Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206741 6 警告 ntop - ntopng におけるログインコンテキストを変更される脆弱性 CWE-Other
その他 		CVE-2015-8368 2015-12-21 16:23 2015-12-1 Show GitHub Exploit DB Packet Storm
206742 7.8 危険 Xen プロジェクト - Xen の libxl toolstack ライブラリにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-8341 2015-12-21 15:19 2015-12-8 Show GitHub Exploit DB Packet Storm
206743 4.7 警告 シトリックス・システムズ
Xen プロジェクト		 - Xen の common/memory.c の memory_exchange 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8340 2015-12-21 15:19 2015-12-8 Show GitHub Exploit DB Packet Storm
206744 4.7 警告 シトリックス・システムズ
Xen プロジェクト		 - Xen の common/memory.c の memory_exchange 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8339 2015-12-21 15:19 2015-12-8 Show GitHub Exploit DB Packet Storm
206745 7.2 危険 Xen プロジェクト - Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8338 2015-12-21 15:19 2015-12-8 Show GitHub Exploit DB Packet Storm
206746 7.5 危険 Cool Video Gallery project - WordPress 用 Cool Video Gallery プラグインの lib/core.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-7527 2015-12-21 14:29 2015-11-29 Show GitHub Exploit DB Packet Storm
206747 4.3 警告 The Foreman - Foreman の情報のポップアップにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7518 2015-12-21 13:46 2015-12-9 Show GitHub Exploit DB Packet Storm
206748 7.2 危険 GNU Project
レッドハット		 - GNU C Library の Name Service Switch の nss_files/files-XXX.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-5277 2015-12-21 13:39 2015-09-14 Show GitHub Exploit DB Packet Storm
206749 3.5 注意 レッドハット - Red Hat JBoss Enterprise Application Platform におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-5304 2015-12-21 11:57 2015-12-2 Show GitHub Exploit DB Packet Storm
206750 9 危険 Bitrix - Bitrix 用 bitrix.mpbuilder モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2015-8358 2015-12-21 11:57 2015-11-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1311 7.5 HIGH
Network 		- - Flight is an extensible micro-framework for PHP. Prior to 3.18.1, the default error handler Engine::_error() writes the full exception message, exception code, and stack trace (including absolute fil… CWE-209
Information Exposure Through an Error Message 		CVE-2026-42552 2026-05-16 04:16 2026-05-14 Show GitHub Exploit DB Packet Storm
1312 9.8 CRITICAL
Network 		- - Cognee thru v0.4.0 contains a critical remote code execution vulnerability in its notebook cell execution API endpoint. The endpoint is designed to execute arbitrary Python code provided by the user,… CWE-94
Code Injection 		CVE-2026-31231 2026-05-16 04:16 2026-05-13 Show GitHub Exploit DB Packet Storm
1313 8.8 HIGH
Network 		snorkel snorkel The snorkel library thru v0.10.0 contains a critical insecure deserialization vulnerability (CWE-502) in the BaseLabeler.load() method of the BaseLabeler class. The method loads serialized labeler mo… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-31223 2026-05-16 04:16 2026-05-13 Show GitHub Exploit DB Packet Storm
1314 8.8 HIGH
Network 		snorkel snorkel The snorkel library thru v0.10.0 contains an insecure deserialization vulnerability (CWE-502) in the Trainer.load() method of the Trainer class. The method loads model checkpoint files using torch.lo… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-31222 2026-05-16 04:16 2026-05-13 Show GitHub Exploit DB Packet Storm
1315 8.8 HIGH
Network 		lightningai pytorch_lightning PyTorch-Lightning versions 2.6.0 and earlier contain an insecure deserialization vulnerability (CWE-502) in the checkpoint loading mechanism. The LightningModule.load_from_checkpoint() method, which … CWE-502
 Deserialization of Untrusted Data 		CVE-2026-31221 2026-05-16 04:16 2026-05-13 Show GitHub Exploit DB Packet Storm
1316 9.8 CRITICAL
Network 		- - PySyft (Syft Datasite/Server) versions 0.9.5 and earlier are vulnerable to remote code execution due to insufficient validation and sandboxing of user-submitted code. The system allows low-privileged… CWE-94
Code Injection 		CVE-2026-31220 2026-05-16 04:16 2026-05-13 Show GitHub Exploit DB Packet Storm
1317 7.5 HIGH
Network 		signalk signal_k_server Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.25.0, the HTTP login endpoints (POST /login and POST /signalk/v1/auth/login) are protected by express-… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-41893 2026-05-16 04:14 2026-05-10 Show GitHub Exploit DB Packet Storm
1318 5.3 MEDIUM
Network 		apache commons_configuration Uncontrolled Recursion vulnerability in Apache Commons. When processing an untrusted configuration file, Commons Configuration will throw a StackOverflowError for YAML input with cycles. This issue … CWE-674
 Uncontrolled Recursion 		CVE-2026-45205 2026-05-16 03:40 2026-05-14 Show GitHub Exploit DB Packet Storm
1319 7.4 HIGH
Network 		microsoft authenticator Exposure of sensitive information to an unauthorized actor in Microsoft Authenticator allows an unauthorized attacker to disclose information over a network. CWE-200
Information Exposure 		CVE-2026-41615 2026-05-16 03:39 2026-05-15 Show GitHub Exploit DB Packet Storm
1320 8.8 HIGH
Network 		microsoft windows_admin_center Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network. CWE-284
Improper Access Control 		CVE-2026-41086 2026-05-16 03:38 2026-05-13 Show GitHub Exploit DB Packet Storm