Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215931	5	警告	Paid Memberships Pro	-	WordPress 用 Paid Memberships Pro プラグインの services/getfile.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-8801	2014-12-1 15:21	2014-11-14	Show	GitHub Exploit DB Packet Storm

215932	5	警告	DukaPress	-	WordPress 用 DukaPress プラグインの php/dp-functions.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-8799	2014-12-1 15:16	2014-11-12	Show	GitHub Exploit DB Packet Storm

215933	3.5	注意	apptha.com	-	WordPress 用 Apptha WordPress Video Gallery プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9098	2014-12-1 15:08	2014-07-15	Show	GitHub Exploit DB Packet Storm

215934	7.5	危険	apptha.com	-	WordPress 用 Apptha WordPress Video Gallery プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9097	2014-12-1 14:39	2014-07-23	Show	GitHub Exploit DB Packet Storm

215935	7.5	危険	Pligg	-	Pligg CMS の recover.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9096	2014-12-1 14:27	2014-07-31	Show	GitHub Exploit DB Packet Storm

215936	7.5	危険	ラリタン・ジャパン株式会社	-	Raritan Power IQ における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9095	2014-12-1 14:17	2014-07-16	Show	GitHub Exploit DB Packet Storm

215937	7.5	危険	The Document Foundation	-	LibreOffice におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-9093	2014-12-1 13:52	2014-11-19	Show	GitHub Exploit DB Packet Storm

215938	4.3	警告	Digital Zoom Studio	-	WordPress 用 Digital Zoom Studio Video Gallery プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9094	2014-12-1 13:32	2014-05-8	Show	GitHub Exploit DB Packet Storm

215939	7.2	危険	Wibu-Systems AG	-	Wibu-Systems CodeMeter Runtime における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-8419	2014-12-1 11:56	2014-11-20	Show	GitHub Exploit DB Packet Storm

215940	5.4	警告	Linux	-	Linux Kernel の net/sctp/associola.c 内の sctp_assoc_update 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-5077	2014-11-28 18:02	2014-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
941	7.5	HIGH Adjacent	-	-	When bsdinstall or bsdconfig are prompted to scan for nearby Wi-Fi networks, they build up a list of network names and use bsddialog(1) to prompt the user to select a network. This is implemented us…	CWE-78 OS Command	CVE-2026-45255	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

942	8.4	HIGH Local	-	-	ptrace(PT_SC_REMOTE) failed to properly validate parameters for the syscall(2) and __syscall(2) meta-system calls. As a result, a user with the ability to debug a process may trigger arbitrary code …	CWE-787 Out-of-bounds Write	CVE-2026-45253	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

943	5.5	MEDIUM Network	-	-	When a fusefs file system implements extended attributes, the kernel may send a FUSE_LISTXATTR message to the userspace daemon to retrieve the list of extended attributes for a given file. The FUSE …	CWE-122 Heap-based Buffer Overflow	CVE-2026-45252	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

944	7.8	HIGH Local	-	-	A file descriptor can be closed while a thread is blocked in a poll(2) or select(2) call waiting for that descriptor. Because the blocked thread does not hold a reference to the underlying object, t…	CWE-416 Use After Free	CVE-2026-45251	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

945	8.8	HIGH Local	-	-	libcasper(3) communicates with helper processes via UNIX domain sockets, and uses the select(2) system call to wait for data to become available. However, it does not verify that its socket descript…	CWE-121 Stack-based Buffer Overflow	CVE-2026-39461	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

946	7.8	HIGH Local	-	-	An origin validation error vulnerability in the Trend Micro Apex One (mac) agent self-protection mechanism could allow a local attacker to escalate privileges on affected installations. Please not…	CWE-346 Origin Validation Error	CVE-2025-71217	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

947	7.8	HIGH Local	-	-	A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent cache mechanism could allow a local attacker to escalate privileges on affected installations. Please note: an att…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2025-71216	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

948	7.0	HIGH Local	-	-	A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent iCore service signature verification could allow a local attacker to escalate privileges on affected installations. …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2025-71215	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

949	7.8	HIGH Local	-	-	An origin validation error vulnerability in the Trend Micro Apex One (mac) agent iCore service could allow a local attacker to escalate privileges on affected installations. Please note: an attack…	CWE-346 Origin Validation Error	CVE-2025-71214	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

950	7.8	HIGH Local	-	-	MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow vulnerability	CWE-823 Use of Out-of-range Pointer Offset	CVE-2026-28764	2026-05-22 00:05	2026-05-21	Show	GitHub Exploit DB Packet Storm