Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3031 7.8 重要
Local 		WOW 21 WOW 21 WOW 21における引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2022-50921 2026-02-2 19:21 2026-01-13 Show GitHub Exploit DB Packet Storm
3032 9.8 緊急
Network 		Prowise Prowise Reflect ProwiseのProwise Reflectにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2022-50925 2026-02-2 19:21 2026-01-13 Show GitHub Exploit DB Packet Storm
3033 7.8 重要
Local 		IVT Corporation BlueSoleilCS IVT CorporationのBlueSoleilCSにおける引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2022-50928 2026-02-2 19:21 2026-01-13 Show GitHub Exploit DB Packet Storm
3034 7.8 重要
Local 		Malavida Cain & Abel MalavidaのCain & Abelにおける引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2022-50933 2026-02-2 19:20 2026-01-13 Show GitHub Exploit DB Packet Storm
3035 7.1 重要
Network 		Rock Lobster Contact Form 7 BestWebSoftのWordPress用Contact Form 7におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-45771 2026-02-2 19:20 2024-03-26 Show GitHub Exploit DB Packet Storm
3036 7.8 重要
Local 		SOUND4 Ltd. BIG VOICE Firmware
IP Connect Firmware
VOICE ULA2 Firmware
STREAM x4 Firmware
STREAM x8 Firmware
STREAM x2 Firmware
WM2&n… 		SOUND4 Ltd.のBIG VOICE Firmware等の複数製品における引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2023-53965 2026-02-2 19:20 2025-12-22 Show GitHub Exploit DB Packet Storm
3037 5.5 警告
Local 		AimOne Soft Inc AIMONE Video Converter AimOne Soft IncのAIMONE Video Converterにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2023-54328 2026-02-2 19:20 2026-01-13 Show GitHub Exploit DB Packet Storm
3038 9.8 緊急
Network 		Inbit Inbit Messenger InbitのInbit Messengerにおける複数の脆弱性 CWE-121
CWE-787
CVE-2023-54329 2026-02-2 19:20 2026-01-13 Show GitHub Exploit DB Packet Storm
3039 9.8 緊急
Network 		Inbit Inbit Messenger InbitのInbit Messengerにおける複数の脆弱性 CWE-121
CWE-787
CVE-2023-54330 2026-02-2 19:20 2026-01-13 Show GitHub Exploit DB Packet Storm
3040 8.8 重要
Adjacent 		ネットギア DGN1000WW Firmware ネットギアのDGN1000WW Firmwareにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2024-42756 2026-02-2 19:20 2024-08-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
11 7.3 HIGH
Network 		- - A flaw has been found in Acrel Electrical ECEMS Enterprise Microgrid Energy Efficiency Management System 1.3.0. The impacted element is an unknown function of the file /SubstationWEBV2/main/elecMaxMi… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7694 2026-05-3 21:15 2026-05-3 Show GitHub Exploit DB Packet Storm
12 6.3 MEDIUM
Network 		- - A vulnerability was detected in Wavlink WL-WN570HA1 R70HA1 V1410_221110. The affected element is the function ping_ddns of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument DDNS re… New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7692 2026-05-3 20:16 2026-05-3 Show GitHub Exploit DB Packet Storm
13 6.3 MEDIUM
Network 		- - A security vulnerability has been detected in Wavlink WL-WN570HA1 R70HA1 V1410_221110. Impacted is the function set_sys_cmd of the file /cgi-bin/adm.cgi. Such manipulation of the argument command lea… New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7691 2026-05-3 20:16 2026-05-3 Show GitHub Exploit DB Packet Storm
14 6.3 MEDIUM
Network 		- - A weakness has been identified in Wavlink WL-WN570HA1 R70HA1 V1410_221110. This issue affects the function set_sys_adm of the file /cgi-bin/adm.cgi. This manipulation of the argument Username causes … New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7690 2026-05-3 19:16 2026-05-3 Show GitHub Exploit DB Packet Storm
15 3.7 LOW
Network 		- - A security flaw has been discovered in Dolibarr ERP CRM up to 23.0.2. This vulnerability affects the function dol_verifyHash in the library htdocs/core/lib/security.lib.php of the component Online Si… New CWE-345
CWE-347
 Insufficient Verification of Data Authenticity
 Improper Verification of Cryptographic Signature 		CVE-2026-7689 2026-05-3 19:16 2026-05-3 Show GitHub Exploit DB Packet Storm
16 5.0 MEDIUM
Network 		- - A vulnerability was identified in Dolibarr ERP CRM up to 23.0.2. This affects the function _checkValForAPI of the file htdocs/expedition/class/expedition.class.php of the component Shipments API Endp… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7688 2026-05-3 19:16 2026-05-3 Show GitHub Exploit DB Packet Storm
17 6.3 MEDIUM
Network 		- - A vulnerability was determined in langflow-ai langflow up to 1.8.4. Affected by this issue is the function CodeParser.parse_callable_details of the file src/lfx/src/lfx/custom/code_parser/code_parser… New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7687 2026-05-3 18:16 2026-05-3 Show GitHub Exploit DB Packet Storm
18 5.3 MEDIUM
Network 		- - A vulnerability was found in eyeo Adblock Plus up to 4.36.2 on Chrome. Affected by this vulnerability is the function postMessage of the file premium.preload.js of the component Legacy Premium Activa… New CWE-266
CWE-284
 Incorrect Privilege Assignment
Improper Access Control 		CVE-2026-7686 2026-05-3 17:16 2026-05-3 Show GitHub Exploit DB Packet Storm
19 8.8 HIGH
Network 		- - A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpDfGateway  results in buffer ove… New CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-7685 2026-05-3 16:16 2026-05-3 Show GitHub Exploit DB Packet Storm
20 8.8 HIGH
Network 		- - A security vulnerability has been detected in Edimax BR-6428nC up to 1.16. This impacts an unknown function of the file /goform/setWAN. Such manipulation of the argument pptpDfGateway  leads to buffe… New CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-7684 2026-05-3 16:16 2026-05-3 Show GitHub Exploit DB Packet Storm