Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193221	6.1	警告 Network	サイボウズ	-	サイボウズガルーンのユーザ詳細画面に関するクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1215	2017-05-23 12:00	2016-08-22	Show	GitHub Exploit DB Packet Storm

193222	6.1	警告 Network	サイボウズ	-	サイボウズガルーンの予定の登録機能に関するクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1216	2017-05-23 12:00	2016-08-22	Show	GitHub Exploit DB Packet Storm

193223	6.1	警告 Network	サイボウズ	-	サイボウズガルーンの空き時間確認画面に関するクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1217	2017-05-23 12:00	2016-08-22	Show	GitHub Exploit DB Packet Storm

193224	6.3	警告 Network	サイボウズ	-	サイボウズガルーンにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-1218	2017-05-23 12:00	2016-08-22	Show	GitHub Exploit DB Packet Storm

193225	3.7	低 Network	サイボウズ	-	サイボウズガルーンにおける認証回避の脆弱性	CWE-287 不適切な認証	CVE-2016-1219	2017-05-23 12:00	2016-08-22	Show	GitHub Exploit DB Packet Storm

193226	4.3	警告 Network	サイボウズ	-	サイボウズガルーンにおけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1220	2017-05-23 12:00	2016-08-22	Show	GitHub Exploit DB Packet Storm

193227	4.3	警告 Network	Nextcloud	-	Nextcloud における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2017-0894	2017-05-22 18:39	2017-05-8	Show	GitHub Exploit DB Packet Storm

193228	3.5	低 Network	Nextcloud	-	Nextcloud におけるセッションの固定化の脆弱性	CWE-384 セッションの固定化	CVE-2017-0892	2017-05-22 18:39	2017-05-8	Show	GitHub Exploit DB Packet Storm

193229	8.8	重要 Network	IBM	-	IBM WebSphere Application Server におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2017-1194	2017-05-22 18:37	2017-04-26	Show	GitHub Exploit DB Packet Storm

193230	5.3	警告 Local	IBM	-	IBM WebSphere Commerce におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-1170	2017-05-22 18:37	2017-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1221	7.8	HIGH Local	qualcomm	qca8695au_firmware qca9367_firmware qca9377_firmware qcc710_firmware qcm2290_firmware qcm4325_firmware qcm5430_firmware qcm6125_firmware qcm6490_firmware qcn6224_firmware	Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified. Update	CWE-120 CWE-787 Classic Buffer Overflow Out-of-bounds Write	CVE-2025-47404	2026-05-7 03:03	2026-05-5	Show	GitHub Exploit DB Packet Storm

1222	7.8	HIGH Local	qualcomm	fastconnect_6900_firmware fastconnect_7800_firmware iqx5121_firmware iqx7181_firmware qca0000_firmware sc8380xp_firmware sd865_5g_firmware snapdragon_xr2_5g_firmware snapdrago…	Memory corruption when processing camera sensor input/output control codes with invalid output buffers. Update	CWE-822 CWE-119 Untrusted Pointer Dereference Incorrect Access of Indexable Resource ('Range Error')	CVE-2025-47405	2026-05-7 03:03	2026-05-5	Show	GitHub Exploit DB Packet Storm

1223	7.8	HIGH Local	qualcomm	fastconnect_6200_firmware fastconnect_6900_firmware fastconnect_7800_firmware iqx5121_firmware iqx7181_firmware qca0000_firmware sc8380xp_firmware sd865_5g_firmware sm6250_fir…	Memory corruption when another driver calls an IOCTL with invalid input/output buffer. Update	CWE-822 CWE-119 Untrusted Pointer Dereference Incorrect Access of Indexable Resource ('Range Error')	CVE-2025-47408	2026-05-7 03:03	2026-05-5	Show	GitHub Exploit DB Packet Storm

1224	5.5	MEDIUM Local	qualcomm	cologne_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware iqx5121_firmware iqx7181_firmware qca0000_firmware qcm5430_firmware qcm6490_firm…	Information Disclosure while processing IOCTL handler callbacks without verifying buffer size. Update	CWE-126 CWE-125 Buffer Over-read Out-of-bounds Read	CVE-2025-47406	2026-05-7 03:02	2026-05-5	Show	GitHub Exploit DB Packet Storm

1225	7.0	HIGH Local	qualcomm	cq7790_firmware cq8725s_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware g2_gen_1_firmware molokai_firmware net…	Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level. Update	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2025-47407	2026-05-7 03:02	2026-05-5	Show	GitHub Exploit DB Packet Storm

1226	7.8	HIGH Local	qualcomm	qxm1096_firmware robotics_rb2_firmware robotics_rb5_firmware sa4150p_firmware sa4155p_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa7255p_firmware sa7775p_f…	Memory Corruption when copying data from a freed source while executing performance counter deselect operation. Update	CWE-416 Use After Free	CVE-2026-24082	2026-05-7 03:02	2026-05-5	Show	GitHub Exploit DB Packet Storm

1227	7.8	HIGH Local	qualcomm	cologne_firmware fastconnect_6900_firmware fastconnect_7800_firmware sc8380xp_firmware snapdragon_ar1_gen_1_firmware wcd9378c_firmware wcd9380_firmware wcd9385_firmware wcn786…	Memory corruption while processing IOCTL command when device is in power-save state. Update	CWE-749 CWE-787 Exposed Dangerous Method or Function Out-of-bounds Write	CVE-2026-25266	2026-05-7 03:02	2026-05-5	Show	GitHub Exploit DB Packet Storm

1228	9.8	CRITICAL Network	qualcomm	qca7005_firmware	Buffer overflow due to incorrect authorization in PLC FW Update	CWE-863 Incorrect Authorization	CVE-2026-25293	2026-05-7 03:01	2026-05-5	Show	GitHub Exploit DB Packet Storm

1229	9.1	CRITICAL Network	apache	opennlp	XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versions Affected: before 2.5.9, before 3.0.0-M3 Description: The DictionaryEntryPersistor … Update	CWE-611 XXE	CVE-2026-40682	2026-05-7 03:00	2026-05-5	Show	GitHub Exploit DB Packet Storm

1230	9.8	CRITICAL Network	apache	opennlp	Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 2.5.9, before 3.0.0-M3 Description: The ExtensionLoader.instantiateExtension(C… Update	CWE-470 Unsafe Reflection	CVE-2026-42027	2026-05-7 03:00	2026-05-5	Show	GitHub Exploit DB Packet Storm