Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204611	6.1	警告 Network	WordPress.org Moxiecode Systems	-	WordPress で使用される Plupload の plupload.flash.swf におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-4566	2016-05-25 16:57	2016-05-15	Show	GitHub Exploit DB Packet Storm

204612	8.6	重要 Network	WordPress.org	-	WordPress の wp-includes/http.php の wp_http_validate_url 関数におけるサーバサイドのリクエストフォージェリ攻撃を実行される脆弱性	CWE-Other その他	CVE-2016-2222	2016-05-25 16:57	2016-02-2	Show	GitHub Exploit DB Packet Storm

204613	7.4	重要 Network	WordPress.org	-	WordPress の wp-includes/pluggable.php の wp_validate_redirect 関数におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2016-2221	2016-05-25 16:57	2016-02-2	Show	GitHub Exploit DB Packet Storm

204614	6.1	警告 Network	WordPress.org	-	WordPress の wp-includes/class-wp-theme.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1564	2016-05-25 16:57	2016-01-6	Show	GitHub Exploit DB Packet Storm

204615	6.1	警告 Network	WordPress.org	-	WordPress の wp-includes/wp-db.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8834	2016-05-25 16:57	2015-05-6	Show	GitHub Exploit DB Packet Storm

204616	5.4	警告 Network	WordPress.org	-	WordPress のユーザリストのテーブルにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-7989	2016-05-25 16:57	2015-09-15	Show	GitHub Exploit DB Packet Storm

204617	4.3	警告 Network	WordPress.org	-	WordPress の XMLRPC サブシステムの wp-includes/class-wp-xmlrpc-server.php の mw_editPost 関数におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5715	2016-05-25 16:57	2015-09-15	Show	GitHub Exploit DB Packet Storm

204618	4.3	警告 Network	The PHP Group Facebook	-	PHP の ext/zip/php_zip.c および HHVM の ext/zip/ext_zip.cpp の ZipArchive::extractTo 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-9767	2016-05-25 16:55	2014-09-10	Show	GitHub Exploit DB Packet Storm

204619	9.8	緊急 Network	The PHP Group	-	PHP の ext/standard/string.c の str_pad 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2016-4346	2016-05-25 16:28	2016-03-3	Show	GitHub Exploit DB Packet Storm

204620	9.8	緊急 Network	The PHP Group	-	PHP の ext/filter/sanitizing_filters.c の php_filter_encode_url 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2016-4345	2016-05-25 16:28	2016-03-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
591	-	-	-	In the Linux kernel, the following vulnerability has been resolved: remoteproc: xlnx: Only access buffer information if IPI is buffered In the receive callback check if message is NULL to prevent p… New	-	CVE-2026-46016	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

592	-	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix UMR hang in LAG error state unload During firmware reset in LAG mode, a race condition causes the driver to hang i… New	-	CVE-2026-45973	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

593	-	-	-	In the Linux kernel, the following vulnerability has been resolved: fbnic: close fw_log race between users and teardown Fixes a theoretical race on fw_log between the teardown path and fw_log write… New	-	CVE-2026-45977	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

594	-	-	-	In the Linux kernel, the following vulnerability has been resolved: s390/cio: Fix device lifecycle handling in css_alloc_subchannel() `css_alloc_subchannel()` calls `device_initialize()` before set… New	-	CVE-2026-45981	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

595	-	-	-	In the Linux kernel, the following vulnerability has been resolved: nfsd: never defer requests during idmap lookup During v4 request compound arg decoding, some ops (e.g. SETATTR) can trigger idmap… New	-	CVE-2026-45983	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

596	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES parse_uac2_sample_rate_range() caps the number of enumerated rates at MA… New	-	CVE-2026-46018	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

597	-	-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup atmel_aes_buff_init() allocates 4 pages using __get_free_pag… New	-	CVE-2026-46019	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

598	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Limit the maximum number of lookups Current code does no bound checking on the number of lookups a client can perf… New	-	CVE-2026-46026	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

599	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid early lgr access in smc_clc_wait_msg A CLC decline can be received while the handshake is still in an early stage,… New	-	CVE-2026-46027	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm

600	-	-	-	In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline data write path The inline data buffer head (dibh) is being released prematurely in gfs2… New	-	CVE-2026-45984	2026-05-27 23:48	2026-05-27	Show	GitHub Exploit DB Packet Storm