Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192281 9.8 緊急
Network 		GLPI-PROJECT.ORG - GLPI の Conditon ルールフィールドにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-11475 2017-08-8 19:06 2017-07-18 Show GitHub Exploit DB Packet Storm
192282 9.8 緊急
Network 		GLPI-PROJECT.ORG - GLPI の inc/computer_softwareversion.class.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-11474 2017-08-8 19:05 2017-07-18 Show GitHub Exploit DB Packet Storm
192283 8.1 重要
Network 		マイクロソフト - Microsoft Edge におけるリモートでコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2017-0152 2017-08-8 18:10 2017-03-9 Show GitHub Exploit DB Packet Storm
192284 6.5 警告
Network 		SAP - SAP NetWeaver の disp+work におけるサービス運用妨害 (DoS) の脆弱性 CWE-400
リソースの枯渇 		CVE-2017-9845 2017-08-8 17:07 2017-03-14 Show GitHub Exploit DB Packet Storm
192285 9.8 緊急
Network 		SAP - SAP NetWeaver におけるサービス運用妨害 (DoS) の脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2017-9844 2017-08-8 17:07 2017-03-14 Show GitHub Exploit DB Packet Storm
192286 8.8 重要
Network 		MODX - MODX Revolution における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-1000067 2017-08-8 16:55 2017-04-5 Show GitHub Exploit DB Packet Storm
192287 5.4 警告
Network 		IBM - IBM Emptoris Sourcing におけるフィッシング攻撃を実行される脆弱性 CWE-601
オープンリダイレクト 		CVE-2016-8953 2017-08-8 16:51 2016-10-25 Show GitHub Exploit DB Packet Storm
192288 5.4 警告
Network 		IBM - IBM Emptoris Sourcing におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-8948 2017-08-8 16:51 2016-10-25 Show GitHub Exploit DB Packet Storm
192289 6.1 警告
Network 		OpenMediaVault - OpenMediaVault の rpc.php の Access Rights Management(Users) 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-1000065 2017-08-8 16:48 2017-03-17 Show GitHub Exploit DB Packet Storm
192290 9.8 緊急
Network 		The PHP Group - PHP の ext/intl/msgformat/msgformat_parse.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-11362 2017-08-8 16:47 2017-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2221 - - - In the Linux kernel, the following vulnerability has been resolved: nouveau/gsp: drop WARN_ON in ACPI probes These WARN_ONs seem to trigger a lot, and we don't seem to have a plan to fix them, so j… - CVE-2026-43485 2026-05-14 01:16 2026-05-14 Show GitHub Exploit DB Packet Storm
2222 - - - In the Linux kernel, the following vulnerability has been resolved: mmc: core: Avoid bitfield RMW for claim/retune flags Move claimed and retune control flags out of the bitfield word to avoid unre… - CVE-2026-43484 2026-05-14 01:16 2026-05-14 Show GitHub Exploit DB Packet Storm
2223 - - - In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated Explicitly set/clear CR8 write interception when AVIC is (d… - CVE-2026-43483 2026-05-14 01:16 2026-05-14 Show GitHub Exploit DB Packet Storm
2224 - - - In the Linux kernel, the following vulnerability has been resolved: sched_ext: Disable preemption between scx_claim_exit() and kicking helper work scx_claim_exit() atomically sets exit_kind, which … - CVE-2026-43482 2026-05-14 01:16 2026-05-14 Show GitHub Exploit DB Packet Storm
2225 - - - In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp3x-rt5682-max9836: Add missing error check for clock acquisition The acp3x_5682_init() function did not check the r… - CVE-2026-43480 2026-05-14 01:16 2026-05-14 Show GitHub Exploit DB Packet Storm
2226 - - - In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect Remove redundant netif_napi_del() call from disconnect path.… - CVE-2026-43479 2026-05-14 01:16 2026-05-14 Show GitHub Exploit DB Packet Storm
2227 - - - In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: rt1011: Use component to get the dapm context in spk_mode_put The correct helper to use in rt1011_recv_spk_mode_put… - CVE-2026-43478 2026-05-14 01:16 2026-05-14 Show GitHub Exploit DB Packet Storm
2228 - - - In the Linux kernel, the following vulnerability has been resolved: drm/i915/vrr: Configure VRR timings after enabling TRANS_DDI_FUNC_CTL Apparently ICL may hang with an MCE if we write TRANS_VRR_V… - CVE-2026-43477 2026-05-14 01:16 2026-05-14 Show GitHub Exploit DB Packet Storm
2229 5.4 MEDIUM
Network 		openedx openedx Open edX Platform enables the authoring and delivery of online learning at any scale. The HTML sanitizer clean_thread_html_body() used for discussion notification emails fails to remove <style> tags … CWE-79
Cross-site Scripting 		CVE-2026-42857 2026-05-14 01:16 2026-05-12 Show GitHub Exploit DB Packet Storm
2230 8.8 HIGH
Local 		- - Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by s… CWE-15
CWE-269
CWE-732
 External Control of System or Configuration Setting
 Improper Privilege Management
 Incorrect Permission Assignment for Critical Resource 		CVE-2026-41489 2026-05-14 01:16 2026-05-12 Show GitHub Exploit DB Packet Storm