Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206551 6.9 警告 セイコーエプソン株式会社 - EPSON Network Utility に権限昇格の脆弱性 CWE-264
CWE-Other
CVE-2015-6034 2015-12-22 10:40 2015-10-27 Show GitHub Exploit DB Packet Storm
206552 9.3 危険 マイクロソフト - Microsoft Windows Server 2008 および 2012 の DNS サーバにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-6125 2015-12-22 10:20 2015-12-8 Show GitHub Exploit DB Packet Storm
206553 4.3 警告 Apache Software Foundation - Apache Cordova プラグイン cordova-plugin-file-transfer における HTTP ヘッダインジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2015-5204 2015-12-21 17:45 2015-09-29 Show GitHub Exploit DB Packet Storm
206554 3.5 注意 Token Insert Entity project - Drupal 用 Token Insert Entity モジュールにおけるアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2015-8602 2015-12-21 17:41 2015-12-2 Show GitHub Exploit DB Packet Storm
206555 5 警告 Chat Room project - Drupal 用 Chat Room モジュールにおけるアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2015-8601 2015-12-21 17:41 2015-12-2 Show GitHub Exploit DB Packet Storm
206556 7.5 危険 Canonical
Linux Foundation		 - Foomatic の foomatic-filters および cups-filters の foomatic-rip の util.c における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2015-8327 2015-12-21 17:25 2015-10-30 Show GitHub Exploit DB Packet Storm
206557 5 警告 シスコシステムズ - Cisco Model DPQ3925 with EDVA デバイスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-6428 2015-12-21 16:55 2015-12-17 Show GitHub Exploit DB Packet Storm
206558 5 警告 シスコシステムズ - Cisco FireSIGHT Management Center における HTTP 攻撃検出機能を回避される脆弱性 CWE-Other
その他 		CVE-2015-6427 2015-12-21 16:55 2015-12-17 Show GitHub Exploit DB Packet Storm
206559 7.2 危険 シスコシステムズ - Cisco Prime Network Services Controller におけるアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-6426 2015-12-21 16:55 2015-12-17 Show GitHub Exploit DB Packet Storm
206560 7.2 危険 シスコシステムズ - Cisco Application Policy Infrastructure Controller のブートマネージャにおけるアクセス制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2015-6424 2015-12-21 16:55 2015-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
771 8.4 HIGH
Local 		- - Allok AVI DivX MPEG to DVD Converter 2.6.1217 contains a structured exception handler buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payl… Update CWE-120
Classic Buffer Overflow 		CVE-2018-25323 2026-05-19 02:29 2026-05-17 Show GitHub Exploit DB Packet Storm
772 9.1 CRITICAL
Network 		dovecot
open-xchange 		dovecot When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly interpreted as safe too, enabling unsafe data to be unescaped. This can enable SQL / LDAP … Update CWE-235
 Improper Handling of Extra Parameters 		CVE-2026-27851 2026-05-19 02:29 2026-05-12 Show GitHub Exploit DB Packet Storm
773 6.1 MEDIUM
Network 		- - Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.1, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Vvveb CMS com… Update CWE-79
Cross-site Scripting 		CVE-2026-44366 2026-05-19 02:28 2026-05-16 Show GitHub Exploit DB Packet Storm
774 - - - Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, there is an unauthenticated reflected cross-site scripting (XSS) issue in the… Update CWE-79
Cross-site Scripting 		CVE-2026-45622 2026-05-19 02:28 2026-05-16 Show GitHub Exploit DB Packet Storm
775 - - - Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, there is an authenticated SQL injection issue in the frontend user order hist… Update CWE-89
SQL Injection 		CVE-2026-45800 2026-05-19 02:28 2026-05-16 Show GitHub Exploit DB Packet Storm
776 7.5 HIGH
Network 		- - Woocommerce CSV Importer 3.3.6 contains a path traversal vulnerability that allows any registered user to delete arbitrary files by submitting unescaped filenames through the delete_export_file AJAX … Update CWE-22
Path Traversal 		CVE-2018-25325 2026-05-19 02:28 2026-05-17 Show GitHub Exploit DB Packet Storm
777 5.3 MEDIUM
Network 		- - Joomla! Component Js Jobs 1.2.0 contains a cross-site request forgery vulnerability that allows attackers to perform state-changing actions without token validation. Attackers can craft malicious HTM… Update CWE-352
 Origin Validation Error 		CVE-2018-25327 2026-05-19 02:28 2026-05-17 Show GitHub Exploit DB Packet Storm
778 8.2 HIGH
Network 		- - Joomla! extension EkRishta 2.10 contains persistent cross-site scripting and SQL injection vulnerabilities that allow attackers to inject malicious code through profile fields and POST parameters. At… Update CWE-89
SQL Injection 		CVE-2018-25330 2026-05-19 02:28 2026-05-17 Show GitHub Exploit DB Packet Storm
779 5.3 MEDIUM
Network 		- - Joomla jCart for OpenCart 2.3.0.2 contains a cross-site request forgery vulnerability that allows attackers to modify user account information without authentication. Attackers can craft malicious HT… Update CWE-352
 Origin Validation Error 		CVE-2018-25336 2026-05-19 02:28 2026-05-17 Show GitHub Exploit DB Packet Storm
780 4.3 MEDIUM
Network 		- - Joomla JoomOCShop 1.0 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions on behalf of authenticated users. Attackers can craft malicious HTML fo… Update CWE-352
 Origin Validation Error 		CVE-2018-25337 2026-05-19 02:28 2026-05-17 Show GitHub Exploit DB Packet Storm