Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196961 5.4 警告
Network 		IBM - IBM Connections におけるホストヘッダを挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0310 2017-02-21 16:43 2016-08-9 Show GitHub Exploit DB Packet Storm
196962 4.3 警告
Network 		IBM - IBM Connections におけるリンクを改ざんされる脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-0308 2017-02-21 16:43 2016-08-9 Show GitHub Exploit DB Packet Storm
196963 4.3 警告
Network 		IBM - IBM Connections における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0307 2017-02-21 16:43 2016-08-9 Show GitHub Exploit DB Packet Storm
196964 5.4 警告
Network 		IBM - IBM Connections におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0305 2017-02-21 16:43 2016-08-9 Show GitHub Exploit DB Packet Storm
196965 5.3 警告
Network 		IBM - IBM Security Key Lifecycle Manager における認証されていないユーザに対して重要な情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2016-6099 2017-02-21 16:37 2016-06-29 Show GitHub Exploit DB Packet Storm
196966 8.1 重要
Network 		IBM - IBM InfoSphere Information Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2016-6059 2017-02-21 16:36 2016-10-28 Show GitHub Exploit DB Packet Storm
196967 5 警告
Network 		IBM - IBM Jazz Foundation における以前にログインしたユーザを継承される脆弱性 CWE-384
セッションの固定化 		CVE-2016-6040 2017-02-21 16:35 2016-12-16 Show GitHub Exploit DB Packet Storm
196968 6.1 警告
Network 		IBM - IBM TRIRIGA Application Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6000 2017-02-21 16:32 2016-10-17 Show GitHub Exploit DB Packet Storm
196969 6.5 警告
Adjacent 		IBM - IBM BigFix Platform における BES をクラッシュ状態にされる脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6085 2017-02-21 16:31 2016-12-20 Show GitHub Exploit DB Packet Storm
196970 10 緊急
Network 		IBM - IBM BigFix Platform におけるシステム上で任意のコードを実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2016-6082 2017-02-21 16:31 2016-12-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
81 - - - HireFlow v1.2 is vulnerable to Incorrect Access Control. The application does not enforce object-level authorization on the /candidate/<id> and /interview/<id> endpoints. The route handlers retrieve … New - CVE-2026-38568 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
82 - - - HireFlow v1.2 is vulnerable to SQL injection in the /login and /search endpoints. User-supplied input is concatenated directly into SQL queries without parameterization. An unauthenticated attacker c… New - CVE-2026-38567 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
83 - - - HireFlow v1.2 does not implement CSRF token validation on any state-changing POST endpoint. All forms (password change at /profile, candidate deletion at /candidates/delete/<id>, feedback submission … New - CVE-2026-38566 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
84 - - - D-Link DCS-932L v2.18.01 is vulnerable to Command Injection in the function sub_42EF14 of the file /bin/alphapd. The manipulation of the argument LightSensorControl leads to command injection. New - CVE-2026-36983 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
85 - - - SQL Injection in MuuCMF T6 v1.9.4.20260115 allows an unauthenticated attacker to compromise the entire database, achieve unauthorized administrative access, and potentially gain remote code execution… New - CVE-2026-36962 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
86 - - - Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Actions/ActionEntryPoint.Php, includes/Request/FauxResponse.Php. This issue affects … New - CVE-2026-34095 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
87 - - - Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Page/Article.Php. This issue affects MediaWiki: from * before 1.43.7, 1.44.4, 1.45.2. New - CVE-2026-34094 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
88 - - - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Specials/SpecialUserRights.P… New CWE-200
Information Exposure 		CVE-2026-34093 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
89 - - - Vulnerability in Wikimedia Foundation AbuseFilter. This issue affects AbuseFilter: from * before 1.43.7, 1.44.4, 1.45.2. New CWE-20
 Improper Input Validation  		CVE-2026-34086 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
90 - - - Command injection vulnerability in automagik-genie 2.5.27 MCP Server allows attackers to execute arbitrary commands via the view_task (aka view) in the readTranscriptFromCommit function in dist/mcp/s… New - CVE-2026-30635 2026-05-12 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm