Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203641 7.5 重要
Network 		オートデスク株式会社 - Autodesk Backburner にスタックバッファオーバーフローの脆弱性 CWE-119
CWE-Other
CVE-2016-2344 2016-04-6 11:35 2016-03-28 Show GitHub Exploit DB Packet Storm
203642 10 危険 Zhuhai RaySharp Technology Co., Ltd. - Zhuhai RaySharp のファームウェアにおけるアクセス権を取得される脆弱性 CWE-Other
CWE-Other
CVE-2015-8286 2016-04-5 12:25 2016-02-17 Show GitHub Exploit DB Packet Storm
203643 9.8 緊急
Network 		Patterson Dental Supply, Inc. - Eaglesoft (Patterson Dental) でパスワードがハードコードされている問題 CWE-Other
その他 		CVE-2016-2343 2016-04-5 12:24 2016-03-30 Show GitHub Exploit DB Packet Storm
203644 7.5 重要
Network 		レッドハット - Windows 上で稼動する WildFly のサーブレットフィルタ制限のメカニズムにおける重要なファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2016-0793 2016-04-5 11:58 2016-02-9 Show GitHub Exploit DB Packet Storm
203645 7.5 重要
Network 		ICONICS, Inc. - ICONICS WebHMI におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-2289 2016-04-5 10:44 2016-03-31 Show GitHub Exploit DB Packet Storm
203646 7.5 重要
Network 		シスコシステムズ - Cisco FireSIGHT システム ソフトウェアおよび ASA with FirePOWER Services におけるマルウェア保護を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1345 2016-04-4 11:47 2016-03-30 Show GitHub Exploit DB Packet Storm
203647 5 警告 サン・マイクロシステムズ
日立
オラクル		 - 複数の Oracle Java 製品 における JAXP に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4803 2016-04-1 12:05 2015-10-20 Show GitHub Exploit DB Packet Storm
203648 8.8 重要
Network 		Google - Google Chrome で使用される V8 におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-3679 2016-04-1 11:00 2016-03-24 Show GitHub Exploit DB Packet Storm
203649 5 警告 Huawei - Huawei E5151 および Huawei E5186 に不十分なランダム値を使用している問題 CWE-20
CWE-Other
CVE-2015-8265 2016-03-31 17:51 2016-02-1 Show GitHub Exploit DB Packet Storm
203650 3.5 注意 日立 - Hitachi Compute Systems Manager における情報漏えいに関する脆弱性 CWE-noinfo
情報不足 		- 2016-03-31 17:50 2016-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
51 - - - Pocketbase is an open source web backend written in go. Prior to 0.22.42 and 0.37.4, in some situations, if an attacker knows the email address of the victim they can create and link an unverified Po… New CWE-287
Improper Authentication 		CVE-2026-44166 2026-05-13 03:17 2026-05-13 Show GitHub Exploit DB Packet Storm
52 8.2 HIGH
Network 		- - ssrfcheck is a library that checks if a string contains a potential SSRF attack. In 1.3.0 and earlier, ssrfcheck fails to block Server-Side Request Forgery attacks when the target private IP address … New CWE-184
CWE-918
 Incomplete Blacklist
Server-Side Request Forgery (SSRF)  		CVE-2026-43929 2026-05-13 03:17 2026-05-13 Show GitHub Exploit DB Packet Storm
53 6.8 MEDIUM
Network 		- - Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, refresh tokens are not invalidated when the user's security_stamp is rotated by some security-sensitive operations (pass… New CWE-613
 Insufficient Session Expiration 		CVE-2026-43911 2026-05-13 03:17 2026-05-12 Show GitHub Exploit DB Packet Storm
54 8.8 HIGH
Network 		- - AntSword is a cross-platform website management toolkit. Prior to 2.1.16, incomplete noxss() sanitization leads to 1-click RCE via jquery.terminal format code injection. This vulnerability is fixed i… New CWE-79
CWE-94
CWE-1188
Cross-site Scripting
Code Injection
 Insecure Default Initialization of Resource 		CVE-2026-43892 2026-05-13 03:17 2026-05-13 Show GitHub Exploit DB Packet Storm
55 7.5 HIGH
Network 		- - changedetection.io is a free open source web page change detection tool. Prior to 0.55.1, the vulnerability is caused by trusting attacker-controlled snapshot paths restored from backup files. The vu… New CWE-73
 External Control of File Name or Path 		CVE-2026-43891 2026-05-13 03:17 2026-05-13 Show GitHub Exploit DB Packet Storm
56 4.2 MEDIUM
Network 		- - WWBN AVideo is an open source video platform. In versions up to and including 29.0, plugin/PayPalYPT/agreementCancel.json.php cancels a PayPal billing agreement using an attacker-supplied agreement p… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-43883 2026-05-13 03:17 2026-05-12 Show GitHub Exploit DB Packet Storm
57 5.4 MEDIUM
Network 		- - WWBN AVideo is an open source video platform. In versions up to and including 29.0, objects/userSavePhoto.php is a legacy profile-photo endpoint that accepts a base64 POST parameter and writes the de… New CWE-352
 Origin Validation Error 		CVE-2026-43877 2026-05-13 03:17 2026-05-12 Show GitHub Exploit DB Packet Storm
58 7.5 HIGH
Network 		- - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS T… New CWE-416
 Use After Free 		CVE-2026-43668 2026-05-13 03:17 2026-05-12 Show GitHub Exploit DB Packet Storm
59 6.2 MEDIUM
Local 		- - An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, mac… New CWE-787
 Out-of-bounds Write 		CVE-2026-43666 2026-05-13 03:17 2026-05-12 Show GitHub Exploit DB Packet Storm
60 7.5 HIGH
Network 		- - The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web co… New CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2026-43658 2026-05-13 03:17 2026-05-12 Show GitHub Exploit DB Packet Storm