Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200091 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-4291 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
200092 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるアプリケーションのコンテキスト内でコードを実行される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-4290 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
200093 5.5 警告
Local 		カスペルスキー - Kaspersky Internet Security の KL1 ドライバの IOCTL 処理機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-4307 2017-01-23 10:40 2016-08-26 Show GitHub Exploit DB Packet Storm
200094 5.5 警告
Local 		カスペルスキー - Kaspersky Internet Security の KLDISK ドライバの複数の IOCTL ハンドラにおける情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2016-4306 2017-01-23 10:40 2016-08-26 Show GitHub Exploit DB Packet Storm
200095 5.5 警告
Local 		カスペルスキー - Kaspersky Internet Security の KLIF ドライバのシステムコールのフィルタリング機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-4305 2017-01-23 10:40 2016-08-26 Show GitHub Exploit DB Packet Storm
200096 5.5 警告
Local 		カスペルスキー - Kaspersky Internet Security の KLIF ドライバのシステムコールのフィルタリング機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-4304 2017-01-23 10:40 2016-08-26 Show GitHub Exploit DB Packet Storm
200097 6.1 警告
Network 		Google - Google Chrome の Blink におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5226 2017-01-20 14:58 2016-12-1 Show GitHub Exploit DB Packet Storm
200098 4.3 警告
Network 		Google - Google Chrome の Blink の SVG フィルタにおける同一生成元ポリシーを回避される脆弱性 CWE-189
数値処理の問題 		CVE-2016-5224 2017-01-20 14:58 2016-12-1 Show GitHub Exploit DB Packet Storm
200099 6.5 警告
Network 		Google - Google Chrome の PDFium における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-5223 2017-01-20 14:58 2016-12-1 Show GitHub Exploit DB Packet Storm
200100 6.3 警告
Network 		Google - Google Chrome の ANGLE の libGLESv2 におけるバッファの検証を回避される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-5221 2017-01-20 14:58 2016-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2331 4.3 MEDIUM
Network 		- - The Multicollab: Content Team Collaboration and Editorial Workflow plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'cf_add_comment' fu… CWE-862
 Missing Authorization 		CVE-2025-4202 2026-05-19 02:44 2026-05-16 Show GitHub Exploit DB Packet Storm
2332 6.4 MEDIUM
Network 		- - Cookie Law Bar 1.2.1 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting unsanitized input to the Bar Message field. Att… CWE-79
Cross-site Scripting 		CVE-2021-47957 2026-05-19 02:44 2026-05-17 Show GitHub Exploit DB Packet Storm
2333 8.8 HIGH
Network 		- - The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to Privilege Escalation in version 3.4.9. This is due to missing WordPress capability enforcement in t… CWE-269
 Improper Privilege Management 		CVE-2026-8719 2026-05-19 02:44 2026-05-17 Show GitHub Exploit DB Packet Storm
2334 7.3 HIGH
Network 		- - A vulnerability was determined in Oinone Pamirs up to 7.2.0. Affected by this issue is the function RSQLToSQLNodeConnector.makeVariable of the component queryListByWrapper Interface. This manipulatio… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8734 2026-05-19 02:44 2026-05-17 Show GitHub Exploit DB Packet Storm
2335 6.3 MEDIUM
Network 		- - A vulnerability was identified in Oinone Pamirs up to 7.2.0. This affects the function JsonUtils.parseMap of the file PamirsParserConfig.java of the component appConfigQuery Interface. Such manipulat… CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2026-8735 2026-05-19 02:44 2026-05-17 Show GitHub Exploit DB Packet Storm
2336 4.1 MEDIUM
Physics 		- - A security flaw has been discovered in Oinone Pamirs up to 7.2.0. This vulnerability affects the function request.getParameter of the file LocalFileClient.java of the component RestController. Perfor… CWE-22
Path Traversal 		CVE-2026-8736 2026-05-19 02:44 2026-05-17 Show GitHub Exploit DB Packet Storm
2337 5.3 MEDIUM
Network 		- - A weakness has been identified in Sanluan PublicCMS 5.202506.d. This issue affects the function execute of the file publiccms-trade/src/main/java/com/publiccms/views/directive/trade/TradeAddressListD… CWE-287
CWE-306
Improper Authentication
Missing Authentication for Critical Function 		CVE-2026-8737 2026-05-19 02:44 2026-05-17 Show GitHub Exploit DB Packet Storm
2338 6.5 MEDIUM
Network 		- - A security vulnerability has been detected in Sanluan PublicCMS 5.202506.d. Impacted is the function TradeOrderController.pay/TradePaymentController.pay/AccountGatewayComponent.pay of the file public… CWE-840
 Business Logic Errors 		CVE-2026-8738 2026-05-19 02:44 2026-05-17 Show GitHub Exploit DB Packet Storm
2339 5.3 MEDIUM
Network 		- - A vulnerability was detected in Sanluan PublicCMS 5.202506.d. The affected element is the function getSignKey of the file publiccms-core/src/main/java/com/publiccms/logic/component/config/SafeConfigC… CWE-320
CWE-321
 Key Management Errors
 Use of Hard-coded Cryptographic Key 		CVE-2026-8739 2026-05-19 02:44 2026-05-17 Show GitHub Exploit DB Packet Storm
2340 6.3 MEDIUM
Network 		- - A flaw has been found in Sanluan PublicCMS 5.202506.d. The impacted element is the function execute of the file publiccms-core/src/main/java/com/publiccms/views/directive/tools/TemplateResultDirectiv… CWE-791
CWE-1336
 Incomplete Filtering of Special Elements
 Improper Neutralization of Special Elements Used in a Template Engine 		CVE-2026-8740 2026-05-19 02:44 2026-05-17 Show GitHub Exploit DB Packet Storm