Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193651 7.1 重要
Network 		support-project.org - Knowledge におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-2097 2017-06-6 14:38 2017-01-24 Show GitHub Exploit DB Packet Storm
193652 4.8 警告
Network 		株式会社プレゼントキャスト - Android アプリ「TVer」における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2017-2105 2017-06-6 11:51 2017-02-10 Show GitHub Exploit DB Packet Storm
193653 4.8 警告
Network 		株式会社ケイ・オプティコム - Android アプリ「ビジネスLaLa Call」における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2017-2104 2017-06-6 11:51 2017-02-3 Show GitHub Exploit DB Packet Storm
193654 4.8 警告
Network 		株式会社ケイ・オプティコム - Android アプリ「LaLa Call」における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2017-2103 2017-06-6 11:51 2017-02-3 Show GitHub Exploit DB Packet Storm
193655 5.3 警告
Network 		Simtech Ltd. - CS-Cart日本語版におけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-2143 2017-06-6 11:48 2017-04-10 Show GitHub Exploit DB Packet Storm
193656 5.3 警告
Network 		MiniProfiler - Ruby 用 rack-mini-profiler gem におけるアロケートされた文字列およびオブジェクトに関する重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-4442 2017-06-6 11:09 2016-05-18 Show GitHub Exploit DB Packet Storm
193657 5.9 警告
Network 		Apache Software Foundation - Windows 上で稼動する Apache Qpid Proton ライブラリの C および C-based クライアントのバインディングにおけるサーバになりすまされる脆弱性 CWE-295
不正な証明書検証 		CVE-2016-4467 2017-06-6 11:04 2016-07-15 Show GitHub Exploit DB Packet Storm
193658 9.8 緊急
Network 		Pexip - Pexip Infinity におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2017-6551 2017-06-6 10:53 2017-04-10 Show GitHub Exploit DB Packet Storm
193659 7.5 重要
Network 		RXVT project - Rxvt における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2017-7483 2017-06-6 10:41 2017-05-1 Show GitHub Exploit DB Packet Storm
193660 4.7 警告
Local 		Linux - Synaptics タッチスクリーンドライバにおける情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2017-0634 2017-06-5 19:25 2017-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1191 - - - An untrusted pointer dereference in the ionic cloud driver for VMWare ESXi could allow an attacker with an unprivileged VM to read kernel memory or co-located guest VM memory, potentially resulting i… CWE-822
 Untrusted Pointer Dereference 		CVE-2025-62627 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1192 6.3 MEDIUM
Network 		- - A vulnerability has been found in CodeAstro Online Catering Ordering System 1.0. This affects an unknown function of the file /deleteorder.php. The manipulation of the argument ID leads to sql inject… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8231 2026-05-13 23:48 2026-05-10 Show GitHub Exploit DB Packet Storm
1193 7.3 HIGH
Network 		- - A vulnerability was detected in OpenClaw up to 2026.1.24. The impacted element is the function handleBlueBubblesWebhookRequest of the file extensions/bluebubbles/src/monitor.ts of the component blueb… CWE-287
Improper Authentication 		CVE-2026-8305 2026-05-13 23:48 2026-05-12 Show GitHub Exploit DB Packet Storm
1194 6.5 MEDIUM
Adjacent 		zyxel wre6505_firmware ** UNSUPPORTED WHEN ASSIGNED ** An improper restriction of excessive authentication attempts vulnerability in the web management interface of Zyxel WRE6505 v2 firmware version V1.00(ABDV.3)C0 could a… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-7255 2026-05-13 23:48 2026-05-12 Show GitHub Exploit DB Packet Storm
1195 5.3 MEDIUM
Local 		- - A flaw has been found in Squirrel up to 3.2. Impacted is the function validate_format in the library sqstdlib/sqstdstring.cpp. Executing a manipulation can lead to stack-based buffer overflow. The at… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-8258 2026-05-13 23:47 2026-05-11 Show GitHub Exploit DB Packet Storm
1196 5.9 MEDIUM
Local 		- - A vulnerability was determined in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation causes heap-based buffer overflow. The attac… CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2026-8261 2026-05-13 23:47 2026-05-11 Show GitHub Exploit DB Packet Storm
1197 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via regular expression backtracking in the Content-Disposition filename parameter parser. A crafted multipart upload with a lon… CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2026-8159 2026-05-13 23:44 2026-05-12 Show GitHub Exploit DB Packet Storm
1198 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. By sending a multipart/form-data request with a field name that collides with an inherited Object.proto… CWE-248
CWE-1321
 Uncaught Exception
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2026-8161 2026-05-13 23:43 2026-05-12 Show GitHub Exploit DB Packet Storm
1199 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. By sending a multipart/form-data request with a Content-Disposition header whose filename* parameter co… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2026-8162 2026-05-13 23:43 2026-05-12 Show GitHub Exploit DB Packet Storm
1200 7.5 HIGH
Network 		- - The Court Reservation – Manage Your Court Bookings Online plugin for WordPress is vulnerable to generic SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.10.11 due to insuf… CWE-89
SQL Injection 		CVE-2026-1250 2026-05-13 23:43 2026-05-13 Show GitHub Exploit DB Packet Storm