Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201231 9.8 緊急
Network 		The PHP Group - PHP の ext/wddx/wddx.c の php_wddx_process_data 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-7129 2016-09-13 15:39 2016-08-18 Show GitHub Exploit DB Packet Storm
201232 5.3 警告
Network 		The PHP Group - PHP の ext/exif/exif.c の exif_process_IFD_in_TIFF 関数におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-7128 2016-09-13 15:39 2016-08-18 Show GitHub Exploit DB Packet Storm
201233 9.8 緊急
Network 		The PHP Group - PHP の ext/gd/gd.c の imagegammacorrect 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-7127 2016-09-13 15:39 2016-08-18 Show GitHub Exploit DB Packet Storm
201234 9.8 緊急
Network 		The PHP Group - PHP の ext/gd/gd.c の imagetruecolortopalette 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-7126 2016-09-13 15:39 2016-08-18 Show GitHub Exploit DB Packet Storm
201235 7.5 重要
Network 		The PHP Group - PHP の ext/session/session.c における任意の型のセッションデータを挿入される脆弱性 CWE-Other
その他 		CVE-2016-7125 2016-09-13 15:39 2016-08-18 Show GitHub Exploit DB Packet Storm
201236 9.8 緊急
Network 		The PHP Group - PHP の ext/standard/var_unserializer.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-7124 2016-09-13 15:39 2016-08-18 Show GitHub Exploit DB Packet Storm
201237 8.8 重要
Network 		Google - Google Chrome で使用される Skia の SkPath.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-7395 2016-09-13 14:03 2016-08-31 Show GitHub Exploit DB Packet Storm
201238 6.1 警告
Network 		Google - Google Chrome で使用される Blink におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5148 2016-09-13 14:01 2016-08-31 Show GitHub Exploit DB Packet Storm
201239 6.1 警告
Network 		Google - Google Chrome で使用される Blink における任意の Web スクリプトまたは HTML を挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5147 2016-09-13 14:01 2016-08-31 Show GitHub Exploit DB Packet Storm
201240 6.5 警告
Network 		ジュニパーネットワークス - Juniper Junos OS の PKId における証明書検証メカニズムを回避される脆弱性 CWE-Other
その他 		CVE-2016-1280 2016-09-12 16:35 2016-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1031 8.3 HIGH
Network 		- - Missing authorization in Windows Admin Center allows an authorized attacker to elevate privileges over a network. New CWE-862
 Missing Authorization 		CVE-2026-35438 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1032 5.5 MEDIUM
Local 		- - Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally. New CWE-552
 Files or Directories Accessible to External Parties 		CVE-2026-35440 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1033 8.4 HIGH
Local 		- - Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. New CWE-416
 Use After Free 		CVE-2026-40358 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1034 7.8 HIGH
Local 		- - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. New CWE-416
 Use After Free 		CVE-2026-40359 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1035 7.8 HIGH
Local 		- - Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. New CWE-125
Out-of-bounds Read 		CVE-2026-40360 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1036 8.4 HIGH
Local 		- - Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. New CWE-416
 Use After Free 		CVE-2026-40361 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1037 7.8 HIGH
Local 		- - Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. New CWE-122
Heap-based Buffer Overflow 		CVE-2026-40362 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1038 8.4 HIGH
Local 		- - Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. New CWE-122
Heap-based Buffer Overflow 		CVE-2026-40363 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1039 8.4 HIGH
Local 		- - Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. New CWE-122
CWE-843
CWE-908
Heap-based Buffer Overflow
Type Confusion
 Use of Uninitialized Resource 		CVE-2026-40364 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1040 8.4 HIGH
Local 		- - Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. New CWE-416
 Use After Free 		CVE-2026-40366 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm