Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195241	6.1	警告 Network	MODX	-	MODX Revolution の setup/controllers/language.php における Cookie-Bombing 攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-7320	2017-04-28 11:58	2017-01-20	Show	GitHub Exploit DB Packet Storm

195242	9.8	緊急 Network	VideoLAN	-	VideoLAN VLC media player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-6440	2017-04-28 11:53	2014-07-6	Show	GitHub Exploit DB Packet Storm

195243	7.8	重要 Local	Flexense Ltd.	-	複数の Flexense 製品の Import Command におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-7310	2017-04-28 11:51	2017-03-29	Show	GitHub Exploit DB Packet Storm

195244	9.8	緊急 Network	Apache Software Foundation	-	Apache Ambari の証明書署名の REST API における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-3582	2017-04-28 11:45	2014-05-14	Show	GitHub Exploit DB Packet Storm

195245	5.5	警告 Local	Apache Software Foundation	-	Apache Ambari における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-4976	2017-04-28 11:45	2016-05-24	Show	GitHub Exploit DB Packet Storm

195246	7.3	重要 Local	マカフィー	-	Intel Security Anti-Virus Engine におけるローカルセキュリティ保護を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-8031	2017-04-28 11:30	2016-09-9	Show	GitHub Exploit DB Packet Storm

195247	9.8	緊急 Network	Zimbra	-	Zimbra Collaboration Suite における XML 外部エンティティ攻撃を実行される脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2016-9924	2017-04-28 11:25	2016-12-11	Show	GitHub Exploit DB Packet Storm

195248	7.5	重要 Network	Google	-	Google Chrome で使用される Skia における同一生成元ポリシーを回避される脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2016-5168	2017-04-28 11:16	2016-04-28	Show	GitHub Exploit DB Packet Storm

195249	7.5	重要 Network	OpenSLP	-	OpenSLP の xlsp_xmalloc.c の _xrealloc 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2016-4912	2017-04-27 18:56	2016-04-21	Show	GitHub Exploit DB Packet Storm

195250	7.8	重要 Local	マカフィー	-	Intel Security Data Loss Prevention Endpoint におけるアクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-8012	2017-04-27 18:55	2016-11-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1781	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A vulnerability was detected in Wavlink NU516U1 240425. The affected element is the function WifiBasic of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument AuthMethod/EncrypTy…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8229	2026-05-13 02:37	2026-05-10	Show	GitHub Exploit DB Packet Storm

1782	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function sys_login1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8230	2026-05-13 02:37	2026-05-10	Show	GitHub Exploit DB Packet Storm

1783	9.1	CRITICAL Network	php	php	In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL byte is passed to mb_convert_encoding() or related mbstring functions, the code incorrectl…	CWE-125 Out-of-bounds Read	CVE-2026-6104	2026-05-13 02:35	2026-05-10	Show	GitHub Exploit DB Packet Storm

1784	7.5	HIGH Network	php	php	In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data incorrectly, causing a circular linked list in the data structure representing the XML docu…	CWE-404 CWE-835 Improper Resource Shutdown or Release Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-7263	2026-05-13 02:35	2026-05-10	Show	GitHub Exploit DB Packet Storm

1785	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was detected in Open5GS up to 2.7.7. The affected element is the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. The manipulation…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8248	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

1786	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability has been found in Open5GS up to 2.7.7. This affects the function smf_n4_build_qos_flow_to_modify_list of the file /src/smf/n4-build.c of the component SMF. Such manipulation leads to …	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8250	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

1787	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was found in Open5GS up to 2.7.7. This impacts the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. Performing a manipulation resu…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8251	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

1788	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smf_nsmf_handle_create_data_in_hsmf of the component SMF. Executing a manipulation can lead to null pointer dereference…	CWE-404 CWE-476 Improper Resource Shutdown or Release NULL Pointer Dereference	CVE-2026-8252	2026-05-13 02:34	2026-05-11	Show	GitHub Exploit DB Packet Storm

1789	9.1	CRITICAL Network	vmware	spring_cloud_config	Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially cra…	CWE-22 Path Traversal	CVE-2026-40982	2026-05-13 02:30	2026-05-7	Show	GitHub Exploit DB Packet Storm

1790	8.1	HIGH Network	vmware	spring_cloud_config	The base directory (`spring.cloud.config.server.git.basedir`) used by the Spring Cloud Config Server to clone Git repositories to is susceptible to time-of-check-time-of-use (TOCTOU) attacks. Spring …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41002	2026-05-13 02:29	2026-05-7	Show	GitHub Exploit DB Packet Storm