Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205601 7.8 重要
Local 		マイクロソフト - Microsoft .NET Framework における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0148 2016-04-15 11:43 2016-04-12 Show GitHub Exploit DB Packet Storm
205602 8.8 重要
Network 		マイクロソフト - Microsoft XML コアサービスにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-0147 2016-04-15 11:43 2016-04-12 Show GitHub Exploit DB Packet Storm
205603 7.8 重要
Local 		マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-0139 2016-04-15 11:43 2016-04-12 Show GitHub Exploit DB Packet Storm
205604 7.8 重要
Local 		マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-0136 2016-04-15 11:43 2016-04-12 Show GitHub Exploit DB Packet Storm
205605 7.8 重要
Local 		マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-0127 2016-04-15 11:43 2016-04-12 Show GitHub Exploit DB Packet Storm
205606 7.8 重要
Local 		マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-0122 2016-04-15 11:43 2016-04-12 Show GitHub Exploit DB Packet Storm
205607 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0167 2016-04-15 11:41 2016-04-12 Show GitHub Exploit DB Packet Storm
205608 8.8 重要
Network 		マイクロソフト - 複数の Microsoft 製品のフォントライブラリにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-0145 2016-04-15 11:41 2016-04-12 Show GitHub Exploit DB Packet Storm
205609 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0143 2016-04-15 11:41 2016-04-12 Show GitHub Exploit DB Packet Storm
205610 8.1 重要
Network 		Drupal
Debian		 - Drupal における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-3171 2016-04-15 10:44 2016-02-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
51 8.8 HIGH
Network 		- - A vulnerability was identified in Edimax BR-6478AC 1.23. Affected by this vulnerability is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. The ma… New CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-10125 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm
52 8.8 HIGH
Network 		- - A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the function rip_zebra_read_ipv4 of the file /usr/sbin/ripd of the component Zserv Handler. Executing a manipulation can lead t… New CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-10124 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm
53 8.8 HIGH
Network 		- - A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFilter of the file /goform/formSetDomainFilter. Performing a manipulation of the argument blocked_doma… New CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-10123 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm
54 8.8 HIGH
Network 		- - A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This affects the function formSetProtocolFilter of the file /goform/formSetProtocolFilter. Such manipulation of the argument protocol_na… New CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-10122 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm
55 8.8 HIGH
Network 		- - A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUrlFilter of the file /goform/formSetUrlFilter. This manipulation of the argument keyword_list/keywor… New CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-10121 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm
56 7.5 HIGH
Network 		- - WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the application by sending a malformed payload file containing a large buffer of repeated characters. Attackers c… New CWE-120
Classic Buffer Overflow 		CVE-2018-25426 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm
57 8.2 HIGH
Network 		- - Yot CMS 3.3.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the aid and cid parameters. Attackers … New CWE-89
SQL Injection 		CVE-2018-25425 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm
58 8.2 HIGH
Network 		- - Gate Pass Management System 2.1 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication by injecting SQL code through the login and password parameters.… New CWE-89
SQL Injection 		CVE-2018-25424 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm
59 6.2 MEDIUM
Local 		- - Arm Whois 3.11 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a malicious buffer of 700 byte… New CWE-120
Classic Buffer Overflow 		CVE-2018-25423 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm
60 8.2 HIGH
Network 		- - MOGG web simulator Script contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL commands by injecting malicious code through the id parameter. Attacke… New CWE-89
SQL Injection 		CVE-2018-25422 2026-05-31 01:17 2026-05-31 Show GitHub Exploit DB Packet Storm