Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197611 6.5 警告
Local 		virglrenderer project - virglrenderer の vrend_blitter.c の vrend_renderer_init_blit_ctx 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-5993 2017-04-6 20:11 2017-02-15 Show GitHub Exploit DB Packet Storm
197612 6 警告
Local 		Fabrice Bellard - QEMU の hw/watchdog/wdt_i6300esb.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-10155 2017-04-6 20:06 2016-12-23 Show GitHub Exploit DB Packet Storm
197613 7.8 重要
Local 		LibGD project - GD Graphics Library の gd_io.c における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-10168 2017-04-6 20:04 2016-12-18 Show GitHub Exploit DB Packet Storm
197614 5.5 警告
Local 		LibGD project - GD Graphics Library の gd_gd2.c の gdImageCreateFromGd2Ctx 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-10167 2017-04-6 20:04 2016-08-17 Show GitHub Exploit DB Packet Storm
197615 9.8 緊急
Network 		LibGD project - GD Graphics Library の gd_interpolation.c の _gdContributionsAlloc 関数における整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2016-10166 2017-04-6 20:04 2016-08-6 Show GitHub Exploit DB Packet Storm
197616 5.5 警告
Local 		LibGD project - GD Graphics Library の gd_tga.c の read_image_tga 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-6906 2017-04-6 20:04 2016-08-16 Show GitHub Exploit DB Packet Storm
197617 7.8 重要
Local 		JasPer Project - JasPer の jpc_t2dec.c の jpc_dec_decodepkt 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-6852 2017-04-6 20:02 2017-01-25 Show GitHub Exploit DB Packet Storm
197618 5.5 警告
Local 		JasPer Project - JasPer の jas_seq.c の jas_matrix_bindsub 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2017-6851 2017-04-6 20:02 2017-01-22 Show GitHub Exploit DB Packet Storm
197619 5.5 警告
Local 		JasPer Project - JasPer の jp2_cod.c の jp2_cdef_destroy 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-6850 2017-04-6 20:02 2017-03-5 Show GitHub Exploit DB Packet Storm
197620 7.8 重要
Local 		JasPer Project - JasPer の jpc_t2cod.c の jpc_pi_nextcprl 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-10251 2017-04-6 20:02 2016-11-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2361 4.3 MEDIUM
Network 		- - Missing Authorization vulnerability in bPlugins Tiktok Feed allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Tiktok Feed: from n/a through 1.0.24. CWE-862
 Missing Authorization 		CVE-2026-24520 2026-05-27 05:19 2026-05-27 Show GitHub Exploit DB Packet Storm
2362 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Magepeople inc. Taxi Booking Manager for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Taxi Booking M… CWE-862
 Missing Authorization 		CVE-2026-25426 2026-05-27 05:19 2026-05-27 Show GitHub Exploit DB Packet Storm
2363 4.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Magepeople inc. WpBookingly allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WpBookingly: from n/a through 1.2.9. CWE-862
 Missing Authorization 		CVE-2026-25444 2026-05-27 05:19 2026-05-27 Show GitHub Exploit DB Packet Storm
2364 6.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Magepeople inc. WpTravelly allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WpTravelly: from n/a through 2.1.5. CWE-862
 Missing Authorization 		CVE-2026-27331 2026-05-27 05:19 2026-05-27 Show GitHub Exploit DB Packet Storm
2365 7.3 HIGH
Network 		- - A flaw has been found in itsourcecode Student Transcript Processing System 1.0. This vulnerability affects unknown code of the file /admin/modules/student/trans.php. Executing a manipulation of the a… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9574 2026-05-27 05:19 2026-05-27 Show GitHub Exploit DB Packet Storm
2366 7.3 HIGH
Network 		- - A vulnerability has been found in itsourcecode Student Transcript Processing System 1.0. This issue affects some unknown processing of the file /admin/modules/class/index.php?view=view. The manipulat… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9575 2026-05-27 05:19 2026-05-27 Show GitHub Exploit DB Packet Storm
2367 9.8 CRITICAL
Network 		litespeedtech litespeed_cpanel_plugin
litespeed_whm_plugin 		LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possibly to root), as exploited in the wild in May 2026. Detection is best done via a command line of grep -rE "cpanel_jsona… CWE-266
 Incorrect Privilege Assignment 		CVE-2026-48172 2026-05-27 05:19 2026-05-21 Show GitHub Exploit DB Packet Storm
2368 7.5 HIGH
Network 		- - D-Link DIR601 2.02NA contains a credential disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive configuration data by manipulating the table_name parameter in POST req… CWE-497
 Exposure of Sensitive System Information to an Unauthorized Control Sphere 		CVE-2018-25358 2026-05-27 05:16 2026-05-24 Show GitHub Exploit DB Packet Storm
2369 8.2 HIGH
Network 		- - code100x contains an authentication bypass vulnerability in the Mobile API that allows unauthenticated attackers to impersonate arbitrary users by supplying a crafted JSON payload in the 'g' HTTP hea… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-8890 2026-05-27 05:16 2026-05-27 Show GitHub Exploit DB Packet Storm
2370 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… - CVE-2026-8453 2026-05-27 05:16 2026-05-27 Show GitHub Exploit DB Packet Storm