Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193201 6.1 警告
Network 		WP Statistics - WordPress 用プラグイン WP Statistics におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-2147 2017-06-1 13:51 2017-04-13 Show GitHub Exploit DB Packet Storm
193202 8.8 重要
Adjacent 		株式会社アイ・オー・データ機器 - WN-G300R3 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-2142 2017-06-1 13:51 2017-04-10 Show GitHub Exploit DB Packet Storm
193203 5 警告
Network 		株式会社アイ・コン - 風神ビュアーにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-2155 2017-06-1 13:40 2017-04-20 Show GitHub Exploit DB Packet Storm
193204 7.8 重要
Local 		ジャストシステム - 花子を含む複数の製品における任意の DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2017-2154 2017-06-1 13:40 2017-04-20 Show GitHub Exploit DB Packet Storm
193205 6.1 警告
Network 		SpiQeソフトウェア - OneThird CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-2123 2017-06-1 12:26 2017-03-7 Show GitHub Exploit DB Packet Storm
193206 4.7 警告
Network 		WBCE Team - WBCE CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-2120 2017-06-1 12:26 2017-02-28 Show GitHub Exploit DB Packet Storm
193207 5.8 警告
Network 		WBCE Team - WBCE CMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-2119 2017-06-1 12:26 2017-02-28 Show GitHub Exploit DB Packet Storm
193208 6.1 警告
Network 		WBCE Team - WBCE CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-2118 2017-06-1 12:26 2017-02-28 Show GitHub Exploit DB Packet Storm
193209 4.1 警告
Network 		CubeCart Limited - CubeCart におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-2117 2017-06-1 11:34 2017-02-28 Show GitHub Exploit DB Packet Storm
193210 5.4 警告
Network 		サイボウズ - サイボウズ Office のカスタムアプリのテンプレート削除機能におけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-2116 2017-06-1 11:34 2017-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1521 7.7 HIGH
Network 		openclaw openclaw OpenClaw versions 2026.4.7 before 2026.4.10 fail to normalize Discord event cover image parameters in sandbox media processing. Attackers can bypass media normalization to inject host-local media ref… CWE-184
 Incomplete Blacklist 		CVE-2026-43532 2026-05-7 10:54 2026-05-5 Show GitHub Exploit DB Packet Storm
1522 8.6 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.10 contains an arbitrary file read vulnerability in QQBot media tags that allows attackers to reference host-local paths outside the intended media storage boundary. Attackers … CWE-23
 Relative Path Traversal 		CVE-2026-43533 2026-05-7 10:53 2026-05-5 Show GitHub Exploit DB Packet Storm
1523 9.8 CRITICAL
Network 		openclaw openclaw OpenClaw before 2026.4.10 contains an input validation vulnerability that allows external hook metadata to be enqueued as trusted system events. Attackers can supply malicious hook names to escalate … CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2026-43534 2026-05-7 10:53 2026-05-5 Show GitHub Exploit DB Packet Storm
1524 9.8 CRITICAL
Network 		openclaw openclaw OpenClaw versions 2026.4.7 before 2026.4.14 contain a privilege escalation vulnerability where heartbeat owner downgrade logic skips webhook wake events carrying untrusted content. Attackers can expl… CWE-184
 Incomplete Blacklist 		CVE-2026-43566 2026-05-7 10:53 2026-05-5 Show GitHub Exploit DB Packet Storm
1525 6.5 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.4.10 contains a path traversal vulnerability in the screen_record tool's outPath parameter that bypasses workspace-only filesystem guards. Attackers can exploit this by specifyin… CWE-862
 Missing Authorization 		CVE-2026-43567 2026-05-7 10:52 2026-05-5 Show GitHub Exploit DB Packet Storm
1526 6.5 MEDIUM
Network 		openclaw openclaw OpenClaw versions 2026.4.5 before 2026.4.10 contain a privilege escalation vulnerability allowing write-scoped operators to modify persistent memory dreaming settings. Attackers with write-scoped gat… CWE-862
 Missing Authorization 		CVE-2026-43568 2026-05-7 10:52 2026-05-5 Show GitHub Exploit DB Packet Storm
1527 8.8 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.9 contains an authentication bypass vulnerability allowing untrusted workspace plugins to be auto-enabled during non-interactive onboarding when provider auth choices are shado… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2026-43569 2026-05-7 10:52 2026-05-5 Show GitHub Exploit DB Packet Storm
1528 4.3 MEDIUM
Network 		open5gs open5gs A vulnerability was determined in Open5GS up to 2.7.7. The impacted element is the function amf_nudm_sdm_handle_provisioned of the file /src/amf/nudm-handler.c of the component AMF. Executing a manip… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-7585 2026-05-7 10:47 2026-05-2 Show GitHub Exploit DB Packet Storm
1529 4.3 MEDIUM
Network 		open5gs open5gs A weakness has been identified in Open5GS up to 2.7.7. Affected is the function ogs_id_get_value of the file /src/amf/nudm-handler.c of the component AMF. This manipulation causes denial of service. … CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-7586 2026-05-7 10:47 2026-05-2 Show GitHub Exploit DB Packet Storm
1530 4.3 MEDIUM
Network 		open5gs open5gs A vulnerability has been found in Open5GS up to 2.7.7. This vulnerability affects the function amf_nsmf_pdusession_handle_update_sm_context of the file /src/amf/nsmf-handler.c of the component AMF. T… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-7587 2026-05-7 10:47 2026-05-2 Show GitHub Exploit DB Packet Storm