Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3581	8.1	重要 Network	Qode Interactive	Lekker	Qode InteractiveのWordPress用LekkerにおけるPHP リモートファイルインクルージョンの脆弱性	CWE-98 PHP リモートファイルインクルージョン	CVE-2025-69034	2026-02-2 19:30	2025-12-30	Show	GitHub Exploit DB Packet Storm

3582	5.4	警告 Network	remyandrade	Domain Availability Checker Using PHP and JavaScript with Source Code	Remy AndradeのDomain Availability Checker Using PHP and JavaScript with Source Codeにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-70458	2026-02-2 19:30	2026-01-23	Show	GitHub Exploit DB Packet Storm

3583	6.1	警告 Network	fahadmahmood	External Store for Shopify	fahadmahmoodのWordPress用External Store for Shopifyにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-7808	2026-02-2 19:29	2025-08-14	Show	GitHub Exploit DB Packet Storm

3584	9.8	緊急 Network	Cockroach Labs	cockroach-k8s-request-cert	Cockroach Labsのcockroach-k8s-request-certにおける設定ファイル内の空のパスワードに関する脆弱性	CWE-258 設定ファイル内に空のパスワード	CVE-2025-9276	2026-02-2 19:29	2025-09-2	Show	GitHub Exploit DB Packet Storm

3585	7.5	重要 Network	lfprojects	MCP TypeScript SDK	lfprojectsのMCP TypeScript SDKにおける非効率的な正規表現の複雑さに関する脆弱性	CWE-1333 非効率的な正規表現の複雑さ	CVE-2026-0621	2026-02-2 19:29	2026-01-5	Show	GitHub Exploit DB Packet Storm

3586	7.5	重要 Network	TOTOLINK	WA1200-PoE Firmware WA1200-PoE	TOTOLINK等の複数ベンダの製品における複数の脆弱性	CWE-404 CWE-476 CWE-476	CVE-2026-0731	2026-02-2 19:29	2026-01-8	Show	GitHub Exploit DB Packet Storm

3587	7.8	重要 Local	Google	SentencePiece	GoogleのSentencePieceにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-1260	2026-02-2 19:29	2026-01-22	Show	GitHub Exploit DB Packet Storm

3588	7.2	重要 Network	D-Link Systems, Inc.	DCS-700L Firmware	D-Link CorporationのDCS-700L Firmwareにおける複数の脆弱性	CWE-74 CWE-77 CWE-77	CVE-2026-1419	2026-02-2 19:29	2026-01-26	Show	GitHub Exploit DB Packet Storm

3589	6.5	警告 Adjacent	UI	UniFi Connect EV Station Lite Firmware	UIのUniFi Connect EV Station Lite Firmwareにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-21635	2026-02-2 19:29	2026-01-5	Show	GitHub Exploit DB Packet Storm

3590	8.2	重要 Network	Shopify	Remix React Router	ShopifyのReact Router等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-21884	2026-02-2 19:29	2026-01-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix DMA corruption on long hmac keys When a key longer than block size is supplied, it is copied and then hashed i… Update	NVD-CWE-noinfo	CVE-2026-43044	2026-05-9 03:58	2026-05-2	Show	GitHub Exploit DB Packet Storm

2	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: crypto: af-alg - fix NULL pointer dereference in scatterwalk The AF_ALG interface fails to unmark the end of a Scatter/Gather Lis… Update	CWE-476 NULL Pointer Dereference	CVE-2026-43043	2026-05-9 03:57	2026-05-2	Show	GitHub Exploit DB Packet Storm

3	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platform_label{,s} pair The RCU-protected codepaths (mpls_forward, mpls_dump_routes) can have a… Update	CWE-125 Out-of-bounds Read	CVE-2026-43042	2026-05-9 03:55	2026-05-2	Show	GitHub Exploit DB Packet Storm

4	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: qrtr: replace qrtr_tx_flow radix_tree with xarray to fix memory leak __radix_tree_create() allocates and links intermediate … Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-43041	2026-05-9 03:54	2026-05-2	Show	GitHub Exploit DB Packet Storm

5	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak When processing Router… Update	CWE-909 Missing Initialization of Resource	CVE-2026-43040	2026-05-9 03:53	2026-05-2	Show	GitHub Exploit DB Packet Storm

6	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: auxdisplay: line-display: fix NULL dereference in linedisp_release linedisp_release() currently retrieves the enclosing struct li… Update	CWE-476 NULL Pointer Dereference	CVE-2026-31753	2026-05-9 03:52	2026-05-2	Show	GitHub Exploit DB Packet Storm

7	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: gadget: fix state inconsistency on gadget init failure When cdns3_gadget_start() fails, the DRD hardware is left in g… Update	NVD-CWE-noinfo	CVE-2026-31754	2026-05-9 03:49	2026-05-2	Show	GitHub Exploit DB Packet Storm

8	9.8	CRITICAL Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch emac_dispatch_skb_zc() allocates a new skb via n… Update	NVD-CWE-noinfo	CVE-2026-43039	2026-05-9 03:48	2026-05-2	Show	GitHub Exploit DB Packet Storm

9	9.8	CRITICAL Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() Sashiko AI-review observed: In ip6_err_gen_icmpv6_unreach(), the … Update	NVD-CWE-noinfo	CVE-2026-43038	2026-05-9 03:47	2026-05-2	Show	GitHub Exploit DB Packet Storm

10	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: gadget: fix NULL pointer dereference in ep_queue When the gadget endpoint is disabled or not yet configured, the ep->… Update	CWE-476 NULL Pointer Dereference	CVE-2026-31755	2026-05-9 03:45	2026-05-2	Show	GitHub Exploit DB Packet Storm