Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198531	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player における解放済みメモリ使用 (use-after-free) の脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-7892	2016-12-16 14:07	2016-12-13	Show	GitHub Exploit DB Packet Storm

198532	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player の同一生成元ポリシーの実装におけるセキュリティを回避される脆弱性	CWE-254 セキュリティ機能	CVE-2016-7890	2016-12-16 13:58	2016-12-13	Show	GitHub Exploit DB Packet Storm

198533	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player の MovieClip クラスにおける任意のコードを実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-7881	2016-12-16 13:58	2016-12-13	Show	GitHub Exploit DB Packet Storm

198534	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-7880	2016-12-16 13:58	2016-12-13	Show	GitHub Exploit DB Packet Storm

198535	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-7879	2016-12-16 13:58	2016-12-13	Show	GitHub Exploit DB Packet Storm

198536	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player の PSDK のメディアプレイヤークラスにおける任意のコードを実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-7878	2016-12-16 13:58	2016-12-13	Show	GitHub Exploit DB Packet Storm

198537	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player の Action Message Format のシリアル化における任意のコードを実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-7877	2016-12-16 13:58	2016-12-13	Show	GitHub Exploit DB Packet Storm

198538	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player の Clipboard クラスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-7876	2016-12-16 13:58	2016-12-13	Show	GitHub Exploit DB Packet Storm

198539	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player の BitmapData クラスにおける任意のコードを実行される脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2016-7875	2016-12-16 13:58	2016-12-13	Show	GitHub Exploit DB Packet Storm

198540	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player の NetConnection クラスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-7874	2016-12-16 13:58	2016-12-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1461	6.5	MEDIUM Network	-	-	The Forminator Forms plugin for WordPress is vulnerable to Missing Authorization in versions up to and including 1.53.0. This is due to the listen_for_saving_export_schedule() function in library/cla…	CWE-862 Missing Authorization	CVE-2026-6214	2026-05-7 23:00	2026-05-7	Show	GitHub Exploit DB Packet Storm

1462	8.8	HIGH Network	-	-	The Slider Revolution plugin for WordPress is vulnerable to Arbitrary File Upload in versions 7.0.0 to 7.0.10 via the '_get_media_url' and '_check_file_path' function. This is due to insufficient fil…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-6692	2026-05-7 23:00	2026-05-7	Show	GitHub Exploit DB Packet Storm

1463	7.5	HIGH Network	-	-	The BetterDocs Pro plugin for WordPress is vulnerable to SQL Injection via the `get_current_letter_docs` and `docs_sort_by_letter` AJAX actions in all versions up to, and including, 3.7.0. This is du…	CWE-89 SQL Injection	CVE-2026-4348	2026-05-7 23:00	2026-05-7	Show	GitHub Exploit DB Packet Storm

1464	8.1	HIGH Network	-	-	The WP-Optimize – Cache, Compress images, Minify & Clean database to boost page speed & performance plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validat…	CWE-22 Path Traversal	CVE-2026-7252	2026-05-7 23:00	2026-05-7	Show	GitHub Exploit DB Packet Storm

1465	4.3	MEDIUM Network	google	chrome	Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted C…	CWE-693 Protection Mechanism Failure	CVE-2026-8004	2026-05-7 22:54	2026-05-7	Show	GitHub Exploit DB Packet Storm

1466	4.3	MEDIUM Adjacent	google	chrome	Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed an attacker on the local network segment to bypass same origin policy via malicious network traffic.…	CWE-20 NVD-CWE-noinfo Improper Input Validation	CVE-2026-8005	2026-05-7 22:54	2026-05-7	Show	GitHub Exploit DB Packet Storm

1467	8.8	HIGH Network	redistimeseries	redistimeseries	RedisTimeSeries is a time-series module for Redis. In all versions before 1.12.14 of RedisTimeSeries, the module does not properly validate serialized values processed through the Redis RESTORE comma…	CWE-122 Heap-based Buffer Overflow	CVE-2026-25588	2026-05-7 22:46	2026-05-6	Show	GitHub Exploit DB Packet Storm

1468	8.8	HIGH Network	redisbloom	redisbloom	RedisBloom is a probabilistic data structures module for Redis. In all versions of RedisBloom before 2.8.20, the module does not properly validate serialized values processed through the Redis RESTOR…	CWE-122 Heap-based Buffer Overflow	CVE-2026-25589	2026-05-7 22:44	2026-05-6	Show	GitHub Exploit DB Packet Storm

1469	7.5	HIGH Network	owasp	modsecurity	ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Libmodsecurity is one component of the ModSecurity v3 project. A segmentation fault occu…	CWE-125 Out-of-bounds Read	CVE-2026-30923	2026-05-7 22:41	2026-05-6	Show	GitHub Exploit DB Packet Storm

1470	5.4	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in Dialog in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HT…	CWE-20 NVD-CWE-noinfo Improper Input Validation	CVE-2026-7998	2026-05-7 22:40	2026-05-7	Show	GitHub Exploit DB Packet Storm