Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198461 9.8 緊急
Network 		The PHP Group
openSUSE project
Fedora Project		 - PHP の ext/xml/xml.c の xml_parse_into_struct 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-4539 2016-10-26 16:34 2016-04-28 Show GitHub Exploit DB Packet Storm
198462 9.8 緊急
Network 		The PHP Group
openSUSE project
Fedora Project		 - PHP の ext/bcmath/bcmath.c の bcpowmod 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4538 2016-10-26 16:34 2016-04-28 Show GitHub Exploit DB Packet Storm
198463 9.8 緊急
Network 		The PHP Group
openSUSE project
Fedora Project		 - PHP の ext/bcmath/bcmath.c の bcpowmod 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4537 2016-10-26 16:33 2016-04-28 Show GitHub Exploit DB Packet Storm
198464 9.8 緊急
Network 		The PHP Group - PHP の ext/phar/tar.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2554 2016-10-26 16:06 2016-02-4 Show GitHub Exploit DB Packet Storm
198465 5.4 警告
Adjacent 		BB&T - iOS 版「U by BB&T」に SSL サーバ証明書の検証不備の脆弱性 CWE-310
CWE-Other
CVE-2016-6550 2016-10-26 15:34 2016-09-30 Show GitHub Exploit DB Packet Storm
198466 8.8 重要
Network 		The PHP Group - PHP の ext/phar/dirstream.c の phar_make_dirstream 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-4343 2016-10-26 15:27 2016-02-4 Show GitHub Exploit DB Packet Storm
198467 8.8 重要
Network 		The PHP Group - PHP の ext/phar/phar_object.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-4342 2016-10-26 15:26 2016-02-4 Show GitHub Exploit DB Packet Storm
198468 9.8 緊急
Network 		The PHP Group
アップル		 - PHP の ext/mbstring/libmbfl/mbfl/mbfilter.c の mbfl_strcut 関数における整数オーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-4073 2016-10-26 15:26 2016-03-31 Show GitHub Exploit DB Packet Storm
198469 7.5 重要
Network 		The PHP Group
アップル		 - PHP の ext/standard/url.c の php_raw_url_encode 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2016-4070 2016-10-26 15:25 2016-03-31 Show GitHub Exploit DB Packet Storm
198470 9.8 緊急
Network 		The PHP Group
アップル		 - PHP の ext/snmp/snmp.c の php_snmp_error 関数におけるフォーマットストリングの脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4071 2016-10-26 15:24 2016-03-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311 7.3 HIGH
Network 		- - A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The… New CWE-259
CWE-798
Use of Hard-coded Password 
 Use of Hard-coded Credentials 		CVE-2026-7579 2026-05-2 00:26 2026-05-1 Show GitHub Exploit DB Packet Storm
312 5.3 MEDIUM
Local 		- - A vulnerability was detected in Exiftool up to 13.53. Impacted is the function Process_mrld of the file lib/Image/ExifTool/GM.pm of the component JPEG/QuickTime/MOV/MP4. The manipulation of the argum… New CWE-74
CWE-94
Injection
Code Injection 		CVE-2026-7580 2026-05-2 00:26 2026-05-1 Show GitHub Exploit DB Packet Storm
313 4.3 MEDIUM
Network 		- - A security vulnerability has been detected in alexta69 MeTube up to 2026.04.09. This affects the function on_prepare of the file app/main.py of the component CORS Policy. The manipulation leads to pe… New CWE-346
CWE-942
 Origin Validation Error
 Permissive Cross-domain Policy with Untrusted Domains 		CVE-2026-7581 2026-05-2 00:26 2026-05-1 Show GitHub Exploit DB Packet Storm
314 5.3 MEDIUM
Network 		- - The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wp_ajax… New CWE-862
 Missing Authorization 		CVE-2026-3143 2026-05-2 00:26 2026-05-1 Show GitHub Exploit DB Packet Storm
315 5.3 MEDIUM
Local 		- - A vulnerability was detected in AcademySoftwareFoundation OpenImageIO up to 3.2.0.1-dev. This vulnerability affects unknown code of the file src/dds.imageio/ddsinput.cpp of the component DDS Image Ha… New CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error') 
 Out-of-bounds Write 		CVE-2026-7582 2026-05-2 00:26 2026-05-1 Show GitHub Exploit DB Packet Storm
316 4.3 MEDIUM
Network 		- - A flaw has been found in Open5GS up to 2.7.7. This issue affects the function bsf_sess_find_by_ipv6prefix of the file /src/bsf/context.c of the component BSF. This manipulation of the argument ipv6Pr… New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-7583 2026-05-2 00:26 2026-05-2 Show GitHub Exploit DB Packet Storm
317 5.6 MEDIUM
Network 		- - A vulnerability was determined in D-Link M60 up to 1.20B02. Affected by this issue is some unknown functionality of the file /usr/bin/httpd. This manipulation causes weak password recovery. The attac… New CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2026-7554 2026-05-2 00:26 2026-05-1 Show GitHub Exploit DB Packet Storm
318 - - - In the Linux kernel, the following vulnerability has been resolved: ksmbd: use check_add_overflow() to prevent u16 DACL size overflow set_posix_acl_entries_dacl() and set_ntacl_dacl() accumulate AC… New - CVE-2026-31704 2026-05-2 00:24 2026-05-1 Show GitHub Exploit DB Packet Storm
319 - - - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix dir separator in SMB1 UNIX mounts When calling cifs_mount_get_tcon() with SMB1 UNIX mounts, @cifs_sb->mnt_cifs_f… New - CVE-2026-31710 2026-05-2 00:24 2026-05-1 Show GitHub Exploit DB Packet Storm
320 - - - In the Linux kernel, the following vulnerability has been resolved: fuse: abort on fatal signal during sync init When sync init is used and the server exits for some reason (error, crash) while pro… New - CVE-2026-31713 2026-05-2 00:24 2026-05-1 Show GitHub Exploit DB Packet Storm