Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2611	9.1	緊急 Network	ruoyi	ruoyi	ruoyiにおける複数の脆弱性	CWE-284 CWE-862	CVE-2025-70985	2026-02-2 19:39	2026-01-23	Show	GitHub Exploit DB Packet Storm

2612	7.5	重要 Network	ruoyi	ruoyi	ruoyiにおける複数の脆弱性	CWE-284 CWE-862	CVE-2025-70986	2026-02-2 19:39	2026-01-23	Show	GitHub Exploit DB Packet Storm

2613	5.4	警告 Network	Lavalite	Lavalite	Lavaliteにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-71177	2026-02-2 19:39	2026-01-23	Show	GitHub Exploit DB Packet Storm

2614	4.2	警告 Network	Fortra	GoAnywhere Managed File Transfer	FortraのGoAnywhere Managed File Transferにおける複数の脆弱性	CWE-732 CWE-863	CVE-2025-8148	2026-02-2 19:39	2025-12-5	Show	GitHub Exploit DB Packet Storm

2615	7.5	重要 Network	TP-LINK Technologies	TL-WR841N ファームウェア	TP-LINK TechnologiesのTL-WR841N ファームウェアにおける複数の脆弱性	CWE-20 CWE-476	CVE-2025-9014	2026-02-2 19:39	2026-01-15	Show	GitHub Exploit DB Packet Storm

2616	5.5	警告 Network	Zoho Corporation	ManageEngine ADManager Plus	Zoho CorporationのManageEngine ADManager Plusにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-9435	2026-02-2 19:39	2026-01-13	Show	GitHub Exploit DB Packet Storm

2617	6.1	警告 Network	Zoho Corporation	manageengine applications manager	Zoho CorporationのManageEngine Applications Managerにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-9787	2026-02-2 19:39	2025-12-18	Show	GitHub Exploit DB Packet Storm

2618	6.1	警告 Network	ironmansoftware	powershell universal	ironmansoftwareのpowershell universalにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-0618	2026-02-2 19:39	2026-01-7	Show	GitHub Exploit DB Packet Storm

2619	8.8	重要 Network	openwebui	open webui	openwebuiのopen webuiにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-0765	2026-02-2 19:39	2026-01-23	Show	GitHub Exploit DB Packet Storm

2620	8.8	重要 Network	openwebui	open webui	openwebuiのopen webuiにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-0766	2026-02-2 19:39	2026-01-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
111	7.8	HIGH Local	-	-	An issue in the component DirectIo64.sys of PassMark BurnInTest v11.0 Build 1011, OSForensics v11.1 Build 1007, and PerformanceTest v11.1 Build 1004 allows attackers to access kernel memory and escal… New	CWE-20 CWE-269 Improper Input Validation Improper Privilege Management	CVE-2025-52347	2026-05-2 04:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

112	6.1	MEDIUM Network	dragonexpert	recent_threads_on_index	MyBB Recent threads 17.0 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts by creating threads with crafted subject lines. Attackers can creat… New	CWE-79 Cross-site Scripting	CVE-2018-25309	2026-05-2 04:15	2026-04-30	Show	GitHub Exploit DB Packet Storm

113	7.4	HIGH Network	skim-rs	skim	Skim is a fuzzy finder designed to through files, lines, and commands. The generate-files job in .github/workflows/pr.yml checks out attacker-controlled fork code and executes it via cargo run, with … Update	CWE-94 Code Injection	CVE-2026-41414	2026-05-2 04:03	2026-04-25	Show	GitHub Exploit DB Packet Storm

114	7.5	HIGH Network	wireshark	wireshark	HTTP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-121 Stack-based Buffer Overflow	CVE-2026-6868	2026-05-2 04:01	2026-04-30	Show	GitHub Exploit DB Packet Storm

115	7.5	HIGH Network	wireshark	wireshark	UDS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-7375	2026-05-2 04:00	2026-04-30	Show	GitHub Exploit DB Packet Storm

116	7.5	HIGH Network	wireshark	wireshark	Crash in sharkd 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-476 NULL Pointer Dereference	CVE-2026-7376	2026-05-2 03:59	2026-04-30	Show	GitHub Exploit DB Packet Storm

117	7.5	HIGH Network	wireshark	wireshark	Crash in sharkd 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-122 Heap-based Buffer Overflow	CVE-2026-7378	2026-05-2 03:55	2026-04-30	Show	GitHub Exploit DB Packet Storm

118	7.5	HIGH Network	wireshark	wireshark	Memory leak in sharkd 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-7379	2026-05-2 03:41	2026-04-30	Show	GitHub Exploit DB Packet Storm

119	7.5	HIGH Network	libsndfile_project	libsndfile	An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path (line 241) was fixed with (sf_count_t) cast, but the WAV code path (line 235) and close path (line 167) were not. When … Update	CWE-190 Integer Overflow or Wraparound	CVE-2026-37555	2026-05-2 03:37	2026-04-30	Show	GitHub Exploit DB Packet Storm

120	5.5	MEDIUM Local	wireshark	wireshark	SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-6531	2026-05-2 03:16	2026-04-30	Show	GitHub Exploit DB Packet Storm