Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3291	6.5	警告 Network	Marquitos	mcp-shell	Marquitosのmcp-shellにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2025-61489	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

3292	9.8	緊急 Network	NJHYST	HY511 POE core devices Firmware	NJHYSTのHY511 POE core devices Firmwareにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性	CWE-565 検証および完全性チェックを行っていない Cookie への依存	CVE-2025-65212	2026-01-30 14:13	2026-01-6	Show	GitHub Exploit DB Packet Storm

3293	7.5	重要 Network	OpenAirInterface Software Alliance	OpenAir CN 5G for AMF	OpenAirInterface Software AllianceのOpenAir CN 5G for AMFにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2025-65805	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

3294	7.5	重要 Network	OpenAirInterface Software Alliance	OpenAir CN 5G for AMF	OpenAirInterface Software AllianceのOpenAir CN 5G for AMFにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2025-66786	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

3295	7.5	重要 Network	efforthye	fast-filesystem-mcp	efforthyeのfast-filesystem-mcpにおけるパストラバーサルの脆弱性	CWE-24 パストラバーサル (../filedir)	CVE-2025-67364	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

3296	7.5	重要 Network	Sylphx	Filesystem MCP	SylphxのFilesystem MCPにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2025-67366	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

3297	3.8	低 Network	Eli Hanna	Compress & Upload	Eli HannaのWordPress用Compress & Uploadにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2025-8889	2026-01-30 14:13	2025-09-9	Show	GitHub Exploit DB Packet Storm

3298	5.4	警告 Network	ngsurvey	ngsurvey	ngsurveyにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-15479	2026-01-30 14:13	2026-01-7	Show	GitHub Exploit DB Packet Storm

3299	6.1	警告 Network	WPForms	wpforms	WPFormsのWordPress用wpformsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-36919	2026-01-30 14:13	2026-01-13	Show	GitHub Exploit DB Packet Storm

3300	7.2	重要 Network	4homepages	4images	4homepagesの4imagesにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2022-50806	2026-01-30 14:13	2026-01-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191	-	-	-	In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pd-mapper: Fix element length in servreg_loc_pfr_req_ei It looks element length declared in servreg_loc_pfr_req_ei for… New	-	CVE-2026-43108	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

192	-	-	-	In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstk_pop_sigframe() doesn't check for errors from mmap_… New	-	CVE-2026-43109	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

193	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: validate bsscfg indices in IF events brcmf_fweh_handle_if_event() validates the firmware-provided interface index… New	-	CVE-2026-43110	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

194	-	-	-	In the Linux kernel, the following vulnerability has been resolved: bridge: guard local VLAN-0 FDB helpers against NULL vlan group When CONFIG_BRIDGE_VLAN_FILTERING is not set, br_vlan_group() and … New	-	CVE-2026-43100	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

195	-	-	-	In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefiles_cull() The patch mentioned below changed cachefiles_bury_object() to expe… New	-	CVE-2026-43106	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

196	-	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: roccat: fix use-after-free in roccat_report_event roccat_report_event() iterates over the device->readers list without holdi… New	-	CVE-2026-43111	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

197	-	-	-	In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath When cifs_sanitize_prepath is called with an empty string or a str… New	-	CVE-2026-43112	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

198	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: wl1251: validate packet IDs before indexing tx_frames wl1251_tx_packet_cb() uses the firmware completion ID directly to ind… New	-	CVE-2026-43113	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

199	-	-	-	In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file() If overlay is used on top of btrfs, dentry->d_s… New	-	CVE-2026-43117	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

200	-	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry New test case fails unexpectedly when avx2 matching fun… New	-	CVE-2026-43114	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm