Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190271	8.8	重要 Network	ImageMagick	-	ImageMagick におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-14224	2017-10-4 17:05	2017-09-6	Show	GitHub Exploit DB Packet Storm

190272	9.8	緊急 Network	surveys project	-	WordPress 用 surveys プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-1002022	2017-10-4 15:44	2017-05-21	Show	GitHub Exploit DB Packet Storm

190273	9.8	緊急 Network	surveys project	-	WordPress 用 surveys プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-1002021	2017-10-4 15:44	2017-05-21	Show	GitHub Exploit DB Packet Storm

190274	9.8	緊急 Network	eventr project	-	WordPress 用 eventr プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-1002019	2017-10-4 15:44	2017-05-21	Show	GitHub Exploit DB Packet Storm

190275	9.8	緊急 Network	eventr project	-	WordPress 用 eventr プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-1002018	2017-10-4 15:44	2017-05-21	Show	GitHub Exploit DB Packet Storm

190276	7.5	重要 Network	Dtracker project	-	WordPress 用 DTracker プラグインにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2017-1002007	2017-10-4 15:44	2017-03-8	Show	GitHub Exploit DB Packet Storm

190277	7.5	重要 Network	Dtracker project	-	WordPress 用 DTracker プラグインにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2017-1002006	2017-10-4 15:44	2017-03-8	Show	GitHub Exploit DB Packet Storm

190278	7.5	重要 Network	Dtracker project	-	WordPress 用 DTracker プラグインにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-1002005	2017-10-4 15:44	2017-03-8	Show	GitHub Exploit DB Packet Storm

190279	7.5	重要 Network	Dtracker project	-	WordPress 用 DTracker プラグインにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-1002004	2017-10-4 15:44	2017-03-8	Show	GitHub Exploit DB Packet Storm

190280	7.8	重要 Local	MP3Gain	-	MP3Gain における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2017-14412	2017-10-4 14:19	2017-09-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221	5.9	MEDIUM Network	-	-	IBM Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3.7.0, 1.3.7.1, 1.3.7.2, and 1.3.8.0, 1.3.8.1, 1.3.8.2, 1.3.8.3, 1.3.8.4 IBM SmartCloud Analytics - Log… New	CWE-521 Weak Password Requirements	CVE-2024-40684	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

222	7.2	HIGH Network	-	-	IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malicious backup archive that could be restored and used to gain access to the underlying operating syste… New	CWE-530 Exposure of Backup File to an Unauthorized Control Sphere	CVE-2024-56462	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

223	5.4	MEDIUM Network	-	-	IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0, and 12.1.0 are vulnerable to cross-site scripting (XSS). This vulnerability allows a remote attacker to … New	CWE-79 Cross-site Scripting	CVE-2025-3633	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

224	7.1	HIGH Network	-	-	IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service with a specially crafted query when autonomous transactions are enabled. New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-1718	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

225	5.1	MEDIUM Local	-	-	IBM MQ Operator SC2: v3.2.0 through 3.2.23CD: v3.3.0, v3.4.0, v3.4.1, v3.5.0, v3.5.1 - v3.5.3, v3.6.0 - v3.6.4, v3.7.0 - v3.7.2, v3.8.0, v3.8.1, v3.9.0, v3.9.1LTS: v2.0.0 - 2.0.29 and IBM supplied M… New	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2026-2607	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

226	7.5	HIGH Network	-	-	IBM InfoSphere Optim Test Data Fabrication 1.0.0, 1.0.0.1, 1.0.0.2, 1.0.2, 1.0.2.2, 1.0.2.3, 1.0.2.4, 1.0.2.5, 1.0.2.6, 1.0.2.7 could allow a remote attacker to traverse directories on the system. An… New	CWE-22 Path Traversal	CVE-2026-3366	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

227	7.8	HIGH Local	-	-	IBM Netezza Performance Server Replication Services 3.0.2.0 through 3.0.5.0 allows an attacker with low‑privileged access to escalate their privileges to root. By exploiting this flaw, the attacker c… New	CWE-250 Execution with Unnecessary Privileges	CVE-2026-3623	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

228	6.5	MEDIUM Network	-	-	IBM Cloud APM, Base Private 8.1.4 and IBM Cloud APM, Advanced Private 8.1.4 IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) could allow an authenticated user to cause a denial of se… New	CWE-1284 Improper Validation of Specified Quantity in Input	CVE-2026-3676	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

229	8.8	HIGH Network	-	-	IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to… New	CWE-798 Use of Hard-coded Credentials	CVE-2026-5065	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm

230	5.5	MEDIUM Local	-	-	IBM App Connect Enterprise 13.0.1.0 through 13.0.7.0 stores potentially sensitive information in log files that could be read by a local user. New	-	CVE-2026-5515	2026-05-27 23:53	2026-05-27	Show	GitHub Exploit DB Packet Storm