Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2781	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	w30e ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-24428	2026-02-2 19:32	2026-01-26	Show	GitHub Exploit DB Packet Storm

2782	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	w30e ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるデフォルトのパスワードの使用に関する脆弱性	CWE-1393 デフォルトのパスワードの使用	CVE-2026-24429	2026-02-2 19:32	2026-01-26	Show	GitHub Exploit DB Packet Storm

2783	9.8	緊急 Network	libexpat project	libexpat	libexpat projectのlibexpatにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-24515	2026-02-2 19:32	2026-01-23	Show	GitHub Exploit DB Packet Storm

2784	6.5	警告 Network	Discourse	Discourse	Discourseにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-24742	2026-02-2 19:32	2026-01-28	Show	GitHub Exploit DB Packet Storm

2785	8.8	重要 Network	Linux Foundation	pytorch	Linux Foundationのpytorchにおける複数の脆弱性	CWE-502 CWE-94	CVE-2026-24747	2026-02-2 19:32	2026-01-27	Show	GitHub Exploit DB Packet Storm

2786	9.8	緊急 Network	infiniflow	ragflow	infiniflowのragflowにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-24770	2026-02-2 19:32	2026-01-27	Show	GitHub Exploit DB Packet Storm

2787	7.1	重要 Network	vLLM	vLLM	vLLMにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-24779	2026-02-2 19:32	2026-01-27	Show	GitHub Exploit DB Packet Storm

2788	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-24868	2026-02-2 19:32	2026-01-27	Show	GitHub Exploit DB Packet Storm

2789	8.1	重要 Network	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-24869	2026-02-2 19:31	2026-01-27	Show	GitHub Exploit DB Packet Storm

2790	8.2	重要 Network	ThemeMove	SmilePure	ThemeMoveのWordPress用SmilePureにおけるPHP リモートファイルインクルージョンの脆弱性	CWE-98 PHP リモートファイルインクルージョン	CVE-2025-58958	2026-02-2 19:31	2025-10-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
531	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() In tpacket_snd(), when PACKET_VNET_HDR is enabled, vnet_hdr point…	-	CVE-2026-31700	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

532	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed When retrieving the PEK CSR, don't attempt to copy the …	-	CVE-2026-31699	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

533	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed When retrieving the PDH cert, don't attempt to cop…	-	CVE-2026-31698	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

534	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed When retrieving the ID for the CPU, don't attempt to cop…	-	CVE-2026-31697	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

535	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: virt_wifi: remove SET_NETDEV_DEV to avoid use-after-free Currently we execute `SET_NETDEV_DEV(dev, &priv->lowerdev->dev)` f…	-	CVE-2026-31695	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

536	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuse_add_dirent_to_cache() computes a serialized dirent size from the server-control…	-	CVE-2026-31694	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

537	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on replay In several places in the code, we have a label to signify the start of the code wher…	-	CVE-2026-31693	2026-05-3 16:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

538	6.5	MEDIUM Network	-	-	A security vulnerability has been detected in jsbroks COCO Annotator up to 0.11.1. Affected by this vulnerability is an unknown functionality of the file backend/webserver/api/datasets.py of the comp…	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-7681	2026-05-3 15:15	2026-05-3	Show	GitHub Exploit DB Packet Storm

539	4.3	MEDIUM Network	-	-	A weakness has been identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown function of the file backend/webserver/api/datasets.py of the component Data Endpoint. Executing a manipu…	CWE-22 Path Traversal	CVE-2026-7680	2026-05-3 15:15	2026-05-3	Show	GitHub Exploit DB Packet Storm

540	7.2	HIGH Network	-	-	The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via POST parameter key names in the submit_nex_form() function in versions up to,…	CWE-79 Cross-site Scripting	CVE-2026-5063	2026-05-3 15:15	2026-05-3	Show	GitHub Exploit DB Packet Storm