Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193341 6.1 警告
Network 		Cloud Foundry Foundation
Pivotal Software, Inc.		 - Cloud Foundry Runtime cf-release などの製品におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2015-3190 2017-06-26 19:01 2015-04-10 Show GitHub Exploit DB Packet Storm
193342 3.7
Network 		Cloud Foundry Foundation
Pivotal Software, Inc.		 - Cloud Foundry Runtime cf-release などの製品におけるパスワード管理機能に関する脆弱性 CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み 		CVE-2015-3189 2017-06-26 19:00 2015-04-10 Show GitHub Exploit DB Packet Storm
193343 6.5 警告
Network 		Cloud Foundry Foundation
Pivotal Software, Inc.		 - Pivotal Elastic Runtime および cf-release の Cloud Controller におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2015-1834 2017-06-26 19:00 2015-04-10 Show GitHub Exploit DB Packet Storm
193344 8.8 重要
Network 		PivotX - PivotX における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2017-8402 2017-06-26 18:15 2017-05-29 Show GitHub Exploit DB Packet Storm
193345 6.5 警告
Network 		Cloud Foundry Foundation
Pivotal Software, Inc.		 - Pivotal Elastic Runtime および cf-release の Loggregator Traffic Controller エンドポイントにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2165 2017-06-26 18:12 2016-03-23 Show GitHub Exploit DB Packet Storm
193346 6.1 警告
Network 		Cloud Foundry Foundation
Pivotal Software, Inc.		 - Cloud Foundry などの製品の UAA OAuth 承認ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0781 2017-06-26 18:12 2016-03-23 Show GitHub Exploit DB Packet Storm
193347 7.5 重要
Network 		Cloud Foundry Foundation
Pivotal Software, Inc.		 - Pivotal Elastic Runtime および cf-release におけるリソース管理に関する脆弱性 CWE-399
リソース管理の問題 		CVE-2016-0780 2017-06-26 18:12 2016-03-23 Show GitHub Exploit DB Packet Storm
193348 8.8 重要
Network 		Cloud Foundry Foundation
Pivotal Software, Inc.		 - Cloud Foundry Runtime cf-release などの製品におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-3191 2017-06-26 18:12 2015-04-10 Show GitHub Exploit DB Packet Storm
193349 7 重要
Local 		Google - Android の TrustZone における競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2016-10297 2017-06-26 17:35 2017-05-1 Show GitHub Exploit DB Packet Storm
193350 7.8 重要
Local 		Google - Android の TrustZone における二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2015-9007 2017-06-26 17:35 2017-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2121 9.8 CRITICAL
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when SoapServer is configured with SOAP_PERSISTENCE_SESSION, the handler object is persisted acr… CWE-416
 Use After Free 		CVE-2026-7261 2026-05-13 02:40 2026-05-10 Show GitHub Exploit DB Packet Storm
2122 7.5 HIGH
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when a SOAP server has a typemap configured, the decoding process contains a mistake which check… CWE-476
 NULL Pointer Dereference 		CVE-2026-7262 2026-05-13 02:39 2026-05-10 Show GitHub Exploit DB Packet Storm
2123 7.5 HIGH
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the metaphone() function in ext/standard/metaphone.c uses a signed int variable to track the cur… CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2026-7568 2026-05-13 02:38 2026-05-10 Show GitHub Exploit DB Packet Storm
2124 7.5 HIGH
Network 		open5gs open5gs A vulnerability was identified in Open5GS up to 2.7.7. This affects the function pcf_npcf_smpolicycontrol_handle_delete of the file src/pcf/sm-sm.c of the component delete Endpoint. The manipulation … CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8225 2026-05-13 02:38 2026-05-10 Show GitHub Exploit DB Packet Storm
2125 7.5 HIGH
Network 		open5gs open5gs A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogs_pcc_rule_install_flow_from_media in the library /lib/proto/types.c. The manipulation results in… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8226 2026-05-13 02:38 2026-05-10 Show GitHub Exploit DB Packet Storm
2126 8.8 HIGH
Network 		wavlink wl-nu516u1_firmware A vulnerability was detected in Wavlink NU516U1 240425. The affected element is the function WifiBasic of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument AuthMethod/EncrypTy… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8229 2026-05-13 02:37 2026-05-10 Show GitHub Exploit DB Packet Storm
2127 8.8 HIGH
Network 		wavlink wl-nu516u1_firmware A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function sys_login1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8230 2026-05-13 02:37 2026-05-10 Show GitHub Exploit DB Packet Storm
2128 9.1 CRITICAL
Network 		php php In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL byte is passed to mb_convert_encoding() or related mbstring functions, the code incorrectl… CWE-125
Out-of-bounds Read 		CVE-2026-6104 2026-05-13 02:35 2026-05-10 Show GitHub Exploit DB Packet Storm
2129 7.5 HIGH
Network 		php php In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data incorrectly, causing a circular linked list in the data structure representing the XML docu… CWE-404
CWE-835
 Improper Resource Shutdown or Release
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2026-7263 2026-05-13 02:35 2026-05-10 Show GitHub Exploit DB Packet Storm
2130 6.5 MEDIUM
Network 		open5gs open5gs A vulnerability was detected in Open5GS up to 2.7.7. The affected element is the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. The manipulation… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8248 2026-05-13 02:35 2026-05-11 Show GitHub Exploit DB Packet Storm