Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203341	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-0166	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

203342	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 10 および 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-0164	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

203343	7.8	重要 Local	マイクロソフト	-	Microsoft Internet Explorer 11 における権限昇格の脆弱性	CWE-Other その他	CVE-2016-0160	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

203344	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-0159	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

203345	6.5	警告 Network	マイクロソフト	-	Microsoft Edge における同一生成元ポリシーを回避される脆弱性	CWE-Other その他	CVE-2016-0161	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

203346	6.5	警告 Network	マイクロソフト	-	Microsoft Edge における同一生成元ポリシーを回避される脆弱性	CWE-Other その他	CVE-2016-0158	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

203347	7.5	重要 Network	マイクロソフト	-	Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-0157	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

203348	7.5	重要 Network	マイクロソフト	-	Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-0156	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

203349	7.5	重要 Network	マイクロソフト	-	Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-0155	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

203350	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-0154	2016-04-15 11:54	2016-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
331	9.1	CRITICAL Network	ollama	ollama	Ollama before 0.17.1 contains a heap out-of-bounds read vulnerability in the GGUF model loader. The /api/create endpoint accepts an attacker-supplied GGUF file in which the declared tensor offset and… Update	CWE-125 Out-of-bounds Read	CVE-2026-7482	2026-05-11 21:27	2026-05-4	Show	GitHub Exploit DB Packet Storm

332	8.6	HIGH Network	-	-	The Magic Link authentication flow accepts multiple invalid authentication requests without adequate rate limiting or resource control, leading to uncontrolled memory usage growth. This vulnerabilit… New	CWE-400 Uncontrolled Resource Consumption	CVE-2025-10470	2026-05-11 21:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

333	9.8	CRITICAL Network	-	-	OS command injection in Dashboard Server interface in Universal Robots PolyScope versions prior to 5.25.1 allows unauthenticated attacker to craft commands that will execute code on the robot's OS. New	CWE-78 OS Command	CVE-2026-8153	2026-05-11 19:16	2026-05-8	Show	GitHub Exploit DB Packet Storm

334	-		-	-	ATutor is vulnerable to Reflected XSS in /install/install.php endpoint. An attacker can provide a specially crafted URL that, when opened, results in arbitrary JavaScript execution in the victim's br… New	CWE-79 Cross-site Scripting	CVE-2026-6956	2026-05-11 19:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

335	-		-	-	ATutor is vulnerable to Reflected XSS in /install/upgrade.php endpoint. An attacker can provide a specially crafted URL that, when opened, results in arbitrary JavaScript execution in the victim's br… New	CWE-79 Cross-site Scripting	CVE-2026-6909	2026-05-11 19:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

336	7.2	HIGH Network	-	-	Path traversal vulnerability exists in GROWI v7.5.0 and earlier, which may allow an attacker to execute arbitrary EJS templates on the server when an email server is running in GROWI. New	CWE-22 Path Traversal	CVE-2026-41951	2026-05-11 19:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

337	9.8	CRITICAL Network	-	-	Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains a use of hard-coded credentials vulnerability. An unauthenticated attacker with local access could p… New	CWE-798 Use of Hard-coded Credentials	CVE-2026-40636	2026-05-11 19:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

338	5.8	MEDIUM Network	-	-	Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper neutralization of formula elements in a CSV File vulnerability in the UI. An unauthentic… New	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2026-35157	2026-05-11 19:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

339	8.0	HIGH Network	-	-	Dell Automation Platform versions prior to 2.0.0.0, contains a missing authorization vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading … New	CWE-862 Missing Authorization	CVE-2026-32658	2026-05-11 19:16	2026-05-11	Show	GitHub Exploit DB Packet Storm

340	6.7	MEDIUM Local	-	-	Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper privilege management vulnerability in the OS. A high privileged attacker with local acce… New	CWE-269 Improper Privilege Management	CVE-2026-26946	2026-05-11 19:16	2026-05-11	Show	GitHub Exploit DB Packet Storm