Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196221 7.8 重要
Local 		GNU Project - libiberty の cplus-dem.c の string_appends 関数における整数オーバーフローの脆弱性 CWE-119
CWE-190
CVE-2016-2226 2017-03-15 15:21 2016-03-2 Show GitHub Exploit DB Packet Storm
196222 8.8 重要
Network 		IBM - IBM Jazz for Service Management におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-9975 2017-03-15 15:16 2016-12-16 Show GitHub Exploit DB Packet Storm
196223 3.1
Network 		IBM - IBM WebSphere MQ におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-264
CVE-2016-9009 2017-03-15 15:16 2016-10-25 Show GitHub Exploit DB Packet Storm
196224 7.8 重要
Local 		Artifex Software - Ghostscript の base/gxipixel.c の gx_image_enum_begin 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2017-6196 2017-03-15 15:14 2017-02-20 Show GitHub Exploit DB Packet Storm
196225 6.1 警告
Network 		PayPal - PayPal PHP Merchant SDK の GetAuthDetails.html.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-6099 2017-03-15 15:06 2017-02-11 Show GitHub Exploit DB Packet Storm
196226 6.1 警告
Network 		Bilboplanet - Bilboplanet におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9916 2017-03-15 14:57 2014-07-16 Show GitHub Exploit DB Packet Storm
196227 7.5 重要
Network 		MUSCLE
Canonical		 - pcsc-lite におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2016-10109 2017-03-15 14:52 2016-12-30 Show GitHub Exploit DB Packet Storm
196228 5.3 警告
Network 		Plone Foundation - Plone における重要なコンテンツの ID に関する情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-4042 2017-03-15 14:31 2016-04-19 Show GitHub Exploit DB Packet Storm
196229 7.3 重要
Network 		Plone Foundation - Plone における webdav へのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4041 2017-03-15 14:31 2016-04-19 Show GitHub Exploit DB Packet Storm
196230 6.5 警告
Local 		GNU Project - GNU coreutils の chroot における親セッションにエスケープされる脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2781 2017-03-15 14:07 2016-02-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1201 5.5 MEDIUM
Adjacent 		- - A vulnerability was detected in 8421bit MiniClaw 0.8.0/0.9.0. This issue affects the function resolveSkillScriptPath of the file src/kernel.ts of the component System Command Handler. The manipulatio… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8235 2026-05-12 01:17 2026-05-10 Show GitHub Exploit DB Packet Storm
1202 3.5 LOW
Adjacent 		- - A vulnerability was found in Dotouch XproUPF 2.0.0-release-088aa7c4. This impacts the function vlib_worker_loop in the library /usr/xpro/upf/tools/libs/libvlib.so of the component UPF Process. The ma… New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8232 2026-05-12 01:17 2026-05-10 Show GitHub Exploit DB Packet Storm
1203 5.3 MEDIUM
Network 		- - A vulnerability was found in Open5GS up to 2.7.7. Affected by this vulnerability is the function pcf_sess_sbi_discover_and_send of the component sm-policies Endpoint. Performing a manipulation result… New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8223 2026-05-12 01:17 2026-05-10 Show GitHub Exploit DB Packet Storm
1204 6.3 MEDIUM
Network 		- - A security flaw has been discovered in Industrial Application Software IAS Canias ERP 8.03. Impacted is the function Runtime.getRuntime.exec of the component RMI Interface. Performing a manipulation … New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8217 2026-05-12 01:17 2026-05-10 Show GitHub Exploit DB Packet Storm
1205 5.3 MEDIUM
Network 		- - A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component UPF. Executing a manipulation can lead to resource consumption… New CWE-400
CWE-404
 Uncontrolled Resource Consumption
 Improper Resource Shutdown or Release 		CVE-2026-8187 2026-05-12 01:17 2026-05-9 Show GitHub Exploit DB Packet Storm
1206 5.3 MEDIUM
Network 		- - A vulnerability was detected in Open5GS up to 2.7.7. This affects the function ogs_sbi_client_send_via_scp_or_sepp in the library lib/sbi/client.c of the component NF. Performing a manipulation resul… New CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error') 
Out-of-bounds Read 		CVE-2026-8186 2026-05-12 01:17 2026-05-9 Show GitHub Exploit DB Packet Storm
1207 2.2 LOW
Local 		- - GrapheneOS before 2026050400 allows attackers to discover the real IP address of a VPN user as a consequence of a registerQuicConnectionClosePayload optimization, because an application can let syste… New CWE-441
Confused Deputy 		CVE-2026-45182 2026-05-12 01:17 2026-05-10 Show GitHub Exploit DB Packet Storm
1208 8.8 HIGH
Network 		- - AzuraCast is a self-hosted, all-in-one web radio management suite. Prior to version 0.23.6, the currentDirectory request parameter in the Flow.js media upload endpoint (POST /api/station/{station_id}… New CWE-22
Path Traversal 		CVE-2026-42605 2026-05-12 01:17 2026-05-10 Show GitHub Exploit DB Packet Storm
1209 - - - ArchiveBox is an open source self-hosted web archiving system. In versions 0.8.6rc0 and prior, the /add/ endpoint (AddView in core/views.py) accepts a config JSON field that gets merged into the craw… New CWE-88
Argument Injection 		CVE-2026-42601 2026-05-12 01:17 2026-05-10 Show GitHub Exploit DB Packet Storm
1210 - - - Quarkus OpenAPI Generator is Quarkus' extensions for generation of Rest Clients and server stubs generation. Prior to versions 2.11.1-lts, 2.16.0-lts, and 2.17.0, the generated authentication filter … New CWE-200
Information Exposure 		CVE-2026-42333 2026-05-12 01:17 2026-05-10 Show GitHub Exploit DB Packet Storm