Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197691 5.4 警告
Network 		IBM - IBM Kenexa LMS on Cloud における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-8929 2017-02-15 16:08 2016-10-25 Show GitHub Exploit DB Packet Storm
197692 7.6 重要
Network 		IBM - IBM Kenexa LMS on Cloud における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-8928 2017-02-15 16:08 2016-10-25 Show GitHub Exploit DB Packet Storm
197693 6.5 警告
Network 		IBM - IBM Kenexa LMS on Cloud におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-8913 2017-02-15 16:07 2016-11-11 Show GitHub Exploit DB Packet Storm
197694 4.3 警告
Network 		IBM - IBM Kenexa LMS on Cloud における重要な情報を読まれる脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2016-8912 2017-02-15 16:07 2016-11-11 Show GitHub Exploit DB Packet Storm
197695 5.4 警告
Network 		IBM - IBM Kenexa LMS on Cloud におけるクリック操作をハイジャックされる脆弱性 CWE-254
セキュリティ機能 		CVE-2016-8911 2017-02-15 16:07 2016-11-11 Show GitHub Exploit DB Packet Storm
197696 6.5 警告
Network 		IBM - IBM Kenexa LMS on Cloud におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-6126 2017-02-15 16:07 2016-11-11 Show GitHub Exploit DB Packet Storm
197697 8.8 重要
Network 		IBM - IBM Kenexa LMS on Cloud における任意のファイルをアップロードされる脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2016-6124 2017-02-15 16:07 2016-11-11 Show GitHub Exploit DB Packet Storm
197698 9.8 緊急
Network 		IBM - IBM WebSphere Commerce におけるユーザのパーソナルデータを公開される脆弱性 CWE-noinfo
情報不足 		CVE-2016-6090 2017-02-15 16:07 2016-10-24 Show GitHub Exploit DB Packet Storm
197699 6.5 警告
Adjacent 		IBM - IBM BigFix Platform における BES サーバをクラッシュさせられる脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6084 2017-02-15 16:07 2016-12-20 Show GitHub Exploit DB Packet Storm
197700 5.3 警告
Network 		IBM - IBM WebSphere Message Broker 用 WebAdmin コンテキストにおけるディレクトリをリスト化される脆弱性 CWE-200
情報漏えい 		CVE-2016-6080 2017-02-15 16:07 2016-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1191 - - - An untrusted pointer dereference in the ionic cloud driver for VMWare ESXi could allow an attacker with an unprivileged VM to read kernel memory or co-located guest VM memory, potentially resulting i… New CWE-822
 Untrusted Pointer Dereference 		CVE-2025-62627 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1192 6.3 MEDIUM
Network 		- - A vulnerability has been found in CodeAstro Online Catering Ordering System 1.0. This affects an unknown function of the file /deleteorder.php. The manipulation of the argument ID leads to sql inject… Update CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8231 2026-05-13 23:48 2026-05-10 Show GitHub Exploit DB Packet Storm
1193 7.3 HIGH
Network 		- - A vulnerability was detected in OpenClaw up to 2026.1.24. The impacted element is the function handleBlueBubblesWebhookRequest of the file extensions/bluebubbles/src/monitor.ts of the component blueb… Update CWE-287
Improper Authentication 		CVE-2026-8305 2026-05-13 23:48 2026-05-12 Show GitHub Exploit DB Packet Storm
1194 6.5 MEDIUM
Adjacent 		zyxel wre6505_firmware ** UNSUPPORTED WHEN ASSIGNED ** An improper restriction of excessive authentication attempts vulnerability in the web management interface of Zyxel WRE6505 v2 firmware version V1.00(ABDV.3)C0 could a… New CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-7255 2026-05-13 23:48 2026-05-12 Show GitHub Exploit DB Packet Storm
1195 5.3 MEDIUM
Local 		- - A flaw has been found in Squirrel up to 3.2. Impacted is the function validate_format in the library sqstdlib/sqstdstring.cpp. Executing a manipulation can lead to stack-based buffer overflow. The at… Update CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-8258 2026-05-13 23:47 2026-05-11 Show GitHub Exploit DB Packet Storm
1196 5.9 MEDIUM
Local 		- - A vulnerability was determined in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation causes heap-based buffer overflow. The attac… Update CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2026-8261 2026-05-13 23:47 2026-05-11 Show GitHub Exploit DB Packet Storm
1197 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via regular expression backtracking in the Content-Disposition filename parameter parser. A crafted multipart upload with a lon… New CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2026-8159 2026-05-13 23:44 2026-05-12 Show GitHub Exploit DB Packet Storm
1198 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. By sending a multipart/form-data request with a field name that collides with an inherited Object.proto… New CWE-248
CWE-1321
 Uncaught Exception
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2026-8161 2026-05-13 23:43 2026-05-12 Show GitHub Exploit DB Packet Storm
1199 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. By sending a multipart/form-data request with a Content-Disposition header whose filename* parameter co… New CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2026-8162 2026-05-13 23:43 2026-05-12 Show GitHub Exploit DB Packet Storm
1200 7.5 HIGH
Network 		- - The Court Reservation – Manage Your Court Bookings Online plugin for WordPress is vulnerable to generic SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.10.11 due to insuf… New CWE-89
SQL Injection 		CVE-2026-1250 2026-05-13 23:43 2026-05-13 Show GitHub Exploit DB Packet Storm