Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198151 6.8 警告
Physics 		シトリックス・システムズ - Citrix Receiver Desktop Lock の不正なアクセス制御メカニズムにおける認証要求を回避される脆弱性 CWE-Other
その他 		CVE-2016-9111 2016-11-8 17:49 2016-10-27 Show GitHub Exploit DB Packet Storm
198152 7.8 重要
Local 		Python Software Foundation - Pillow における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-9190 2016-11-8 17:38 2016-10-3 Show GitHub Exploit DB Packet Storm
198153 5.5 警告
Local 		Python Software Foundation - Pillow における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2016-9189 2016-11-8 17:38 2016-10-3 Show GitHub Exploit DB Packet Storm
198154 7.5 重要
Network 		Spark Framework project - Spark におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-9177 2016-11-8 17:28 2016-11-7 Show GitHub Exploit DB Packet Storm
198155 9.8 緊急
Network 		マイクロフォーカス株式会社 - Micro Focus Rumba の send.exe および receive.exe コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-9176 2016-11-8 17:27 2016-10-31 Show GitHub Exploit DB Packet Storm
198156 8.8 重要
Network 		Exponent CMS project - Exponent CMS の framework/modules/core/controllers/expRatingController.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-9242 2016-11-8 17:23 2016-11-4 Show GitHub Exploit DB Packet Storm
198157 7.5 重要
Network 		Exponent CMS project - Exponent CMS の /framework/modules/core/controllers/expHTMLEditorController.php における SQL インジェクションの脆弱性 CWE-200
CWE-89
CVE-2016-9184 2016-11-8 17:23 2016-11-3 Show GitHub Exploit DB Packet Storm
198158 7.5 重要
Network 		Exponent CMS project - Exponent CMS の /framework/modules/ecommerce/controllers/orderController.php における情報公開の脆弱性 CWE-200
情報漏えい 		CVE-2016-9183 2016-11-8 17:23 2016-11-3 Show GitHub Exploit DB Packet Storm
198159 7.5 重要
Network 		Exponent CMS project - Exponent CMS におけるパーミッションチェックを回避される脆弱性 CWE-Other
その他 		CVE-2016-9182 2016-11-8 17:23 2016-11-3 Show GitHub Exploit DB Packet Storm
198160 8.1 重要
Network 		Joomla! - Joomla! の Users コンポーネントの controllers/user.php の UsersModelRegistration クラスにおけるユーザアカウントを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-8870 2016-11-8 16:46 2016-10-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
81 9.8 CRITICAL
Network 		- - vm2 is an open source vm/sandbox for Node.js. Prior to version 3.10.5, the fix for CVE-2023-37466 is insufficient and can be circumvented allowing attackers to write code which can escape from the VM… New CWE-94
CWE-693
Code Injection
 Protection Mechanism Failure 		CVE-2026-24120 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
82 9.8 CRITICAL
Network 		- - vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code which can escape from the VM2 sandbox and… New CWE-94
CWE-693
Code Injection
 Protection Mechanism Failure 		CVE-2026-24118 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
83 7.8 HIGH
Local 		- - Memory Corruption when copying data from a freed source while executing performance counter deselect operation. New CWE-416
 Use After Free 		CVE-2026-24082 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
84 7.8 HIGH
Local 		- - Memory corruption when another driver calls an IOCTL with invalid input/output buffer. New CWE-822
 Untrusted Pointer Dereference 		CVE-2025-47408 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
85 7.8 HIGH
Local 		- - Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level. New CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2025-47407 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
86 6.1 MEDIUM
Local 		- - Information Disclosure while processing IOCTL handler callbacks without verifying buffer size. New CWE-126
 Buffer Over-read 		CVE-2025-47406 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
87 7.8 HIGH
Local 		- - Memory corruption when processing camera sensor input/output control codes with invalid output buffers. New CWE-822
 Untrusted Pointer Dereference 		CVE-2025-47405 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
88 6.5 MEDIUM
Local 		- - Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified. New CWE-120
Classic Buffer Overflow 		CVE-2025-47404 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
89 6.5 MEDIUM
Adjacent 		- - Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming. New CWE-126
 Buffer Over-read 		CVE-2025-47403 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
90 6.5 MEDIUM
Adjacent 		- - Transient DOS when processing target power rate tables during channel configuration. New CWE-126
 Buffer Over-read 		CVE-2025-47401 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm