Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191981	7.8	重要 Local	独立行政法人情報処理推進機構 (IPA)	-	安全なウェブサイト運営入門における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2017-2128	2017-06-1 15:06	2017-03-16	Show	GitHub Exploit DB Packet Storm

191982	5.4	警告 Network	YOP	-	WordPress 用プラグイン YOP Poll におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-2127	2017-06-1 15:06	2017-03-23	Show	GitHub Exploit DB Packet Storm

191983	6.1	警告 Network	SpiQeソフトウェア	-	OneThird CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-2124	2017-06-1 15:06	2017-03-7	Show	GitHub Exploit DB Packet Storm

191984	4.3	警告 Network	サイボウズ	-	サイボウズガルーンのメール機能におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-2095	2017-06-1 15:03	2017-02-20	Show	GitHub Exploit DB Packet Storm

191985	4.3	警告 Network	サイボウズ	-	サイボウズガルーンのワークフローおよびマルチレポート機能におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-2094	2017-06-1 15:03	2017-02-20	Show	GitHub Exploit DB Packet Storm

191986	4.3	警告 Network	サイボウズ	-	サイボウズガルーンにおける情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2017-2093	2017-06-1 15:03	2017-02-20	Show	GitHub Exploit DB Packet Storm

191987	5.4	警告 Network	サイボウズ	-	サイボウズガルーンにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-2092	2017-06-1 15:03	2017-02-20	Show	GitHub Exploit DB Packet Storm

191988	4.3	警告 Network	サイボウズ	-	サイボウズガルーンの電話メモ機能におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-2091	2017-06-1 15:03	2017-02-20	Show	GitHub Exploit DB Packet Storm

191989	6.3	警告 Network	サイボウズ	-	サイボウズガルーンにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-2090	2017-06-1 15:03	2017-02-20	Show	GitHub Exploit DB Packet Storm

191990	6.8	警告 Adjacent	バッファロー	-	WNC01WH における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2017-2152	2017-06-1 13:51	2017-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
41	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths During code review, Joseph found that ext4_fc_replay_inode() calls e… New	-	CVE-2026-43066	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

42	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: always drain queued discard work in ext4_mb_release() While reviewing recent ext4 patch[1], Sashiko raised the following co… New	-	CVE-2026-43065	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

43	-		-	-	In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix not releasing workqueue on .release() The workqueue associated with an DSA/IAA device is not released when t… New	-	CVE-2026-43064	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

44	-		-	-	In the Linux kernel, the following vulnerability has been resolved: xfs: don't irele after failing to iget in xfs_attri_recover_work xlog_recovery_iget* never set @ip to a valid pointer if they ret… New	-	CVE-2026-43063	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

45	-		-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix type confusion in l2cap_ecred_reconf_rsp() l2cap_ecred_reconf_rsp() casts the incoming data to struct l2cap… New	-	CVE-2026-43062	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

46	-		-	-	In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix TX deadlock when using DMA `dmaengine_terminate_async` does not guarantee that the `__dma_tx_complete` callback… New	-	CVE-2026-43061	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

47	-		-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: drop pending enqueued packets on removal Packets sitting in nfqueue might hold a reference to: - templates th… New	-	CVE-2026-43060	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

48	-		-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix list corruption and UAF in command complete handlers Commit 302a1f674c00 ("Bluetooth: MGMT: Fix possible UAF… New	-	CVE-2026-43059	2026-05-6 01:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

49	7.5	HIGH Network	-	-	OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP AbstractModelReader Versions Affected: before 2.5.9 before 3.0.0-M3 Description: The AbstractModelReader methods getOut… New	CWE-789 Memory Allocation with Excessive Size Value	CVE-2026-42440	2026-05-6 01:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

50	-		-	-	Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, nginx-ui exposes a backup restore endpoint (POST /api/restore) that is completely unauthenticated during the first 1… New	CWE-94 Code Injection	CVE-2026-42238	2026-05-6 01:16	2026-05-5	Show	GitHub Exploit DB Packet Storm