The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in al… CWE-89
SQL Injection 		CVE-2026-7649 2026-05-2 17:16 2026-05-2 Show GitHub Exploit DB Packet Storm