Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
551	8.8	重要 Network	TOTOLINK	nr1800x ファームウェア	TOTOLINKのnr1800x ファームウェアにおける複数の脆弱性	CWE-119 CWE-120	CVE-2026-1328	2026-02-2 19:37	2026-01-22	Show	GitHub Exploit DB Packet Storm

552	4.2	警告 Physics	Beetel	Beetel 777VR1 ファームウェア	BeetelのBeetel 777VR1 ファームウェアにおける複数の脆弱性	CWE-200 CWE-284	CVE-2026-1407	2026-02-2 19:37	2026-01-25	Show	GitHub Exploit DB Packet Storm

553	4.2	警告 Physics	Beetel	Beetel 777VR1 ファームウェア	BeetelのBeetel 777VR1 ファームウェアにおける脆弱なパスワードの要求に関する脆弱性	CWE-521 脆弱なパスワードポリシー	CVE-2026-1408	2026-02-2 19:37	2026-01-25	Show	GitHub Exploit DB Packet Storm

554	4.2	警告 Physics	Beetel	Beetel 777VR1 ファームウェア	BeetelのBeetel 777VR1 ファームウェアにおける複数の脆弱性	CWE-307 CWE-799	CVE-2026-1409	2026-02-2 19:37	2026-01-26	Show	GitHub Exploit DB Packet Storm

555	6.4	警告 Physics	Beetel	Beetel 777VR1 ファームウェア	BeetelのBeetel 777VR1 ファームウェアにおける複数の脆弱性	CWE-287 CWE-306	CVE-2026-1410	2026-02-2 19:37	2026-01-26	Show	GitHub Exploit DB Packet Storm

556	6.1	警告 Physics	Beetel	Beetel 777VR1 ファームウェア	BeetelのBeetel 777VR1 ファームウェアにおける複数の脆弱性	CWE-266 CWE-284	CVE-2026-1411	2026-02-2 19:37	2026-01-26	Show	GitHub Exploit DB Packet Storm

557	9.8	緊急 Network	Sangfor Technologies	OSM	Sangfor TechnologiesのOSMにおける複数の脆弱性	CWE-74 CWE-77 CWE-77	CVE-2026-1412	2026-02-2 19:37	2026-01-26	Show	GitHub Exploit DB Packet Storm

558	9.8	緊急 Network	Sangfor Technologies	OSM	Sangfor TechnologiesのOSMにおける複数の脆弱性	CWE-74 CWE-77 CWE-77	CVE-2026-1413	2026-02-2 19:37	2026-01-26	Show	GitHub Exploit DB Packet Storm

559	9.8	緊急 Network	Sangfor Technologies	OSM	Sangfor TechnologiesのOSMにおける複数の脆弱性	CWE-74 CWE-77 CWE-77	CVE-2026-1414	2026-02-2 19:37	2026-01-26	Show	GitHub Exploit DB Packet Storm

560	7.2	重要 Network	D-Link Systems, Inc.	DIR-615 ファームウェア	D-Link CorporationのDIR-615 ファームウェアにおける複数の脆弱性	CWE-77 CWE-77 CWE-78	CVE-2026-1505	2026-02-2 19:37	2026-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291	7.5	HIGH Network	-	-	Hard-coded ASP.NET/IIS machineKey value in Digital Knowledge KnowledgeDeliver deployments prior to February 24, 2026 allows adversaries to circumvent ViewState validation mechanisms and achieve remot…	CWE-321 CWE-502 Use of Hard-coded Cryptographic Key Deserialization of Untrusted Data	CVE-2026-5426	2026-04-18 13:16	2026-04-17	Show	GitHub Exploit DB Packet Storm

292	7.5	HIGH Network	-	-	libexpat before 2.7.6 uses insufficient entropy, and thus hash flooding can occur via a crafted XML document.	CWE-331 Insufficient Entropy	CVE-2026-41080	2026-04-18 13:16	2026-04-17	Show	GitHub Exploit DB Packet Storm

293	6.5	MEDIUM Adjacent	-	-	An issue in the Bluetooth Low Energy (BLE) control interface of the Yamaha SR-B30A sound bar firmware 2.40 (Mobile App: Sound Bar Remote / version: 2.40) allows remote attackers within BLE radio rang…	CWE-284 Improper Access Control	CVE-2026-37100	2026-04-18 13:16	2026-04-17	Show	GitHub Exploit DB Packet Storm

294	6.5	MEDIUM Network	-	-	gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP…	CWE-22 Path Traversal	CVE-2026-40491	2026-04-18 12:16	2026-04-18	Show	GitHub Exploit DB Packet Storm

295	7.2	HIGH Network	-	-	SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/manage_location.php.	CWE-89 SQL Injection	CVE-2026-37344	2026-04-18 12:16	2026-04-17	Show	GitHub Exploit DB Packet Storm

296	7.2	HIGH Network	-	-	SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/manage_user.php.	CWE-89 SQL Injection	CVE-2026-37343	2026-04-18 12:16	2026-04-17	Show	GitHub Exploit DB Packet Storm

297	7.2	HIGH Network	-	-	SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/view_parked_details.php.	CWE-89 SQL Injection	CVE-2026-37342	2026-04-18 12:16	2026-04-17	Show	GitHub Exploit DB Packet Storm

298	7.2	HIGH Network	-	-	SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL Injection in the file /parking/manage_category.php.	CWE-89 SQL Injection	CVE-2026-37341	2026-04-18 12:16	2026-04-17	Show	GitHub Exploit DB Packet Storm

299	9.8	CRITICAL Network	-	-	SourceCodester Simple Music Cloud Community System v1.0 is vulnerable to SQL Injection in the file /music/edit_music.php.	CWE-89 SQL Injection	CVE-2026-37340	2026-04-18 12:16	2026-04-17	Show	GitHub Exploit DB Packet Storm

300	9.8	CRITICAL Network	-	-	SourceCodester Simple Music Cloud Community System v1.0 is vulnerable to SQL Injection in the file /music/view_genre.php.	CWE-89 SQL Injection	CVE-2026-37339	2026-04-18 12:16	2026-04-17	Show	GitHub Exploit DB Packet Storm