Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198421 6.1 警告
Network 		PayPal - PayPal PHP Merchant SDK の GetAuthDetails.html.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-6099 2017-03-15 15:06 2017-02-11 Show GitHub Exploit DB Packet Storm
198422 6.1 警告
Network 		Bilboplanet - Bilboplanet におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9916 2017-03-15 14:57 2014-07-16 Show GitHub Exploit DB Packet Storm
198423 7.5 重要
Network 		MUSCLE
Canonical		 - pcsc-lite におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2016-10109 2017-03-15 14:52 2016-12-30 Show GitHub Exploit DB Packet Storm
198424 5.3 警告
Network 		Plone Foundation - Plone における重要なコンテンツの ID に関する情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-4042 2017-03-15 14:31 2016-04-19 Show GitHub Exploit DB Packet Storm
198425 7.3 重要
Network 		Plone Foundation - Plone における webdav へのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4041 2017-03-15 14:31 2016-04-19 Show GitHub Exploit DB Packet Storm
198426 6.5 警告
Local 		GNU Project - GNU coreutils の chroot における親セッションにエスケープされる脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2781 2017-03-15 14:07 2016-02-28 Show GitHub Exploit DB Packet Storm
198427 8.2 重要
Network 		シーメンス - Siemens の Web アプリケーション RUGGEDCOM NMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-2683 2017-03-15 13:54 2017-02-22 Show GitHub Exploit DB Packet Storm
198428 7.5 重要
Network 		Apache Software Foundation - Apache Tomcat に情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2016-8747 2017-03-15 10:46 2016-12-14 Show GitHub Exploit DB Packet Storm
198429 7.5 重要
Network 		Carlo Gavazzi - Carlo Gavazzi VMU-C EM および VMU-C PV ファームウェアにおける重要な情報を平文で保存される脆弱性 CWE-200
情報漏えい 		CVE-2017-5146 2017-03-14 18:57 2017-01-12 Show GitHub Exploit DB Packet Storm
198430 10 緊急
Network 		Carlo Gavazzi - Carlo Gavazzi VMU-C EM および VMU-C PV ファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-5145 2017-03-14 18:57 2017-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2641 5.5 MEDIUM
Network 		- - When a fusefs file system implements extended attributes, the kernel may send a FUSE_LISTXATTR message to the userspace daemon to retrieve the list of extended attributes for a given file. The FUSE … CWE-122
Heap-based Buffer Overflow 		CVE-2026-45252 2026-05-22 00:16 2026-05-21 Show GitHub Exploit DB Packet Storm
2642 7.8 HIGH
Local 		- - A file descriptor can be closed while a thread is blocked in a poll(2) or select(2) call waiting for that descriptor. Because the blocked thread does not hold a reference to the underlying object, t… CWE-416
 Use After Free 		CVE-2026-45251 2026-05-22 00:16 2026-05-21 Show GitHub Exploit DB Packet Storm
2643 8.8 HIGH
Local 		- - libcasper(3) communicates with helper processes via UNIX domain sockets, and uses the select(2) system call to wait for data to become available. However, it does not verify that its socket descript… CWE-121
Stack-based Buffer Overflow 		CVE-2026-39461 2026-05-22 00:16 2026-05-21 Show GitHub Exploit DB Packet Storm
2644 7.8 HIGH
Local 		- - An origin validation error vulnerability in the Trend Micro Apex One (mac) agent self-protection mechanism could allow a local attacker to escalate privileges on affected installations. Please not… CWE-346
 Origin Validation Error 		CVE-2025-71217 2026-05-22 00:16 2026-05-21 Show GitHub Exploit DB Packet Storm
2645 7.8 HIGH
Local 		- - A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent cache mechanism could allow a local attacker to escalate privileges on affected installations. Please note: an att… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2025-71216 2026-05-22 00:16 2026-05-21 Show GitHub Exploit DB Packet Storm
2646 7.0 HIGH
Local 		- - A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent iCore service signature verification could allow a local attacker to escalate privileges on affected installations. … CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2025-71215 2026-05-22 00:16 2026-05-21 Show GitHub Exploit DB Packet Storm
2647 7.8 HIGH
Local 		- - An origin validation error vulnerability in the Trend Micro Apex One (mac) agent iCore service could allow a local attacker to escalate privileges on affected installations. Please note: an attack… CWE-346
 Origin Validation Error 		CVE-2025-71214 2026-05-22 00:16 2026-05-21 Show GitHub Exploit DB Packet Storm
2648 7.8 HIGH
Local 		- - MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow vulnerability CWE-823
 Use of Out-of-range Pointer Offset 		CVE-2026-28764 2026-05-22 00:05 2026-05-21 Show GitHub Exploit DB Packet Storm
2649 7.5 HIGH
Network 		- - In Splunk Enterprise versions below 10.2.2 and 10.0.5, and Splunk Cloud Platform versions below 10.3.2512.8, 10.2.2510.11, 10.1.2507.21, and 10.0.2503.13, a user with a role that has access to the `_… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-20239 2026-05-22 00:00 2026-05-21 Show GitHub Exploit DB Packet Storm
2650 6.5 MEDIUM
Network 		- - In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.11, and 9.3.12, and Splunk Cloud Platform versions below 10.4.2603.1, 10.3.2512.9, 10.2.2510.11, 10.1.2507.21, 10.0.2503.13, and 9.3.2411.129, … CWE-20
 Improper Input Validation  		CVE-2026-20240 2026-05-22 00:00 2026-05-21 Show GitHub Exploit DB Packet Storm