Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3641	7.8	重要 Local	BMC Software	Control-m/server	BMC SoftwareのControl-m/serverにおける複数の脆弱性	CWE-214 CWE-522 CWE-532	CVE-2025-48709	2026-02-4 18:41	2025-08-7	Show	GitHub Exploit DB Packet Storm

3642	5.9	警告 Network	Haxx	c-ares	c-aresにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2025-62408	2026-02-4 18:41	2025-12-8	Show	GitHub Exploit DB Packet Storm

3643	9.8	緊急 Network	ブロケードコミュニケーションズシステムズ株式会社	ASCG	ブロケードコミュニケーションズシステムズ株式会社のASCGにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2025-6391	2026-02-4 18:41	2025-07-17	Show	GitHub Exploit DB Packet Storm

3644	5.1	警告 Local	Fanvil Technology Co., Ltd.	X210 Firmware	Fanvil Technology Co., Ltd.のX210 Firmwareにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2025-64052	2026-02-4 18:41	2025-12-5	Show	GitHub Exploit DB Packet Storm

3645	7.5	重要 Network	Fanvil Technology Co., Ltd.	X210 Firmware	Fanvil Technology Co., Ltd.のX210 Firmwareにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2025-64053	2026-02-4 18:41	2025-12-5	Show	GitHub Exploit DB Packet Storm

3646	9.6	緊急 Network	Fanvil Technology Co., Ltd.	X210 Firmware	Fanvil Technology Co., Ltd.のX210 Firmwareにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-64054	2026-02-4 18:41	2025-12-5	Show	GitHub Exploit DB Packet Storm

3647	9.8	緊急 Network	Fanvil Technology Co., Ltd.	X210 Firmware	Fanvil Technology Co., Ltd.のX210 Firmwareにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2025-64055	2026-02-4 18:41	2025-12-3	Show	GitHub Exploit DB Packet Storm

3648	4.3	警告 Adjacent	Fanvil Technology Co., Ltd.	X210 Firmware	Fanvil Technology Co., Ltd.のX210 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2025-64056	2026-02-4 18:41	2025-12-5	Show	GitHub Exploit DB Packet Storm

3649	8.3	重要 Adjacent	Fanvil Technology Co., Ltd.	X210 Firmware	Fanvil Technology Co., Ltd.のX210 Firmwareにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-64057	2026-02-4 18:41	2025-12-5	Show	GitHub Exploit DB Packet Storm

3650	7.5	重要 Network	Argo Workflows project	Argo Workflows	argoprojのArgo Workflowsにおける複数の脆弱性	CWE-23 CWE-59 CWE-78	CVE-2025-66626	2026-02-4 18:41	2025-12-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
431	-		-	-	The torch-checkpoint-shrink.py script in the ml-engineering project in commit 0099885db36a8f06556efe1faf552518852cb1e0 (2025-20-27) contains an insecure deserialization vulnerability (CWE-502). The s… New	-	CVE-2026-31214	2026-05-13 01:16	2026-05-13	Show	GitHub Exploit DB Packet Storm

432	5.4	MEDIUM Network	-	-	A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the File Management module of FluentCMS 1.2.3. The flaw allows an authenticated administrator to upload crafted SVG files containin… New	CWE-79 Cross-site Scripting	CVE-2025-70842	2026-05-13 01:16	2026-05-13	Show	GitHub Exploit DB Packet Storm

433	-		-	-	An insecure direct object reference in MK-Auth 23.01K4.9 allows attackers to access and send support calls for other users via manipulation of the chamado parameter through a crafted GET request. New	-	CVE-2023-30059	2026-05-13 01:16	2026-05-13	Show	GitHub Exploit DB Packet Storm

434	-		-	-	An arbitrary file upload vulnerability in MK-Auth 23.01K4.9 allows attackers to execute arbitrary code via uploading a crafted PHP file. New	-	CVE-2023-27753	2026-05-13 01:16	2026-05-13	Show	GitHub Exploit DB Packet Storm

435	6.5	MEDIUM Local	linuxcontainers	lxc	lxc is a Linux container runtime. In the setuid helper lxc-user-nic, the delete path contains a logic flaw in the find_line() function that allows an unprivileged user to delete OVS-attached network … Update	CWE-863 Incorrect Authorization	CVE-2026-39402	2026-05-13 01:12	2026-05-6	Show	GitHub Exploit DB Packet Storm

436	5.3	MEDIUM Network	torchbox	wagtail	Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, the Documents and Images API incorrectly listed items in private collections. A user with access t… New	CWE-280 Improper Handling of Insufficient Permissions or Privileges	CVE-2026-44201	2026-05-13 00:59	2026-05-12	Show	GitHub Exploit DB Packet Storm

437	6.5	MEDIUM Network	torchbox	wagtail	Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user without the ability to edit a page could access revisions of the page through the revis… New	CWE-280 Improper Handling of Insufficient Permissions or Privileges	CVE-2026-44197	2026-05-13 00:58	2026-05-12	Show	GitHub Exploit DB Packet Storm

438	4.3	MEDIUM Network	torchbox	wagtail	Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user without the ability to edit a page could still access the history report for the page, … New	CWE-280 Improper Handling of Insufficient Permissions or Privileges	CVE-2026-44198	2026-05-13 00:58	2026-05-12	Show	GitHub Exploit DB Packet Storm

439	6.5	MEDIUM Network	torchbox	wagtail	Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user with limited access to form pages could delete submissions to form pages they don't hav… New	CWE-280 Improper Handling of Insufficient Permissions or Privileges	CVE-2026-44199	2026-05-13 00:58	2026-05-12	Show	GitHub Exploit DB Packet Storm

440	6.5	MEDIUM Network	torchbox	wagtail	Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user with limited access to pages could copy a page they don't have access to to an area of … New	CWE-280 Improper Handling of Insufficient Permissions or Privileges	CVE-2026-44200	2026-05-13 00:57	2026-05-12	Show	GitHub Exploit DB Packet Storm