Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193031 6.5 警告
Network 		libquicktime - libquicktime の moov.c の quicktime_read_moov 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-9122 2017-07-5 16:38 2017-06-9 Show GitHub Exploit DB Packet Storm
193032 7.5 重要
Network 		IBM - IBM Tivoli Federated Identity Manager における暗号強度に関する脆弱性 CWE-326
不適切な暗号強度 		CVE-2017-1319 2017-07-5 16:32 2017-05-11 Show GitHub Exploit DB Packet Storm
193033 5.9 警告
Network 		IBM - IBM BigFix Compliance Analytics における暗号強度に関する脆弱性 CWE-326
不適切な暗号強度 		CVE-2017-1179 2017-07-5 16:32 2017-06-6 Show GitHub Exploit DB Packet Storm
193034 7.8 重要
Local 		Ansible - Ansible の複数のプラグインにおける制限された環境をエスケープされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2015-6240 2017-07-5 16:28 2015-06-20 Show GitHub Exploit DB Packet Storm
193035 6.1 警告
Network 		ソフォス - Sophos Web Appliance の FTP リダイレクトページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-9523 2017-07-5 16:24 2017-06-8 Show GitHub Exploit DB Packet Storm
193036 5.5 警告
Local 		MongoDB Inc. - Red Hat Satellite 6 上で稼動する MongoDB における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2014-8180 2017-07-5 15:58 2014-10-10 Show GitHub Exploit DB Packet Storm
193037 6.1 警告
Network 		flatCore - flatCore の pages.edit_form.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-9451 2017-07-5 15:58 2017-06-7 Show GitHub Exploit DB Packet Storm
193038 9.8 緊急
Network 		GNU Project - GNU C Library の nscd におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2014-9984 2017-07-5 15:55 2014-03-12 Show GitHub Exploit DB Packet Storm
193039 5.4 警告
Network 		BigTree CMS - BigTree の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-9548 2017-07-5 15:55 2017-06-11 Show GitHub Exploit DB Packet Storm
193040 5.4 警告
Network 		BigTree CMS - BigTree の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-9547 2017-07-5 15:55 2017-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2061 6.2 MEDIUM
Local 		- - WordPress Plugin cab-fare-calculator 1.0.3 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the controller parameter in tbli… CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2022-50954 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2062 4.3 MEDIUM
Network 		- - WordPress Plugin Curtain 1.0.2 contains a cross-site request forgery vulnerability that allows attackers to activate or deactivate site maintenance mode by crafting malicious requests. Attackers can … CWE-352
 Origin Validation Error 		CVE-2022-50955 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2063 6.2 MEDIUM
Local 		- - WordPress Plugin amministrazione-aperta 3.7.3 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting insufficient input validation in the… CWE-22
Path Traversal 		CVE-2022-50956 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2064 6.1 MEDIUM
Network 		- - WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the post_id parameter. Attackers… CWE-79
Cross-site Scripting 		CVE-2022-50958 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2065 6.1 MEDIUM
Network 		- - WordPress Contact Form Builder 1.6.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by exploiting the form_id parameter. Att… CWE-79
Cross-site Scripting 		CVE-2022-50959 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2066 6.1 MEDIUM
Network 		- - WordPress International Sms For Contact Form 7 Integration version 1.2 contains a reflected cross-site scripting vulnerability in the page parameter of the admin settings interface. Attackers can inj… CWE-79
Cross-site Scripting 		CVE-2022-50960 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2067 6.4 MEDIUM
Network 		- - WordPress Plugin IP2Location Country Blocker 2.26.7 contains a stored cross-site scripting vulnerability that allows authenticated users to inject arbitrary JavaScript code through the Frontend Setti… CWE-79
Cross-site Scripting 		CVE-2022-50961 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2068 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the orders/myOrders module. The date_created, date_from, date_to, and created_at parameters in the filter functionality ar… CWE-79
Cross-site Scripting 		CVE-2022-50962 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2069 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/myAuctions/status/active module. The date_created, date_from, date_to, and created_at parameters in the filte… CWE-79
Cross-site Scripting 		CVE-2022-50963 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2070 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/myAuctions/status/loose module. The date_created, date_from, date_to, and created_at parameters in the filter… CWE-79
Cross-site Scripting 		CVE-2022-50964 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm