Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
206481	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-6173	2015-12-10 11:06	2015-12-8	Show	GitHub Exploit DB Packet Storm

206482	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-6171	2015-12-10 11:06	2015-12-8	Show	GitHub Exploit DB Packet Storm

206483	9.3	危険	マイクロソフト	-	Microsoft Windows 7 および Windows Server 2008 R2 の Uniscribe における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2015-6130	2015-12-10 10:39	2015-12-8	Show	GitHub Exploit DB Packet Storm

206484	7.5	危険	Sensio Labs	-	Symfony における脆弱性	CWE-noinfo 情報不足	CVE-2015-8125	2015-12-9 18:14	2015-11-23	Show	GitHub Exploit DB Packet Storm

206485	6.8	警告	Sensio Labs	-	Symfony の "Remember Me" ログイン機能における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2015-8124	2015-12-9 18:14	2015-11-23	Show	GitHub Exploit DB Packet Storm

206486	7.1	危険	Huawei	-	複数の Huawei USG 製品のソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2015-8084	2015-12-9 18:14	2015-10-21	Show	GitHub Exploit DB Packet Storm

206487	9	危険	F5 Networks	-	複数の F5 製品の iControl API における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-3628	2015-12-9 17:43	2015-09-9	Show	GitHub Exploit DB Packet Storm

206488	4.3	警告	zTree	-	zTree におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-7348	2015-12-9 17:21	2015-11-26	Show	GitHub Exploit DB Packet Storm

206489	4.3	警告	Novell Simon Tatham	-	PuTTY のターミナルエミュレータにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2015-5309	2015-12-9 17:14	2015-11-8	Show	GitHub Exploit DB Packet Storm

206490	5	警告	レッドハット OpenLDAP Foundation	-	OpenLDAP の libraries/libldap/tls_m.c の nss_parse_ciphers 関数における脆弱性	CWE-Other その他	CVE-2015-3276	2015-12-9 17:10	2015-11-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
361	4.7	MEDIUM Network	-	-	A weakness has been identified in linlinjava litemall up to 1.8.0. Affected is an unknown function of the component Admin Endpoint. Executing a manipulation can lead to sql injection. The attack can … New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-8772	2026-05-18 09:16	2026-05-18	Show	GitHub Exploit DB Packet Storm

362	7.3	HIGH Network	-	-	A security flaw has been discovered in linlinjava litemall up to 1.8.0. This impacts the function list of the file litemall-wx-api/src/main/java/org/linlinjava/litemall/wx/web/WxGoodsController.java … New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-8771	2026-05-18 09:16	2026-05-18	Show	GitHub Exploit DB Packet Storm

363	3.3	LOW Local	-	-	A vulnerability was identified in continuedev continue up to 1.2.22. This affects the function lsTool of the file core/tools/implementations/lsTool.ts of the component JSON-RPC Server. Such manipulat… New	CWE-22 Path Traversal	CVE-2026-8770	2026-05-18 09:16	2026-05-18	Show	GitHub Exploit DB Packet Storm

364	4.3	MEDIUM Network	-	-	A vulnerability was determined in vercel ai up to 3.0.97. The impacted element is the function createJsonResponseHandler/createJsonErrorResponseHandler of the file packages/provider-utils/src/respons… New	CWE-400 CWE-404 Uncontrolled Resource Consumption Improper Resource Shutdown or Release	CVE-2026-8769	2026-05-18 08:17	2026-05-18	Show	GitHub Exploit DB Packet Storm

365	7.3	HIGH Network	-	-	A vulnerability was found in vercel ai up to 3.0.97. The affected element is the function validateDownloadUrl of the file packages/provider-utils/src/download-blob.ts of the component provider-utils.… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-8768	2026-05-18 08:17	2026-05-18	Show	GitHub Exploit DB Packet Storm

366	5.0	MEDIUM Network	-	-	A vulnerability has been found in vercel ai up to 3.0.97. Impacted is the function run of the file .github/workflows/prettier-on-automerge.yml of the component PR Branch Name Interpolation. The manip… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8767	2026-05-18 08:17	2026-05-18	Show	GitHub Exploit DB Packet Storm

367	4.3	MEDIUM Network	-	-	A flaw has been found in Kilo-Org kilocode up to 7.0.47. This issue affects the function Load of the file packages/opencode/src/config/config.ts of the component Environment Variable Handler. Executi… New	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-8766	2026-05-18 08:17	2026-05-18	Show	GitHub Exploit DB Packet Storm

368	4.3	MEDIUM Network	-	-	A vulnerability was detected in Kilo-Org kilocode up to 7.0.47. This vulnerability affects the function Bun.file of the file packages/opencode/src/kilocode/review/worktree-diff.ts of the component Fi… New	CWE-22 Path Traversal	CVE-2026-8765	2026-05-18 08:17	2026-05-18	Show	GitHub Exploit DB Packet Storm

369	7.2	HIGH Network	-	-	A security vulnerability has been detected in H3C Magic B3 up to 100R002. This affects the function UpdateWanParams of the file /goform/aspForm. Such manipulation of the argument param leads to buffe… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-8764	2026-05-18 07:16	2026-05-18	Show	GitHub Exploit DB Packet Storm

370	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpc_input_call_event() and th… Update	CWE-787 Out-of-bounds Write	CVE-2026-43500	2026-05-18 01:16	2026-05-11	Show	GitHub Exploit DB Packet Storm