Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190871 8.8 重要
Network 		Zen Cart - Zen Cart におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2017-11675 2017-08-31 19:59 2017-07-26 Show GitHub Exploit DB Packet Storm
190872 7.5 重要
Network 		WP Rocket project - WordPress 用 WP Rocket プラグインにおけるファイルインクルードの脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-11658 2017-08-31 19:59 2017-06-22 Show GitHub Exploit DB Packet Storm
190873 7.5 重要
Network 		TechDivision GmbH - Appserver におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2015-1847 2017-08-31 19:58 2015-03-31 Show GitHub Exploit DB Packet Storm
190874 8.1 重要
Network 		Jasig - phpCAS における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-1000071 2017-08-31 17:15 2017-04-8 Show GitHub Exploit DB Packet Storm
190875 8.1 重要
Network 		Luis Cobian - Cobian Backup における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2017-11318 2017-08-31 15:29 2017-07-17 Show GitHub Exploit DB Packet Storm
190876 7.5 重要
Network 		FineCMS project - FineCMS における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-11178 2017-08-31 15:29 2017-07-11 Show GitHub Exploit DB Packet Storm
190877 8.8 重要
Network 		Chyrp Lite project - Chyrp Lite におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-1000008 2017-08-31 15:29 2017-01-7 Show GitHub Exploit DB Packet Storm
190878 7 重要
Local 		The Foreman
レッドハット		 - Foreman における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2016-4996 2017-08-31 15:29 2016-06-22 Show GitHub Exploit DB Packet Storm
190879 4.7 警告
Local 		OpenLDAP Foundation - openldap-servers における競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2016-4984 2017-08-31 15:29 2016-06-13 Show GitHub Exploit DB Packet Storm
190880 7.5 重要
Network 		Betterment Holdings Inc. - TestTrack サーバにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2017-1000068 2017-08-31 15:24 2017-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
301 6.5 MEDIUM
Network 		fleetdm fleet Fleet is open source device management software. Prior to version 4.81.0, Fleet contained a denial-of-service (DoS) issue in the gRPC Launcher `PublishLogs` endpoint. In affected versions, certain un… New CWE-20
NVD-CWE-noinfo
 Improper Input Validation  		CVE-2026-26062 2026-05-18 23:09 2026-05-15 Show GitHub Exploit DB Packet Storm
302 7.5 HIGH
Network 		netty netty Netty is an asynchronous, event-driven network application framework. From 4.2.0.Final to 4.2.13.Final , Netty's epoll transport fails to detect and close TCP connections that receive a RST after bei… Update CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2026-42577 2026-05-18 23:05 2026-05-14 Show GitHub Exploit DB Packet Storm
303 9.8 CRITICAL
Network 		fleetdm fleet Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet's software installer pipeline could allow a crafted software package to execute arbitrary commands a… New CWE-78
OS Command  		CVE-2026-26191 2026-05-18 23:05 2026-05-15 Show GitHub Exploit DB Packet Storm
304 6.5 MEDIUM
Network 		netty netty Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty's chunk size parser silently overflows int, enabling request smuggling attacks. Th… Update CWE-190
CWE-444
 Integer Overflow or Wraparound
HTTP Request Smuggling 		CVE-2026-42580 2026-05-18 23:03 2026-05-14 Show GitHub Exploit DB Packet Storm
305 5.3 MEDIUM
Network 		mediawiki mediawiki Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Specials/SpecialUserRights.P… Update CWE-200
Information Exposure 		CVE-2026-34093 2026-05-18 22:53 2026-05-12 Show GitHub Exploit DB Packet Storm
306 5.5 MEDIUM
Local 		m2team nanazip NanaZip is an open source file archive. From 5.0.1252.0 to before 6.0.1698.0, an uncontrolled recursion vulnerability exists in the Electron Archive (ASAR) parser in NanaZip. When opening a crafted .… Update CWE-674
 Uncontrolled Recursion 		CVE-2026-42355 2026-05-18 22:52 2026-05-13 Show GitHub Exploit DB Packet Storm
307 5.5 MEDIUM
Local 		m2team nanazip NanaZip is an open source file archive. From 5.0.1252.0 to before 6.0.1698.0, a null-pointer dereference exists in the UFS/UFS2 filesystem image parser in NanaZip. The vulnerability is triggered when… Update CWE-476
 NULL Pointer Dereference 		CVE-2026-42442 2026-05-18 22:51 2026-05-13 Show GitHub Exploit DB Packet Storm
308 3.8 LOW
Network 		mediawiki mediawiki Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Page/Article.Php. This issue affects MediaWiki: from * before 1.43.7, 1.44.4, 1.45.2. Update CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2026-34094 2026-05-18 22:50 2026-05-12 Show GitHub Exploit DB Packet Storm
309 5.5 MEDIUM
Local 		m2team nanazip NanaZip is an open source file archive. From 5.0.1252.0 to before 6.0.1698.0, an integer divide-by-zero exists in the UFS/UFS2 filesystem image parser in NanaZip. The vulnerability is triggered when … Update CWE-369
 Divide By Zero 		CVE-2026-42443 2026-05-18 22:46 2026-05-13 Show GitHub Exploit DB Packet Storm
310 7.5 HIGH
Network 		bytecodealliance wasmtime Wasmtime is a runtime for WebAssembly. From 30.0.0 to 36.0.8, 43.0.2, and 44.0.1, Wasmtime's allocation logic for a WebAssembly table contained checked arithmetic which panicked on overflow. This ove… Update CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-44216 2026-05-18 22:36 2026-05-15 Show GitHub Exploit DB Packet Storm