Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215571	5	警告	シスコシステムズ	-	Cisco Adaptive Security Appliance ソフトウェアの SSL VPN の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-3407	2014-12-1 15:43	2014-11-26	Show	GitHub Exploit DB Packet Storm

215572	5	警告	Paid Memberships Pro	-	WordPress 用 Paid Memberships Pro プラグインの services/getfile.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-8801	2014-12-1 15:21	2014-11-14	Show	GitHub Exploit DB Packet Storm

215573	5	警告	DukaPress	-	WordPress 用 DukaPress プラグインの php/dp-functions.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-8799	2014-12-1 15:16	2014-11-12	Show	GitHub Exploit DB Packet Storm

215574	3.5	注意	apptha.com	-	WordPress 用 Apptha WordPress Video Gallery プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9098	2014-12-1 15:08	2014-07-15	Show	GitHub Exploit DB Packet Storm

215575	7.5	危険	apptha.com	-	WordPress 用 Apptha WordPress Video Gallery プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9097	2014-12-1 14:39	2014-07-23	Show	GitHub Exploit DB Packet Storm

215576	7.5	危険	Pligg	-	Pligg CMS の recover.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9096	2014-12-1 14:27	2014-07-31	Show	GitHub Exploit DB Packet Storm

215577	7.5	危険	ラリタン・ジャパン株式会社	-	Raritan Power IQ における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9095	2014-12-1 14:17	2014-07-16	Show	GitHub Exploit DB Packet Storm

215578	7.5	危険	The Document Foundation	-	LibreOffice におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-9093	2014-12-1 13:52	2014-11-19	Show	GitHub Exploit DB Packet Storm

215579	4.3	警告	Digital Zoom Studio	-	WordPress 用 Digital Zoom Studio Video Gallery プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9094	2014-12-1 13:32	2014-05-8	Show	GitHub Exploit DB Packet Storm

215580	7.2	危険	Wibu-Systems AG	-	Wibu-Systems CodeMeter Runtime における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-8419	2014-12-1 11:56	2014-11-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1351	-	-	-	A System Management Mode (SMM) handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity …	CWE-1072	CVE-2026-0438	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1352	-	-	-	A compromised Trusted OS (TOS) driver could issue a malformed call that could potentially allow memory access outside the intended range resulting in loss of integrity.	CWE-190 Integer Overflow or Wraparound	CVE-2021-26380	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1353	-	-	-	A TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics interface may allow an attacker to load registers repeatedly creating a race condition potentially leading to a loss of integrity.	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2022-23826	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1354	-	-	-	Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in …	CWE-129 Improper Validation of Array Index	CVE-2023-31309	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1355	-	-	-	Improperly preserved integrity of hardware configuration state during a power save/restore operation in the AMD Secure Processor (ASP) could allow an attacker with the ability to write outside the tr…	CWE-1304	CVE-2023-31316	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1356	-	-	-	Improper restriction of operations within the bounds of a memory buffer in the AMD secure processer (ASP) could allow an attacker to read or write to protected memory potentially resulting in arbitra…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2023-31317	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1357	-	-	-	Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution.	CWE-1220 Insufficient Granularity of Access Control	CVE-2024-21962	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1358	-	-	-	Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine (VM) to perform unauthorized access to specific victim range of GPU MMIO register spac…	CWE-1189	CVE-2024-36332	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1359	-	-	-	An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to read or modify an arbitrary address potentially resulting in loss of confidentiality, integrit…	CWE-252 Unchecked Return Value	CVE-2025-0028	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1360	-	-	-	Improper access control between the Joint Test Action Group (JTAG) and Advanced Extensible Interface (AXI) could allow an attacker with physical access to read or overwrite the contents of cross-chip…	CWE-284 Improper Access Control	CVE-2025-0040	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm