Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215261 5 警告 Plone Foundation
Zope Foundation		 - Plone で使用される Zope における値を推測される脆弱性 CWE-310
暗号の問題 		CVE-2012-6661 2014-11-6 11:05 2012-10-24 Show GitHub Exploit DB Packet Storm
215262 5 警告 Plone Foundation - Plone のエラーページにおける乱数を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5508 2014-11-6 11:05 2012-10-24 Show GitHub Exploit DB Packet Storm
215263 4.3 警告 Plone Foundation - Plone の バッチ ID 変更スクリプトにおけるコンテンツアイテムのタイトルを変更される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5500 2014-11-6 11:05 2012-11-6 Show GitHub Exploit DB Packet Storm
215264 6.5 警告 PostgreSQL.org
アップル
富士通		 - PostgreSQL におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0065 2014-11-5 18:15 2014-02-20 Show GitHub Exploit DB Packet Storm
215265 4.3 警告 アップル - Apple OS X Server の CoreCollaboration の Xcode Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4406 2014-11-5 18:14 2014-09-17 Show GitHub Exploit DB Packet Storm
215266 4 警告 PostgreSQL.org
アップル
富士通		 - PostgreSQL の chkpass 拡張機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0066 2014-11-5 18:08 2014-02-20 Show GitHub Exploit DB Packet Storm
215267 6.5 警告 PostgreSQL.org
アップル
富士通		 - PostgreSQL におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0063 2014-11-5 18:04 2014-02-20 Show GitHub Exploit DB Packet Storm
215268 4.9 警告 PostgreSQL.org
アップル
富士通		 - PostgreSQL における不正なインデックスを作成される脆弱性 CWE-362
競合状態 		CVE-2014-0062 2014-11-5 18:03 2014-02-20 Show GitHub Exploit DB Packet Storm
215269 2.6 注意 ISC, Inc.
アップル		 - ISC BIND の named の query.c 内の query_findclosestnsec3 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-0591 2014-11-5 17:54 2014-01-13 Show GitHub Exploit DB Packet Storm
215270 7.8 危険 ISC, Inc.
アップル		 - ISC BIND および DNSco BIND の rdata.c の RFC 5011 の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-4854 2014-11-5 17:48 2013-07-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1191 - - - An untrusted pointer dereference in the ionic cloud driver for VMWare ESXi could allow an attacker with an unprivileged VM to read kernel memory or co-located guest VM memory, potentially resulting i… CWE-822
 Untrusted Pointer Dereference 		CVE-2025-62627 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1192 6.3 MEDIUM
Network 		- - A vulnerability has been found in CodeAstro Online Catering Ordering System 1.0. This affects an unknown function of the file /deleteorder.php. The manipulation of the argument ID leads to sql inject… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8231 2026-05-13 23:48 2026-05-10 Show GitHub Exploit DB Packet Storm
1193 7.3 HIGH
Network 		- - A vulnerability was detected in OpenClaw up to 2026.1.24. The impacted element is the function handleBlueBubblesWebhookRequest of the file extensions/bluebubbles/src/monitor.ts of the component blueb… CWE-287
Improper Authentication 		CVE-2026-8305 2026-05-13 23:48 2026-05-12 Show GitHub Exploit DB Packet Storm
1194 6.5 MEDIUM
Adjacent 		zyxel wre6505_firmware ** UNSUPPORTED WHEN ASSIGNED ** An improper restriction of excessive authentication attempts vulnerability in the web management interface of Zyxel WRE6505 v2 firmware version V1.00(ABDV.3)C0 could a… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-7255 2026-05-13 23:48 2026-05-12 Show GitHub Exploit DB Packet Storm
1195 5.3 MEDIUM
Local 		- - A flaw has been found in Squirrel up to 3.2. Impacted is the function validate_format in the library sqstdlib/sqstdstring.cpp. Executing a manipulation can lead to stack-based buffer overflow. The at… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-8258 2026-05-13 23:47 2026-05-11 Show GitHub Exploit DB Packet Storm
1196 5.9 MEDIUM
Local 		- - A vulnerability was determined in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation causes heap-based buffer overflow. The attac… CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2026-8261 2026-05-13 23:47 2026-05-11 Show GitHub Exploit DB Packet Storm
1197 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via regular expression backtracking in the Content-Disposition filename parameter parser. A crafted multipart upload with a lon… CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2026-8159 2026-05-13 23:44 2026-05-12 Show GitHub Exploit DB Packet Storm
1198 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. By sending a multipart/form-data request with a field name that collides with an inherited Object.proto… CWE-248
CWE-1321
 Uncaught Exception
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2026-8161 2026-05-13 23:43 2026-05-12 Show GitHub Exploit DB Packet Storm
1199 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. By sending a multipart/form-data request with a Content-Disposition header whose filename* parameter co… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2026-8162 2026-05-13 23:43 2026-05-12 Show GitHub Exploit DB Packet Storm
1200 7.5 HIGH
Network 		- - The Court Reservation – Manage Your Court Bookings Online plugin for WordPress is vulnerable to generic SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.10.11 due to insuf… CWE-89
SQL Injection 		CVE-2026-1250 2026-05-13 23:43 2026-05-13 Show GitHub Exploit DB Packet Storm