Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198301 4.6 警告
Physics 		SUSE
Linux		 - Linux Kernel の drivers/input/tablet/wacom_sys.c の wacom_probe 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-3139 2016-10-28 16:59 2016-03-11 Show GitHub Exploit DB Packet Storm
198302 4.6 警告
Physics 		Linux
SUSE
Canonical		 - Linux Kernel の drivers/usb/serial/digi_acceleport.c の digi_port_init 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-3140 2016-10-28 16:59 2016-04-12 Show GitHub Exploit DB Packet Storm
198303 4.6 警告
Physics 		Linux
SUSE
Canonical		 - Linux Kernel の drivers/usb/serial/cypress_m8.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-3137 2016-10-28 16:59 2016-04-12 Show GitHub Exploit DB Packet Storm
198304 4.6 警告
Physics 		Linux
SUSE
Canonical		 - Linux Kernel の drivers/usb/serial/mct_u232.c の mct_u232_msr_to_state 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-3136 2016-10-28 16:59 2016-04-12 Show GitHub Exploit DB Packet Storm
198305 6.2 警告
Local 		SUSE
Linux		 - Linux Kernel の fs/pipe.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-2847 2016-10-28 16:59 2016-01-19 Show GitHub Exploit DB Packet Storm
198306 4.7 警告
Local 		レッドハット
openSUSE project
オラクル		 - Oracle MySQL の MySQL Server における Server: Federated に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0642 2016-10-28 16:50 2016-04-19 Show GitHub Exploit DB Packet Storm
198307 2.1 注意 レッドハット
openSUSE project
オラクル		 - Oracle MySQL の MySQL Server における Server: General に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0605 2016-10-28 16:50 2016-01-19 Show GitHub Exploit DB Packet Storm
198308 5.3 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の megasas_lookup_frame 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-5107 2016-10-28 16:29 2016-05-25 Show GitHub Exploit DB Packet Storm
198309 5.3 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/scsi/megasas.c の megasas_dcmd_set_properties 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-5106 2016-10-28 16:28 2016-05-25 Show GitHub Exploit DB Packet Storm
198310 4.1 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/scsi/megasas.c の megasas_dcmd_cfg_read 関数におけるホストメモリを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2016-5105 2016-10-28 16:28 2016-05-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
691 7.0 HIGH
Local 		- - A security flaw has been discovered in IObit Advanced SystemCare 19. This affects an unknown part of the file ASC.exe of the component Service. The manipulation results in symlink following. Attackin… New CWE-59
CWE-61
Link Following
 UNIX Symbolic Link (Symlink) Following 		CVE-2026-7832 2026-05-5 22:16 2026-05-5 Show GitHub Exploit DB Packet Storm
692 9.6 CRITICAL
Network 		- - OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. From version 6.7.0 to before version 7.0.0-rc3, a SQL injection vulnerability e… New CWE-89
SQL Injection 		CVE-2026-42087 2026-05-5 22:16 2026-05-5 Show GitHub Exploit DB Packet Storm
693 8.7 HIGH
Network 		- - Vulnerability in the Oracle MCP Server Helper Tool product of Oracle Open Source Projects (component: helper tool). The supported versions that is affected is 1.0.1-1.0.156. Easily exploitable vulner… New CWE-89
SQL Injection 		CVE-2026-35228 2026-05-5 22:16 2026-05-5 Show GitHub Exploit DB Packet Storm
694 5.9 MEDIUM
Network 		- - eLabFTW is an open source electronic lab notebook. In elabftw versions through 5.4.1, the login flow did not reliably preserve the multi-factor authentication state across authentication steps. Under… New CWE-302
 Authentication Bypass by Assumed-Immutable Data 		CVE-2026-28510 2026-05-5 22:16 2026-05-5 Show GitHub Exploit DB Packet Storm
695 8.8 HIGH
Network 		sailpoint identityiq This vulnerability impacts all versions of IdentityIQ and allows an authenticated identity that is the requestor or assignee of a work item to edit the definition of a role without having an assigned… Update CWE-863
 Incorrect Authorization 		CVE-2026-5712 2026-05-5 21:48 2026-04-30 Show GitHub Exploit DB Packet Storm
696 7.1 HIGH
Local 		dell dell\/alienware_purchased_apps Dell/Alienware Purchased Apps, versions prior to 1.1.31.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could p… Update CWE-59
Link Following 		CVE-2026-27105 2026-05-5 21:37 2026-04-30 Show GitHub Exploit DB Packet Storm
697 6.5 MEDIUM
Network 		- - The Betheme theme for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 28.4. This is due to the upload_icons() function workflow using a user-controlled upload pat… New CWE-22
Path Traversal 		CVE-2026-6262 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
698 8.8 HIGH
Network 		- - The Betheme theme for WordPress is vulnerable to Arbitrary File Upload in versions up to, and including, 28.4. This is due to the upload_icons() function workflow moving and unzipping user-controlled… New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-6261 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
699 6.5 MEDIUM
Network 		- - OpenClaw before 2026.4.12 contains an improper authorization vulnerability in helper-backed channels where empty resolved approver lists are interpreted as explicit approval authorization. Attackers … New CWE-183
 Permissive List of Allowed Inputs 		CVE-2026-43574 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
700 7.7 HIGH
Network 		- - OpenClaw before 2026.4.10 contains a server-side request forgery policy bypass vulnerability in existing-session browser interaction routes. Attackers can bypass SSRF navigation guards to interact wi… New CWE-862
CWE-918
 Missing Authorization
Server-Side Request Forgery (SSRF)  		CVE-2026-43573 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm