Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203941 3.3
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバにおけるカーネルオブジェクトのアドレスについての重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0175 2016-05-13 16:06 2016-05-10 Show GitHub Exploit DB Packet Storm
203942 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0174 2016-05-13 16:06 2016-05-10 Show GitHub Exploit DB Packet Storm
203943 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0173 2016-05-13 16:06 2016-05-10 Show GitHub Exploit DB Packet Storm
203944 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0171 2016-05-13 16:06 2016-05-10 Show GitHub Exploit DB Packet Storm
203945 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0180 2016-05-13 15:59 2016-05-10 Show GitHub Exploit DB Packet Storm
203946 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品の Windows Shell における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-0179 2016-05-13 15:49 2016-05-10 Show GitHub Exploit DB Packet Storm
203947 8.8 重要
Network 		マイクロソフト - 複数の Microsoft Windows 製品の RPC NDR Engine における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0178 2016-05-13 15:33 2016-05-10 Show GitHub Exploit DB Packet Storm
203948 8.8 重要
Network 		マイクロソフト - 複数の Microsoft Windows 製品の Imaging Component における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-0195 2016-05-13 15:16 2016-05-10 Show GitHub Exploit DB Packet Storm
203949 8.8 重要
Network 		マイクロソフト - 複数の Microsoft Windows 製品の GDI における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-0184 2016-05-13 15:16 2016-05-10 Show GitHub Exploit DB Packet Storm
203950 8.8 重要
Network 		マイクロソフト - 複数の Microsoft Windows 製品の GDI における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-0170 2016-05-13 15:16 2016-05-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
181 6.4 MEDIUM
Network 		- - Queue Management System 4.0.0 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through user creation fields. Attackers can ins… New CWE-79
Cross-site Scripting 		CVE-2020-37240 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
182 8.2 HIGH
Network 		- - Supsystic Ultimate Maps 1.1.12 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'sidx' GET parame… New CWE-89
SQL Injection 		CVE-2020-37242 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
183 8.2 HIGH
Network 		- - Supsystic Pricing Table 1.8.7 contains an SQL injection vulnerability in the 'sidx' GET parameter that allows unauthenticated attackers to execute arbitrary SQL queries through the getListForTbl acti… New CWE-89
SQL Injection 		CVE-2020-37243 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
184 8.2 HIGH
Network 		- - Supsystic Membership 1.4.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'search' and 'sidx' p… New CWE-89
SQL Injection 		CVE-2020-37244 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
185 7.5 HIGH
Network 		- - Supsystic Digital Publications 1.6.9 contains a path traversal vulnerability in the Folder input field that allows attackers to access files outside the web root by injecting directory traversal sequ… New CWE-79
Cross-site Scripting 		CVE-2020-37245 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
186 6.2 MEDIUM
Local 		- - Supsystic Backup 2.3.9 contains a local file inclusion vulnerability that allows unauthenticated attackers to read and delete arbitrary files by manipulating the download path parameter. Attackers ca… New CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2020-37246 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
187 7.8 HIGH
Local 		- - Kite 4.2.0.1 U1 contains an unquoted service path vulnerability in the KiteService Windows service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers … New CWE-428
 Unquoted Search Path or Element 		CVE-2020-37247 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
188 5.3 MEDIUM
Network 		- - MyBB Timeline Plugin 1.0 contains cross-site scripting vulnerabilities that allow attackers to inject malicious scripts through thread titles, post content, and user profile fields like Location and … New CWE-79
Cross-site Scripting 		CVE-2021-47934 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
189 8.2 HIGH
Network 		- - LayerBB 1.1.4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the search_query parameter. Attackers can send… New CWE-89
SQL Injection 		CVE-2021-47954 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
190 7.5 HIGH
Network 		- - Color Notes 1.4 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character strings into note fields. Attackers can generate a payl… New CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2021-47969 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm