Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207021 9 危険 GLPI-PROJECT.ORG - GLPI における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-7684 2015-10-7 15:28 2015-04-17 Show GitHub Exploit DB Packet Storm
207022 4 警告 GLPI-PROJECT.ORG - GLPI における super-admin アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-7685 2015-10-7 15:28 2015-04-17 Show GitHub Exploit DB Packet Storm
207023 4.3 警告 4homepages - 4images におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7708 2015-10-7 15:09 2015-09-8 Show GitHub Exploit DB Packet Storm
207024 6.5 警告 Ignite Realtime - Ignite Realtime Openfire における管理者のアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-7707 2015-10-7 15:09 2015-09-15 Show GitHub Exploit DB Packet Storm
207025 7.5 危険 Anchor - Anchor CMS の system/session/drivers/cookie.php における PHP オブジェクトインジェクション攻撃を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2015-5687 2015-10-7 14:47 2015-07-28 Show GitHub Exploit DB Packet Storm
207026 7.5 危険 FreeSWITCH - FreeSWITCH の libs/esl/src/esl_json.c の parse_string 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-7392 2015-10-7 14:47 2015-09-14 Show GitHub Exploit DB Packet Storm
207027 6.5 警告 IBM - 複数の IBM 製品における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-4967 2015-10-7 14:42 2015-09-18 Show GitHub Exploit DB Packet Storm
207028 4 警告 IBM - 複数の IBM 製品の maximouiweb/webmodule/webclient/utility/merlin.jsp における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-4965 2015-10-7 14:42 2015-09-18 Show GitHub Exploit DB Packet Storm
207029 3.5 注意 IBM - 複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-4944 2015-10-7 14:42 2015-08-21 Show GitHub Exploit DB Packet Storm
207030 3.5 注意 IBM - 複数の IBM Emptoris 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-4971 2015-10-7 14:41 2015-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
511 6.1 MEDIUM
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the acc-menu_billings.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in… New CWE-79
Cross-site Scripting 		CVE-2025-61310 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
512 7.3 HIGH
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_alerts.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in t… New CWE-79
Cross-site Scripting 		CVE-2025-61311 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
513 7.3 HIGH
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the acc-menu_pricess.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in … New CWE-79
Cross-site Scripting 		CVE-2025-61312 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
514 7.3 HIGH
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_markeralerts.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascrip… New CWE-79
Cross-site Scripting 		CVE-2025-61313 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
515 7.3 HIGH
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_orderopt.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in… New CWE-79
Cross-site Scripting 		CVE-2025-61314 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
516 5.4 MEDIUM
Network 		- - docuFORM Managed Print Service Client 11.11c is vulnerable to a session fixation attack via the login page of the application. New CWE-384
 Session Fixation 		CVE-2025-65415 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
517 6.3 MEDIUM
Network 		- - docuFORM Managed Print Service Client 11.11c is vulnerable to arbitrary file upload via pmupdate.php. New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-65416 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
518 6.1 MEDIUM
Network 		- - docuFORM Managed Print Service Client 11.11c is vulnerable to a reflected cross site scripting attack via the login page of the application. New CWE-79
Cross-site Scripting 		CVE-2025-65417 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
519 - - - CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in its average_model.py model averaging tool. The script loads… New - CVE-2026-31250 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
520 - - - CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in its gRPC server component. When the server starts, it loads… New - CVE-2026-31251 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm