Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208351	3.5	注意	Moodle	-	Moodle の Lesson モジュールの access.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-0216	2015-06-4 11:05	2015-01-19	Show	GitHub Exploit DB Packet Storm

208352	4	警告	Moodle	-	Moodle の calendar/externallib.php におけるカレンダーの重要なイベント情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-0215	2015-06-4 11:05	2015-01-19	Show	GitHub Exploit DB Packet Storm

208353	4	警告	Moodle	-	Moodle の message/externallib.php におけるメッセージングの無効設定を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-0214	2015-06-4 11:05	2015-01-19	Show	GitHub Exploit DB Packet Storm

208354	6.8	警告	Moodle	-	Moodle の Glossary モジュールの editcategories.html および editcategories.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-0213	2015-06-4 11:05	2015-01-19	Show	GitHub Exploit DB Packet Storm

208355	3.5	注意	Moodle	-	Moodle の course/pending.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-0212	2015-06-4 11:04	2015-01-19	Show	GitHub Exploit DB Packet Storm

208356	4	警告	Moodle	-	Moodle の mod/lti/ajax.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-0211	2015-06-4 11:04	2015-01-19	Show	GitHub Exploit DB Packet Storm

208357	4.3	警告	Zenphoto	-	Zenphoto におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2948	2015-06-3 18:04	2015-05-28	Show	GitHub Exploit DB Packet Storm

208358	4.3	警告	ZenPhoto20	-	ZenPhoto20 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2949	2015-06-3 18:04	2015-05-28	Show	GitHub Exploit DB Packet Storm

208359	6.8	警告	Synology Inc.	-	Synology の OS X 向け Cloud Station Client ユーティリティに一般ユーザによるシステムファイルの所有者変更が可能になる問題	CWE-264 CWE-Other	CVE-2015-2851	2015-06-3 18:04	2015-05-26	Show	GitHub Exploit DB Packet Storm

208360	6.8	警告	IDS	-	IDS RTU 850C デバイス用 NC854 および NC856 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-3939	2015-06-3 16:58	2015-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1041	5.3	MEDIUM Network	-	-	A vulnerability was found in ggerve coding-standards-mcp. This issue affects the function get_style_guide/get_best_practices of the file server.py. The manipulation of the argument Language results i…	CWE-22 Path Traversal	CVE-2026-7588	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

1042	7.3	HIGH Network	hashcat	hashcat	A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted Kerberos hash file. The iss…	CWE-787 CWE-122 Out-of-bounds Write Heap-based Buffer Overflow	CVE-2026-42483	2026-05-2 03:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

1043	8.6	HIGH Network	-	-	Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_canswitch.cpp the parser does not properly validate a CANswitch DLC value, allowing remote attackers to…	CWE-121 Stack-based Buffer Overflow	CVE-2026-42469	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

1044	7.5	HIGH Network	-	-	Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_pcap.cpp , the parser's phdr.len field is not properly validated, allowing remote attackers to cause a …	CWE-121 Stack-based Buffer Overflow	CVE-2026-42468	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

1045	7.5	HIGH Network	exim	exim	In Exim before 4.99.2, on systems using musl libc (not glibc), an attacker can crash the connection instance when malformed DNS data is present in PTR records. This is caused by a dn_expand oddity in…	CWE-684 Incorrect Provision of Specified Functionality	CVE-2026-40684	2026-05-2 03:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

1046	10.0	CRITICAL Network	-	-	Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_gvret.cpp, the length field in GVRET binary data is not properly validated, allowing remote attackers t…	CWE-121 Stack-based Buffer Overflow	CVE-2026-37541	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

1047	8.4	HIGH Local	-	-	OpenAMP v2025.10.0 ELF loader contains an integer overflow vulnerability in firmware image parsing. In elf_loader.c, it performs multiplication of two attacker-controlled 16-bit values from the ELF h…	CWE-190 Integer Overflow or Wraparound	CVE-2026-37540	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

1048	-		-	-	An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_util.c) of FRRouting (FRR) stable/10.0 allows attackers to cause a Denial of Service (DoS) …	-	CVE-2026-37457	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

1049	-		-	-	A Command Injection vulnerability in the web management interface in Aver PTC320UV2 0.1.0000.65 allows an unauthenticated attacker to execute arbitrary commands via a crafted web request.	-	CVE-2026-26461	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

1050	9.6	CRITICAL Network	-	-	A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the proce…	CWE-416 Use After Free	CVE-2026-22166	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm