Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1731 7.5 重要
Network 		Go JOSE project Go JOSE Go JOSE projectのGo JOSEにおけるキャッチされない例外に関する脆弱性 CWE-248
キャッチされない例外 		CVE-2026-34986 2026-05-7 11:27 2026-04-6 Show GitHub Exploit DB Packet Storm
1732 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける関数の戻り値に対する不適切なチェックに関する脆弱性 CWE-253
関数の戻り値に対する不適切なチェック 		CVE-2026-35339 2026-05-7 11:27 2026-04-22 Show GitHub Exploit DB Packet Storm
1733 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける関数の戻り値に対する不適切なチェックに関する脆弱性 CWE-253
関数の戻り値に対する不適切なチェック 		CVE-2026-35340 2026-05-7 11:27 2026-04-22 Show GitHub Exploit DB Packet Storm
1734 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける安全でない一時ファイルに関する脆弱性 CWE-377
安全でない一時ファイル 		CVE-2026-35342 2026-05-7 11:27 2026-04-22 Show GitHub Exploit DB Packet Storm
1735 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける常に不適切な制御フローの実装に関する脆弱性 CWE-670
常に不適切な制御フローの実装 		CVE-2026-35343 2026-05-7 11:27 2026-04-22 Show GitHub Exploit DB Packet Storm
1736 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける未チェックの戻り値に関する脆弱性 CWE-252
未チェックの戻り値 		CVE-2026-35344 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
1737 5.3 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける複数の脆弱性 CWE-367
CWE-59
CVE-2026-35345 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
1738 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-35358 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
1739 6.6 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-35365 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
1740 4.4 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-35366 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1601 6.2 MEDIUM
Local 		- - WordPress Plugin amministrazione-aperta 3.7.3 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting insufficient input validation in the… CWE-22
Path Traversal 		CVE-2022-50956 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1602 6.1 MEDIUM
Network 		- - WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the post_id parameter. Attackers… CWE-79
Cross-site Scripting 		CVE-2022-50958 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1603 6.1 MEDIUM
Network 		- - WordPress Contact Form Builder 1.6.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by exploiting the form_id parameter. Att… CWE-79
Cross-site Scripting 		CVE-2022-50959 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1604 6.1 MEDIUM
Network 		- - WordPress International Sms For Contact Form 7 Integration version 1.2 contains a reflected cross-site scripting vulnerability in the page parameter of the admin settings interface. Attackers can inj… CWE-79
Cross-site Scripting 		CVE-2022-50960 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1605 6.4 MEDIUM
Network 		- - WordPress Plugin IP2Location Country Blocker 2.26.7 contains a stored cross-site scripting vulnerability that allows authenticated users to inject arbitrary JavaScript code through the Frontend Setti… CWE-79
Cross-site Scripting 		CVE-2022-50961 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1606 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the orders/myOrders module. The date_created, date_from, date_to, and created_at parameters in the filter functionality ar… CWE-79
Cross-site Scripting 		CVE-2022-50962 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1607 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/myAuctions/status/active module. The date_created, date_from, date_to, and created_at parameters in the filte… CWE-79
Cross-site Scripting 		CVE-2022-50963 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1608 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/myAuctions/status/loose module. The date_created, date_from, date_to, and created_at parameters in the filter… CWE-79
Cross-site Scripting 		CVE-2022-50964 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1609 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the posts/manage module. The date_created, date_from, date_to, and created_at parameters in the filter functionality are n… CWE-79
Cross-site Scripting 		CVE-2022-50965 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1610 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the news/manage module. The date_created, date_from, date_to, and created_at parameters in the filter functionality are no… CWE-79
Cross-site Scripting 		CVE-2022-50966 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm