Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209391 3.5 注意 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-5622 2015-08-4 16:47 2015-07-23 Show GitHub Exploit DB Packet Storm
209392 4.3 警告 WordPress.org - WordPress の wp-includes/wp-db.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-3440 2015-08-4 16:47 2015-04-27 Show GitHub Exploit DB Packet Storm
209393 4.3 警告 OpenBSD - OpenSSH の ssh の channels.c 内の x11_open_helper 関数におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-5352 2015-08-4 16:22 2015-07-1 Show GitHub Exploit DB Packet Storm
209394 4.3 警告 シーメンス - Siemens RuggedCom ROS および ROX II の HTTPS サービスの SSL レイヤにおける平文データを取得される脆弱性 CWE-310
暗号の問題 		CVE-2015-5537 2015-08-4 14:21 2015-07-21 Show GitHub Exploit DB Packet Storm
209395 2.1 注意 シーメンス - Android 用 Siemens SIMATIC WinCC Sm@rtClient および Sm@rtClient Lite アプリケーションにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-5084 2015-08-4 14:21 2015-07-21 Show GitHub Exploit DB Packet Storm
209396 4 警告 シスコシステムズ - Cisco Unified Communications Manager の Prime Collaboration Deployment コンポーネント における root の認証情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-4295 2015-08-4 13:36 2015-07-30 Show GitHub Exploit DB Packet Storm
209397 4.3 警告 シスコシステムズ - Cisco Unified Communications Manager IM and Presence Service におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-4294 2015-08-4 13:36 2015-07-30 Show GitHub Exploit DB Packet Storm
209398 4.3 警告 シスコシステムズ - Cisco Prime Central for Hosted Collaboration Solution の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-4292 2015-08-4 13:36 2015-07-30 Show GitHub Exploit DB Packet Storm
209399 7.8 危険 シスコシステムズ - Cisco ASR 1000 デバイス上で稼動する Cisco IOS XE におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-4291 2015-08-4 13:36 2015-07-30 Show GitHub Exploit DB Packet Storm
209400 6.4 警告 シスコシステムズ - Cisco AnyConnect Secure Mobility Client におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2015-4289 2015-08-4 13:36 2015-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1961 5.3 MEDIUM
Network 		- - Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result i… - CVE-2026-34654 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1962 4.8 MEDIUM
Network 		- - Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-p… CWE-79
Cross-site Scripting 		CVE-2026-34655 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1963 4.3 MEDIUM
Network 		- - Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature by… CWE-285
Improper Authorization 		CVE-2026-34656 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1964 4.8 MEDIUM
Network 		- - Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-p… CWE-79
Cross-site Scripting 		CVE-2026-34658 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1965 3.4 LOW
Network 		- - Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier [NEEDS REVIEW: impact mismatch — ticket says 'Arbitrary file system write', CIA triad derives 'Sec… CWE-20
 Improper Input Validation  		CVE-2026-34685 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1966 - - - Improper enforcement of the LFENCE serialization property may allow an attacker to bypass speculation barriers and potentially disclose sensitive information, potentially resulting in loss of confide… CWE-693
 Protection Mechanism Failure 		CVE-2024-36315 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1967 - - - Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity. CWE-1233
 Security-Sensitive Hardware Controls with Missing Lock Bit Protection 		CVE-2025-61971 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1968 - - - Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to gain arbitrary System Management Network (SMN) access, potentially resulting in arbitrary code executio… CWE-1233
 Security-Sensitive Hardware Controls with Missing Lock Bit Protection 		CVE-2025-61972 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1969 - - - A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2025-62623 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1970 - - - A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. CWE-122
Heap-based Buffer Overflow 		CVE-2025-62624 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm