Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196471	5.5	警告 Local	マイクロソフト	-	複数の Microsoft 製品におけるプロセスメモリから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2017-0194	2017-04-25 11:59	2017-04-11	Show	GitHub Exploit DB Packet Storm

196472	6.1	警告 Network	IBM	-	IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-1120	2017-04-25 11:58	2017-03-23	Show	GitHub Exploit DB Packet Storm

196473	5.4	警告 Network	IBM	-	IBM TRIRIGA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-9737	2017-04-25 11:58	2016-12-16	Show	GitHub Exploit DB Packet Storm

196474	8.8	重要 Network	IBM	-	IBM Cognos Business Intelligence における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-8960	2017-04-25 11:58	2016-11-6	Show	GitHub Exploit DB Packet Storm

196475	3.7	低 Network	IBM	-	IBM Security Key Lifecycle Manager における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2016-6102	2017-04-25 11:58	2016-06-29	Show	GitHub Exploit DB Packet Storm

196476	5.4	警告 Network	IBM	-	IBM Call Center for Commerce におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6056	2017-04-25 11:58	2016-06-29	Show	GitHub Exploit DB Packet Storm

196477	6.1	警告 Network	Yii Framework	-	Yii Framework における反射型クロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-7271	2017-04-25 11:35	2017-02-1	Show	GitHub Exploit DB Packet Storm

196478	5.4	警告 Network	MetInfo	-	MetInfo におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6878	2017-04-25 11:34	2017-03-14	Show	GitHub Exploit DB Packet Storm

196479	6.1	警告 Network	openSUSE project The Icinga Project	-	Icinga の CSV エクスポートリンクおよびページ分割機能を備えた Classic-UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8010	2017-04-25 11:28	2015-10-24	Show	GitHub Exploit DB Packet Storm

196480	5.4	警告 Network	fomori.org	-	Cherry Music におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8310	2017-04-25 11:23	2015-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1931	-		-	-	Rejected reason: This CVE is a duplicate of another CVE.	-	CVE-2026-40328	2026-05-14 07:16	2026-05-14	Show	GitHub Exploit DB Packet Storm

1932	-		-	-	Rejected reason: This CVE is a duplicate of another CVE.	-	CVE-2026-40327	2026-05-14 07:16	2026-05-14	Show	GitHub Exploit DB Packet Storm

1933	8.8	HIGH Network	-	-	Insufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitrary Perl code execution on behalf of the already authenticated account's system user.	CWE-94 Code Injection	CVE-2026-29202	2026-05-14 07:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

1934	4.3	MEDIUM Network	-	-	Insufficient input validation of the feature file name in `feature::LOADFEATUREFILE` adminbin call can cause arbitrary file read when a relative file path is passed.	CWE-23 Relative Path Traversal	CVE-2026-29201	2026-05-14 07:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

1935	7.5	HIGH Network	apple	ipados iphone_os macos tvos visionos watchos	A validation issue was addressed with improved logic. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 2…	CWE-693 Protection Mechanism Failure	CVE-2026-43660	2026-05-14 06:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1936	7.5	HIGH Network	apple	ipados iphone_os macos tvos visionos watchos	The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-43658	2026-05-14 06:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1937	4.3	MEDIUM Network	apple	ipados iphone_os macos visionos	The issue was addressed with improved UI handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. A malicious iframe may use another website’s download…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2026-28971	2026-05-14 06:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1938	7.5	HIGH Network	apple	ipados iphone_os macos visionos	This issue was addressed with improved access restrictions. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. Processing mal…	CWE-200 Information Exposure	CVE-2026-28962	2026-05-14 06:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1939	5.5	MEDIUM Local	apple	ipados iphone_os macos visionos	This issue was addressed with improved data protection. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. An app may be able to access sensitive user data.	CWE-200 Information Exposure	CVE-2026-28958	2026-05-14 06:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

1940	7.5	HIGH Network	apple	ipados iphone_os macos tvos visionos watchos	The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-28955	2026-05-14 06:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed