Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196721 9.8 緊急
Network 		MyBB Group - MyBB および Merge System の newreply.php における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9403 2017-02-13 15:31 2016-03-11 Show GitHub Exploit DB Packet Storm
196722 9.8 緊急
Network 		MyBB Group - MyBB および Merge System の moderation ツールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-9402 2017-02-13 15:31 2016-03-11 Show GitHub Exploit DB Packet Storm
196723 7.5 重要
Network 		MyBB Group - MyBB および Merge System におけるインストールパスを取得される脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2015-8977 2017-02-13 15:30 2015-09-7 Show GitHub Exploit DB Packet Storm
196724 6.1 警告
Network 		MyBB Group - MyBB および Merge System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-8976 2017-02-13 15:30 2015-09-7 Show GitHub Exploit DB Packet Storm
196725 6.1 警告
Network 		MyBB Group - MyBB および Merge System のエラーハンドラにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-8975 2017-02-13 15:30 2015-09-7 Show GitHub Exploit DB Packet Storm
196726 10 緊急
Network 		MyBB Group - MyBB および Merge System の管理制御パネルの Group Promotions モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-8974 2017-02-13 15:30 2015-09-7 Show GitHub Exploit DB Packet Storm
196727 8.3 重要
Network 		MyBB Group - MyBB および Merge System の xmlhttp.php におけるアクセス制限を回避される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2015-8973 2017-02-13 15:30 2015-09-7 Show GitHub Exploit DB Packet Storm
196728 7.5 重要
Network 		Libical project - Libical の icaltime_from_string 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-5827 2017-02-13 15:25 2016-06-20 Show GitHub Exploit DB Packet Storm
196729 7.5 重要
Network 		Libical project - Libical の parser_get_next_char 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-5826 2017-02-13 15:25 2016-06-20 Show GitHub Exploit DB Packet Storm
196730 5.5 警告
Local 		Libical project - Libical の icalparser_parse_string 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-5825 2017-02-13 15:25 2016-06-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
571 - - - In the Linux kernel, the following vulnerability has been resolved: iio: proximity: hx9023s: Protect against division by zero in set_samp_freq Avoid division by zero when sampling frequency is unsp… New - CVE-2026-43354 2026-05-9 00:16 2026-05-9 Show GitHub Exploit DB Packet Storm
572 - - - In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Fix race in DMA ring dequeue The HCI DMA dequeue path (hci_dma_dequeue_xfer()) may be invoked for multiple tra… New - CVE-2026-43353 2026-05-9 00:16 2026-05-9 Show GitHub Exploit DB Packet Storm
573 - - - In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Correct RING_CTRL_ABORT handling in DMA dequeue The logic used to abort the DMA ring contains several flaws: … New - CVE-2026-43352 2026-05-9 00:16 2026-05-9 Show GitHub Exploit DB Packet Storm
574 - - - In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Eagerly init vgic dist/redist on vgic creation If vgic_allocate_private_irqs_locked() fails for any odd reason, we ex… New - CVE-2026-43351 2026-05-9 00:16 2026-05-9 Show GitHub Exploit DB Packet Storm
575 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSG_SPLICE_PAGES can attach pages from a pipe directly to an skb. TCP marks… New CWE-123
 Write-what-where Condition 		CVE-2026-43284 2026-05-9 00:16 2026-05-8 Show GitHub Exploit DB Packet Storm
576 7.1 HIGH
Network 		- - FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.214, the Change Customer modal correctly hides out-of-scope customers through the mailbox-filte… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-41906 2026-05-9 00:16 2026-05-8 Show GitHub Exploit DB Packet Storm
577 6.1 MEDIUM
Network 		- - If a trusted template author were to write a <script> tag containing an empty 'type' attribute or a 'type' attribute with an ASCII whitespace, the execution of the template would incorrectly escape a… New - CVE-2026-39826 2026-05-9 00:16 2026-05-8 Show GitHub Exploit DB Packet Storm
578 6.1 MEDIUM
Network 		- - CVE-2026-27142 fixed a vulnerability in which URLs were not correctly escaped inside of a <meta> tag's <content> attribute. If the URL content were to insert ASCII whitespaces around the '=' rune ins… New - CVE-2026-39823 2026-05-9 00:16 2026-05-8 Show GitHub Exploit DB Packet Storm
579 7.5 HIGH
Network 		- - Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations. New - CVE-2026-39820 2026-05-9 00:16 2026-05-8 Show GitHub Exploit DB Packet Storm
580 7.5 HIGH
Network 		- - When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash. New - CVE-2026-33811 2026-05-9 00:16 2026-05-8 Show GitHub Exploit DB Packet Storm