Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198961 5.5 警告
Local 		Linux - Linux Kernel の ext2 および ext4 ファイルシステムの実装の mbcache 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8952 2016-10-20 18:00 2015-11-5 Show GitHub Exploit DB Packet Storm
198962 7.8 重要
Local 		Linux - Linux Kernel の mm/memory.c における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-3288 2016-10-20 18:00 2015-07-7 Show GitHub Exploit DB Packet Storm
198963 8.8 重要
Network 		Ruckus Wireless, Inc. - Ruckus Wireless H500 の Web 管理インターフェースにおけるコマンドを挿入される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2016-1000216 2016-10-20 17:24 2016-08-3 Show GitHub Exploit DB Packet Storm
198964 3.3
Local 		SAP - SAP Netweaver における RFC 機能のコールバックの実行を拒否したことを隠蔽される脆弱性 CWE-Other
その他 		CVE-2016-7437 2016-10-20 16:12 2016-10-11 Show GitHub Exploit DB Packet Storm
198965 7.5 重要
Network 		SAP - SAP Netweaver における Unified Connectivity アクセス制御リストを回避される脆弱性 CWE-Other
その他 		CVE-2016-3635 2016-10-20 16:12 2016-10-11 Show GitHub Exploit DB Packet Storm
198966 5.4 警告
Network 		IBM - IBM Business Process Manager のビジネススペースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3056 2016-10-20 15:56 2016-09-30 Show GitHub Exploit DB Packet Storm
198967 8.6 重要
Network 		IBM - IBM Security Guardium Database Activity Monitor における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-0249 2016-10-20 15:56 2016-10-3 Show GitHub Exploit DB Packet Storm
198968 6.8 警告
Network 		IBM - IBM Cloud Orchestrator におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2016-0204 2016-10-20 15:56 2016-05-30 Show GitHub Exploit DB Packet Storm
198969 8.8 重要
Network 		レッドハット - Red Hat JBoss Enterprise Application Platform の JMX サーブレットにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-7065 2016-10-20 15:36 2016-10-6 Show GitHub Exploit DB Packet Storm
198970 9.1 緊急
Network 		google-adsense-and-hotel-booking project - WordPress 用 google-adsense-and-hotel-booking プラグインの Open Proxy における脆弱性 CWE-Other
その他 		CVE-2015-1000009 2016-10-20 15:35 2015-08-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1261 8.5 HIGH
Network 		openstack keystone An issue was discovered in OpenStack Keystone 13 through 29. POST /v3/credentials did not validate that the caller-supplied project_id for an EC2-type credential matched the project of the authentica… CWE-863
 Incorrect Authorization 		CVE-2026-43001 2026-05-5 03:25 2026-05-1 Show GitHub Exploit DB Packet Storm
1262 7.8 HIGH
Local 		zhinst labone_q The LabOne Q serialization framework uses a class-loading mechanism (import_cls) to dynamically import and instantiate Python classes during deserialization. Prior to the fix, this mechanism accepted… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-7584 2026-05-5 03:23 2026-05-1 Show GitHub Exploit DB Packet Storm
1263 9.8 CRITICAL
Network 		bitwarden cli Bitwarden CLI 2026.4.0 from 2026-04-22T21:57Z to 2026-04-22T23:30Z, when obtained from npm, had embedded malicious code. This is related to a Checkmarx supply chain incident. CWE-78
CWE-94
OS Command 
Code Injection 		CVE-2026-42994 2026-05-5 03:23 2026-05-1 Show GitHub Exploit DB Packet Storm
1264 6.5 MEDIUM
Network 		apple container Users who connect to malicious registries with hostnames matching the bypass patterns will have their registry credentials exposed in plaintext. This issue is fixed in container version 0.12.3. CWE-522
 Insufficiently Protected Credentials 		CVE-2026-28909 2026-05-5 03:22 2026-05-1 Show GitHub Exploit DB Packet Storm
1265 8.8 HIGH
Network 		hkuds openharness HKUDS OpenHarness contains a remote code execution vulnerability in the /bridge slash command that allows remote senders accepted by configuration to execute arbitrary operating system commands. Atta… CWE-78
OS Command  		CVE-2026-7551 2026-05-5 03:22 2026-05-1 Show GitHub Exploit DB Packet Storm
1266 8.1 HIGH
Network 		langflow langflow IBM Langflow OSS 1.0.0 through 1.8.4 could allow any user to supply a flow_id to read transaction logs and vertex build data belonging to other users, and to delete persisted vertex build data for an… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-6542 2026-05-5 03:21 2026-05-1 Show GitHub Exploit DB Packet Storm
1267 9.8 CRITICAL
Network 		progress moveit_automation Authentication bypass by primary weakness vulnerability in Progress Software MOVEit Automation allows Authentication Bypass. This issue affects MOVEit Automation: from 2025.0.0 before 2025.0.9, from… CWE-305
 Authentication Bypass by Primary Weakness 		CVE-2026-4670 2026-05-5 03:20 2026-05-1 Show GitHub Exploit DB Packet Storm
1268 8.8 HIGH
Network 		- - An XML external entity (XXE) vulnerability in the /designer/loadReport endpoint of SpringBlade v4.8.0 allows authenticated attackers to execute arbitrary code via injecting a crafted payload. CWE-611
XXE 		CVE-2026-36765 2026-05-5 03:16 2026-05-1 Show GitHub Exploit DB Packet Storm
1269 8.8 HIGH
Network 		- - An issue in the fileEntityId parameter in the /a/file/upload endpoint of JeeSite v5.15.1 allows authenticated attackers with file upload permissions to execute a path traversal and write arbitrary fi… CWE-22
Path Traversal 		CVE-2026-36762 2026-05-5 03:16 2026-05-1 Show GitHub Exploit DB Packet Storm
1270 7.5 HIGH
Network 		- - Buffer Over-read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue. CWE-126
 Buffer Over-read 		CVE-2026-34059 2026-05-5 03:16 2026-05-4 Show GitHub Exploit DB Packet Storm