Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190831 8.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-12137 2017-09-19 11:52 2017-08-15 Show GitHub Exploit DB Packet Storm
190832 7.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen における競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2017-12136 2017-09-19 11:52 2017-08-15 Show GitHub Exploit DB Packet Storm
190833 8.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-12135 2017-09-19 11:52 2017-08-15 Show GitHub Exploit DB Packet Storm
190834 8.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-12134 2017-09-19 11:52 2017-08-15 Show GitHub Exploit DB Packet Storm
190835 9.8 緊急
Network 		サムスン - Samsung S4 におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2015-1801 2017-09-19 11:27 2015-09-21 Show GitHub Exploit DB Packet Storm
190836 7.5 重要
Network 		サムスン - Samsung S4 における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2015-1800 2017-09-19 11:27 2015-09-21 Show GitHub Exploit DB Packet Storm
190837 5.4 警告
Network 		Synology Inc. - Synology Photo Station におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-9555 2017-09-19 11:18 2017-08-24 Show GitHub Exploit DB Packet Storm
190838 6.5 警告
Network 		Synology Inc. - Synology DNS Server におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-12074 2017-09-19 11:18 2017-08-23 Show GitHub Exploit DB Packet Storm
190839 8.8 重要
Network 		ZTE - ZTE ADSL ZXV10 W300 モデムにおける証明書・パスワードの管理に関する脆弱性 CWE-255
証明書・パスワード管理 		CVE-2015-7259 2017-09-19 11:06 2015-11-10 Show GitHub Exploit DB Packet Storm
190840 7.5 重要
Network 		ZTE - ZTE ADSL ZXV10 W300 モデムにおけるパスワード管理機能に関する脆弱性 CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み 		CVE-2015-7257 2017-09-19 11:06 2015-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1301 4.6 MEDIUM
Physics 		- - Missing password field masking vulnerability in Hitachi Ops Center Analyzer (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe modules), Hitachi Ops Center Analyzer viewpoint… New CWE-549
 Missing Password Field Masking 		CVE-2026-3314 2026-05-26 16:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1302 3.3 LOW
Local 		- - A security flaw has been discovered in GNU LibreDWG up to 0.14. The affected element is the function match_BLOCK_HEADER of the file dwggrep.c of the component Dwggrep Utility. Performing a manipulati… New CWE-404
CWE-476
 Improper Resource Shutdown or Release
 NULL Pointer Dereference 		CVE-2026-9529 2026-05-26 14:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1303 7.3 HIGH
Network 		- - A vulnerability was identified in itsourcecode Electronic Judging System 1.0. Impacted is an unknown function of the file /admin/delete_judge.php. Such manipulation of the argument judge_id leads to … New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9528 2026-05-26 14:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1304 4.3 MEDIUM
Network 		- - A vulnerability was determined in itsourcecode Electronic Judging System 1.0. This issue affects some unknown processing of the file /admin/judges.php. This manipulation of the argument fname causes … New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-9527 2026-05-26 14:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1305 7.3 HIGH
Network 		- - A vulnerability was found in itsourcecode Electronic Judging System 1.0. This vulnerability affects unknown code of the file /admin/edit_team.php. The manipulation of the argument num_id results in s… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9526 2026-05-26 14:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1306 7.3 HIGH
Network 		- - A vulnerability has been found in itsourcecode Electronic Judging System 1.0. This affects an unknown part of the file /admin/edit_judge.php. The manipulation of the argument judge_id leads to sql in… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9525 2026-05-26 13:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1307 6.3 MEDIUM
Network 		- - A flaw has been found in xianrendzw EasyReport up to 2.0.17.0522_Beta. Affected by this issue is the function execute of the component REST Endpoint. Executing a manipulation of the argument reportPa… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9524 2026-05-26 13:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1308 7.3 HIGH
Network 		- - A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /Subs… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9523 2026-05-26 13:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1309 7.3 HIGH
Network 		- - A security vulnerability has been detected in fraillt bitsery up to 5.2.4. Affected is the function loadFromSharedState in the library include/bitsery/ext/std_smart_ptr.h. Such manipulation leads to … New CWE-20
CWE-1287
 Improper Input Validation 
 Improper Validation of Specified Type of Input 		CVE-2026-9521 2026-05-26 11:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1310 4.3 MEDIUM
Network 		- - A weakness has been identified in blitz-js blitz up to 3.0.2 on GitHub. This impacts an unknown function of the file packages/generator/templates/app/src/app/auth/components/LoginForm.tsx of the comp… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-9520 2026-05-26 11:16 2026-05-26 Show GitHub Exploit DB Packet Storm