Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198281 7.5 重要
Network 		HexChat - HexChat の common/inbound.c の inbound_cap_ls 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2233 2017-01-31 14:18 2016-02-7 Show GitHub Exploit DB Packet Storm
198282 7.4 重要
Network 		HexChat - HexChat のクライアントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-2087 2017-01-31 14:18 2016-01-26 Show GitHub Exploit DB Packet Storm
198283 7.5 重要
Network 		Tiki Software Community Association - Tiki Wiki CMS におけるシステム上で任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2016-10143 2017-01-31 14:12 2016-11-17 Show GitHub Exploit DB Packet Storm
198284 5.9 警告
Network 		JCraft, Inc. - Windows 上で稼動する JCraft JSch におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-5725 2017-01-31 14:01 2016-08-30 Show GitHub Exploit DB Packet Storm
198285 8.8 重要
Local 		Firejail project - Firejail におけるサンドボックス外で任意のコマンドを実行される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-9016 2017-01-31 13:54 2016-10-25 Show GitHub Exploit DB Packet Storm
198286 9.8 緊急
Network 		Sociomantic Labs - sociomantic-tsunami git-hub における任意のコードを実行される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-7794 2017-01-31 13:50 2016-09-7 Show GitHub Exploit DB Packet Storm
198287 8.8 重要
Network 		Sociomantic Labs - sociomantic-tsunami git-hub における任意のコードを実行される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-7793 2017-01-31 13:50 2016-09-7 Show GitHub Exploit DB Packet Storm
198288 4 警告
Local 		Info-ZIP - Info-Zip UnZip の list.c の list_files 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9913 2017-01-31 13:36 2014-11-3 Show GitHub Exploit DB Packet Storm
198289 6.1 警告
Network 		BlackBerry - BlackBerry の WatchDox サーバコンポーネントの Appliance-X および vApp における反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-3890 2017-01-31 12:23 2017-01-10 Show GitHub Exploit DB Packet Storm
198290 9.8 緊急
Network 		Intelliants - Subrion CMS の includes/classes/ia.core.users.php における PHP オブジェクトインジェクション攻撃を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2017-5543 2017-01-31 11:33 2017-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1601 6.2 MEDIUM
Local 		- - WordPress Plugin amministrazione-aperta 3.7.3 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting insufficient input validation in the… CWE-22
Path Traversal 		CVE-2022-50956 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1602 6.1 MEDIUM
Network 		- - WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the post_id parameter. Attackers… CWE-79
Cross-site Scripting 		CVE-2022-50958 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1603 6.1 MEDIUM
Network 		- - WordPress Contact Form Builder 1.6.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by exploiting the form_id parameter. Att… CWE-79
Cross-site Scripting 		CVE-2022-50959 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1604 6.1 MEDIUM
Network 		- - WordPress International Sms For Contact Form 7 Integration version 1.2 contains a reflected cross-site scripting vulnerability in the page parameter of the admin settings interface. Attackers can inj… CWE-79
Cross-site Scripting 		CVE-2022-50960 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1605 6.4 MEDIUM
Network 		- - WordPress Plugin IP2Location Country Blocker 2.26.7 contains a stored cross-site scripting vulnerability that allows authenticated users to inject arbitrary JavaScript code through the Frontend Setti… CWE-79
Cross-site Scripting 		CVE-2022-50961 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1606 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the orders/myOrders module. The date_created, date_from, date_to, and created_at parameters in the filter functionality ar… CWE-79
Cross-site Scripting 		CVE-2022-50962 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1607 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/myAuctions/status/active module. The date_created, date_from, date_to, and created_at parameters in the filte… CWE-79
Cross-site Scripting 		CVE-2022-50963 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1608 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/myAuctions/status/loose module. The date_created, date_from, date_to, and created_at parameters in the filter… CWE-79
Cross-site Scripting 		CVE-2022-50964 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1609 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the posts/manage module. The date_created, date_from, date_to, and created_at parameters in the filter functionality are n… CWE-79
Cross-site Scripting 		CVE-2022-50965 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
1610 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the news/manage module. The date_created, date_from, date_to, and created_at parameters in the filter functionality are no… CWE-79
Cross-site Scripting 		CVE-2022-50966 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm