Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220471	4	警告	WordPress.org	-	WordPress の wp-admin/press-this.php における publish アクションを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-5270	2014-01-22 18:49	2011-04-26	Show	GitHub Exploit DB Packet Storm

220472	2.1	注意	WordPress.org	-	WordPress におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-5297	2014-01-22 18:47	2010-06-27	Show	GitHub Exploit DB Packet Storm

220473	4.9	警告	WordPress.org	-	WordPress の wp-includes/capabilities.php におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-5296	2014-01-22 18:43	2010-09-4	Show	GitHub Exploit DB Packet Storm

220474	4.3	警告	WordPress.org	-	WordPress の wp-admin/plugins.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5295	2014-01-22 18:41	2010-11-14	Show	GitHub Exploit DB Packet Storm

220475	4.3	警告	WordPress.org	-	WordPress の wp-admin/includes/file.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5294	2014-01-22 18:38	2010-11-14	Show	GitHub Exploit DB Packet Storm

220476	5.8	警告	WordPress.org	-	WordPress の wp-includes/comment.php におけるスパム制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-5293	2014-01-22 18:35	2010-11-30	Show	GitHub Exploit DB Packet Storm

220477	4.3	警告	シスコシステムズ	-	Cisco Secure Access Control System のポータルにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0668	2014-01-22 16:37	2014-01-21	Show	GitHub Exploit DB Packet Storm

220478	2.6	注意	TYPO3 Association	-	TYPO3 の Extbase Framework の ActionController ベースクラスにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-7078	2014-01-22 16:32	2013-12-10	Show	GitHub Exploit DB Packet Storm

220479	3.3	注意	libimobiledevice	-	libimobiledevice の userpref.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2013-2142	2014-01-22 16:31	2013-08-14	Show	GitHub Exploit DB Packet Storm

220480	2.6	注意	Drupal	-	Drupal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0244	2014-01-22 16:31	2013-01-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2141	-		-	-	In the Linux kernel, the following vulnerability has been resolved: mm/slab: do not access current->mems_allowed_seq if !allow_spin Lockdep complains when get_from_any_partial() is called in an NMI…	-	CVE-2026-43285	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2142	-		-	-	In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: restore failed global reservations to subpool Commit a833a693a490 ("mm: hugetlb: fix incorrect fallback for subpool")…	-	CVE-2026-43286	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2143	-		-	-	In the Linux kernel, the following vulnerability has been resolved: drm: Account property blob allocations to memcg DRM_IOCTL_MODE_CREATEPROPBLOB allows userspace to allocate arbitrary-sized proper…	-	CVE-2026-43287	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2144	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Return queued buffers on start_streaming() failure Return buffers if streaming fails to start due to uvc_pm_get(…	-	CVE-2026-43290	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2145	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: move ext4_percpu_param_init() before ext4_mb_init() When running `kvm-xfstests -c ext4/1k -C 1 generic/383` with the `DOUBL…	-	CVE-2026-43288	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2146	-		-	-	In the Linux kernel, the following vulnerability has been resolved: kexec: derive purgatory entry from symbol kexec_load_purgatory() derives image->start by locating e_entry inside an SHF_EXECINSTR…	-	CVE-2026-43289	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2147	8.3	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b ("net: nfc: nci: Add parameter validation for p…	-	CVE-2026-43291	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2148	-		-	-	In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: prevent RCU stalls in kasan_release_vmalloc_node When CONFIG_PAGE_OWNER is enabled, freeing KASAN shadow pages during…	-	CVE-2026-43292	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2149	-		-	-	In the Linux kernel, the following vulnerability has been resolved: rapidio: replace rio_free_net() with kfree() in rio_scan_alloc_net() When idtab allocation fails, net is not registered with rio_…	-	CVE-2026-43295	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2150	-		-	-	In the Linux kernel, the following vulnerability has been resolved: media: rockchip: rga: Fix possible ERR_PTR dereference in rga_buf_init() rga_get_frame() can return ERR_PTR(-EINVAL) when buffer …	-	CVE-2026-43297	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm