Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201221	4.3	警告	Mozilla Foundation openSUSE project SUSE オラクル	-	Mozilla Firefox の libstagefright におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1957	2016-12-5 17:48	2016-03-8	Show	GitHub Exploit DB Packet Storm

201222	6.8	警告	Mozilla Foundation openSUSE project SUSE オラクル	-	Mozilla Firefox の dom/security/nsCSPContext.cpp におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1954	2016-12-5 17:47	2016-03-8	Show	GitHub Exploit DB Packet Storm

201223	6.8	警告	Mozilla Foundation openSUSE project SUSE オラクル	-	Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1952	2016-12-5 17:47	2016-03-8	Show	GitHub Exploit DB Packet Storm

201224	7.8	重要 Local	Apache Software Foundation オラクル	-	複数の Linux ディストリビューションの Tomcat パッケージにおける root 権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-5425	2016-12-5 17:01	2016-10-10	Show	GitHub Exploit DB Packet Storm

201225	7.3	重要 Network	ヒューレット・パッカード	-	HP Network Automation Software の RMI サービスにおける任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2016-4385	2016-12-5 17:01	2016-09-20	Show	GitHub Exploit DB Packet Storm

201226	6.8	警告	Debian Canonical Apache Software Foundation	-	Apache Tomcat における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2015-5346	2016-12-5 17:01	2015-12-10	Show	GitHub Exploit DB Packet Storm

201227	5	警告	ヒューレット・パッカード Debian Canonical Apache Software Foundation	-	Apache Tomcat の Mapper コンポーネントにおけるディレクトリの存在を特定される脆弱性	CWE-22 パス・トラバーサル	CVE-2015-5345	2016-12-5 17:01	2015-12-6	Show	GitHub Exploit DB Packet Storm

201228	4	警告	ヒューレット・パッカード Debian Canonical Apache Software Foundation	-	Apache Tomcat の RequestUtil.java におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-5174	2016-12-5 17:01	2015-08-17	Show	GitHub Exploit DB Packet Storm

201229	5	警告	ヒューレット・パッカード Debian Apache Software Foundation	-	Apache Tomcat の Expression Language の実装における SecurityManager 保護メカニズムを回避される脆弱性	CWE-Other その他	CVE-2014-7810	2016-12-5 17:01	2014-12-9	Show	GitHub Exploit DB Packet Storm

201230	7.5	重要 Network	OpenSSL Project SUSE	-	OpenSSL の crypto/x509/x509_vfy.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-7052	2016-12-5 16:57	2016-09-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2531	7.5	HIGH Network	benoitc	hackney	Allocation of Resources Without Limits or Throttling vulnerability in benoitc hackney allows Flooding. The URL parser in src/hackney_url.erl converts every unrecognized URL scheme to a permanent BEAM…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-47067	2026-05-27 22:52	2026-05-26	Show	GitHub Exploit DB Packet Storm

2532	6.5	MEDIUM Local	benoitc	hackney	Interpretation Conflict vulnerability in benoitc hackney allows Server Side Request Forgery. hackney_url:normalize/2 URL-decodes the host component after the URL has been parsed into a #hackney_url{}…	CWE-436 CWE-918 Interpretation Conflict Server-Side Request Forgery (SSRF)	CVE-2026-47076	2026-05-27 22:51	2026-05-26	Show	GitHub Exploit DB Packet Storm

2533	5.5	MEDIUM Local	ibm	db2	IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes DB2 Connect Server) stores potentially sensitive information in log files that could be read by a local …	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2025-13755	2026-05-27 22:49	2026-05-27	Show	GitHub Exploit DB Packet Storm

2534	9.8	CRITICAL Network	nvidia	isaac_launchable	NVIDIA Isaac Launchable for Linux contains a vulnerability where sensitive information is transmitted in clear text. A successful exploit of this vulnerability might lead to code execution, escalatio…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2026-24212	2026-05-27 22:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

2535	6.1	MEDIUM Network	joomla	joomla\!	Lack of output escaping leads to a XSS vector in the feed modules.	CWE-79 Cross-site Scripting	CVE-2026-25900	2026-05-27 22:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

2536	6.1	MEDIUM Network	joomla	joomla\!	Lack of output escaping leads to a XSS vector in the multilingual associations component.	CWE-79 Cross-site Scripting	CVE-2026-25901	2026-05-27 22:40	2026-05-27	Show	GitHub Exploit DB Packet Storm

2537	6.1	MEDIUM Network	joomla	joomla\!	Lack of output escaping leads to a XSS vector in the content history component.	CWE-79 Cross-site Scripting	CVE-2026-30894	2026-05-27 22:29	2026-05-27	Show	GitHub Exploit DB Packet Storm

2538	6.1	MEDIUM Network	joomla	joomla\!	Lack of output escaping leads to a XSS vector in the readmore links for com_content.	CWE-79 Cross-site Scripting	CVE-2026-30895	2026-05-27 22:28	2026-05-27	Show	GitHub Exploit DB Packet Storm

2539	4.3	MEDIUM Network	joomla	joomla\!	Lack of CSRF token validation lead to a CSRF attack vector in the admin activation endpoint of com_users.	CWE-352 Origin Validation Error	CVE-2026-35220	2026-05-27 22:18	2026-05-27	Show	GitHub Exploit DB Packet Storm

2540	9.8	CRITICAL Network	joomla	joomla\!	Improperly built filter clauses lead to a SQL injection vulnerability in the search query for com_finder.	CWE-89 SQL Injection	CVE-2026-35221	2026-05-27 22:05	2026-05-27	Show	GitHub Exploit DB Packet Storm