Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221971 7.5 危険 Aftabgardan Cultural Center - Testa Online Test Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-6873 2013-11-28 14:47 2013-11-15 Show GitHub Exploit DB Packet Storm
221972 5 警告 Gentoo Linux
MediaWiki		 - MediaWiki における拡張機能の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2032 2013-11-28 14:15 2013-04-30 Show GitHub Exploit DB Packet Storm
221973 4.7 警告 Linux - Linux Kernel の drivers/usb/chipidea/host.c の host_start 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-2058 2013-11-28 14:15 2013-01-21 Show GitHub Exploit DB Packet Storm
221974 5 警告 Savy Soda - SavySoda WiFi HD Free におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3923 2013-11-28 13:56 2013-11-21 Show GitHub Exploit DB Packet Storm
221975 7.5 危険 Nagios Enterprises, LLC - Nagios XI の Nagios Core Config Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-6875 2013-11-28 13:40 2013-09-24 Show GitHub Exploit DB Packet Storm
221976 9.3 危険 Vortex Group - Vortex Light Alloy におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-6874 2013-11-28 12:21 2013-11-22 Show GitHub Exploit DB Packet Storm
221977 4.3 警告 MediaWiki - MediaWiki 用 ZeroRatedMobileAccess 拡張機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4573 2013-11-28 12:04 2013-10-22 Show GitHub Exploit DB Packet Storm
221978 7.8 危険 Gummy Bear Studios - Gummy Bear Studios FTP Drive + HTTP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3922 2013-11-28 12:02 2013-11-21 Show GitHub Exploit DB Packet Storm
221979 3.5 注意 CloudBees - CloudBees Jenkins 用 Build Failure Analyzer プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6374 2013-11-28 11:37 2013-11-20 Show GitHub Exploit DB Packet Storm
221980 5.5 警告 CloudBees - CloudBees Jenkins 用 Exclusion プラグインにおけるリソースを一覧表示される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6373 2013-11-28 11:37 2013-11-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
891 - - - A server-side request forgery (SSRF) vulnerability in the IKEv2 implementation of Palo Alto Networks PAN-OS® software allows an unauthenticated attacker to cause the firewall to send network requests… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-0258 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm
892 - - - An arbitrary File Read and Delete Vulnerability in Palo Alto Networks WildFire® WF-500 and WF-500-B appliances enables users to read sensitive information and delete arbitrary files. This vulnerabili… CWE-73
 External Control of File Name or Path 		CVE-2026-0259 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm
893 - - - Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be … CWE-78
OS Command  		CVE-2026-0261 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm
894 - - - Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition by sending special… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2026-0262 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm
895 - - - A denial of service (DoS) vulnerability in Palo Alto Networks Prisma SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to cause a system disru… CWE-606
 Unchecked Input for Loop Condition 		CVE-2026-0243 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm
896 - - - The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4189 was fixed. While makepasv() was patched to replace server-supplied PASV host addresses with the actual peer address (getpee… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-8328 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm
897 5.4 MEDIUM
Network 		- - Missing authorization in PostgreSQL CREATE TYPE allows an object creator to hijack other queries that use search_path to find user-defined types, including extension-defined types. That is to say, t… CWE-862
 Missing Authorization 		CVE-2026-6472 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm
898 8.8 HIGH
Network 		- - Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code… CWE-190
 Integer Overflow or Wraparound 		CVE-2026-6473 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm
899 4.3 MEDIUM
Network 		- - Externally-controlled format string in PostgreSQL timeofday() function allows an attacker to retrieve portions of server memory, via crafted timezone zones. Versions before PostgreSQL 18.4, 17.10, 1… CWE-134
Use of Externally-Controlled Format String 		CVE-2026-6474 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm
900 8.8 HIGH
Network 		- - Symlink following in PostgreSQL pg_basebackup plain format and in pg_rewind allows an origin superuser to overwrite local files, e.g. /var/lib/postgres/.bashrc, that hijack the operating system accou… CWE-61
 UNIX Symbolic Link (Symlink) Following 		CVE-2026-6475 2026-05-15 01:21 2026-05-14 Show GitHub Exploit DB Packet Storm