Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202741 5 警告 QNAP Systems - QNAP Signage Station における認証を回避される脆弱性 CWE-Other
その他 		CVE-2015-6036 2016-03-3 12:21 2016-02-25 Show GitHub Exploit DB Packet Storm
202742 4.3 警告 Huawei - Huawei Agile Controller-Campus のソフトウェアの不特定のポータル認証ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2214 2016-03-3 11:35 2016-02-3 Show GitHub Exploit DB Packet Storm
202743 6.8 警告 FFmpeg - FFmpeg の libavcodec/pngenc.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2327 2016-03-3 11:25 2016-01-15 Show GitHub Exploit DB Packet Storm
202744 4.3 警告 LibTIFF - tiff2ps で使用される LibTIFF におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2596 2016-03-2 16:59 2010-04-16 Show GitHub Exploit DB Packet Storm
202745 3.5 注意 Moodle - Moodle の group/overview.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-5269 2016-03-2 16:24 2015-09-21 Show GitHub Exploit DB Packet Storm
202746 4 警告 Moodle - Moodle の rating コンポーネントにおける重要な情報を取得される脆弱性 CWE-200
CWE-264
CVE-2015-5268 2016-03-2 16:24 2015-09-21 Show GitHub Exploit DB Packet Storm
202747 5 警告 Moodle - Moodle の lib/moodlelib.php におけるパスワードリカバリトークンを推測される脆弱性 CWE-200
CWE-Other
CVE-2015-5267 2016-03-2 16:23 2015-09-21 Show GitHub Exploit DB Packet Storm
202748 4 警告 Moodle - Moodle の wiki コンポーネントにおける任意のファイルを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-5265 2016-03-2 16:23 2015-09-21 Show GitHub Exploit DB Packet Storm
202749 4.3 警告 Moodle - Moodle の SCORM モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-3275 2016-03-2 16:23 2015-07-13 Show GitHub Exploit DB Packet Storm
202750 4.3 警告 Moodle - Moodle の user/lib.php の user_get_user_details 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-3274 2016-03-2 16:23 2015-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
331 9.8 CRITICAL
Network 		- - vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, SuppressedError allows attackers to escape the sandbox and run arbitrary code. This issue has been patched in version 3.11.0. New CWE-94
CWE-693
Code Injection
 Protection Mechanism Failure 		CVE-2026-26332 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
332 9.6 CRITICAL
Adjacent 		- - Buffer overflow due to incorrect authorization in PLC FW New CWE-863
 Incorrect Authorization 		CVE-2026-25293 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
333 5.5 MEDIUM
Local 		- - Memory corruption while processing IOCTL command when device is in power-save state. New CWE-749
 Exposed Dangerous Method or Function 		CVE-2026-25266 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
334 9.8 CRITICAL
Network 		- - vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability through the inspect function. This allows attackers to write code which can es… New CWE-94
CWE-693
Code Injection
 Protection Mechanism Failure 		CVE-2026-24781 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
335 9.8 CRITICAL
Network 		- - vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code which can escape from the VM2 sandbox and… New CWE-94
CWE-693
Code Injection
 Protection Mechanism Failure 		CVE-2026-24118 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
336 7.8 HIGH
Local 		- - Memory Corruption when copying data from a freed source while executing performance counter deselect operation. New CWE-416
 Use After Free 		CVE-2026-24082 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
337 7.8 HIGH
Local 		- - Memory corruption when another driver calls an IOCTL with invalid input/output buffer. New CWE-822
 Untrusted Pointer Dereference 		CVE-2025-47408 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
338 7.8 HIGH
Local 		- - Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level. New CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2025-47407 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
339 6.1 MEDIUM
Local 		- - Information Disclosure while processing IOCTL handler callbacks without verifying buffer size. New CWE-126
 Buffer Over-read 		CVE-2025-47406 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm
340 7.8 HIGH
Local 		- - Memory corruption when processing camera sensor input/output control codes with invalid output buffers. New CWE-822
 Untrusted Pointer Dereference 		CVE-2025-47405 2026-05-5 02:16 2026-05-5 Show GitHub Exploit DB Packet Storm