Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225251 7.2 危険 IBM - IBM DB2 および DB2 Connect におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3475 2013-06-6 12:08 2013-05-31 Show GitHub Exploit DB Packet Storm
225252 7.6 危険 IBM - IBM Tivoli Netcool/System Service Monitors および Application Service Monitors の Transaction MIB エージェントにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0509 2013-06-6 12:07 2013-05-31 Show GitHub Exploit DB Packet Storm
225253 7.6 危険 IBM - IBM Tivoli Netcool/System Service Monitors および Application Service Monitors におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0508 2013-06-6 12:05 2013-05-31 Show GitHub Exploit DB Packet Storm
225254 6.8 警告 ヒューレット・パッカード
レッドハット		 - HP Linux Imaging and Printing (HPLIP) の foomatic-rip-hplip における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2697 2013-06-5 18:29 2011-07-29 Show GitHub Exploit DB Packet Storm
225255 3.3 注意 オラクル - Oracle Sun Solaris 10 における Install/smpatch の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0569 2013-06-5 18:08 2013-01-15 Show GitHub Exploit DB Packet Storm
225256 3.6 注意 Corey Minyard
レッドハット		 - OpenIPMI の ipmievd における任意のプロセスを停止される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4339 2013-06-5 18:05 2011-12-15 Show GitHub Exploit DB Packet Storm
225257 6.8 警告 レッドハット - Red Hat Enterprise Linux などで利用される Foomatic の foomaticrip.c における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2964 2013-06-5 17:45 2011-07-29 Show GitHub Exploit DB Packet Storm
225258 6.5 警告 IBM - IBM Security QRadar SIEM におけるオペレーティングシステムのコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-2970 2013-06-5 14:51 2013-06-3 Show GitHub Exploit DB Packet Storm
225259 3.5 注意 IBM - IBM WebSphere Portal における CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2950 2013-06-5 14:45 2013-05-28 Show GitHub Exploit DB Packet Storm
225260 4.3 警告 IBM - IBM WebSphere Portal のサーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0549 2013-06-5 14:35 2013-05-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2251 8.8 HIGH
Network 		wavlink wl-nu516u1_firmware A vulnerability was identified in Wavlink NU516U1 M16U1_V240425. This affects the function wifi_region of the file /cgi-bin/adm.cgi. Such manipulation of the argument skiplist1/skiplist2 leads to os … CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8191 2026-05-14 01:10 2026-05-10 Show GitHub Exploit DB Packet Storm
2252 8.8 HIGH
Network 		wavlink wl-nu516u1_firmware A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument ppp_username/ppp_passwd/rwa… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8190 2026-05-14 01:10 2026-05-10 Show GitHub Exploit DB Packet Storm
2253 8.8 HIGH
Network 		wavlink wl-nu516u1_firmware A vulnerability was found in Wavlink NU516U1 M16U1_V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlan_bssid/sel_Au… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8189 2026-05-14 01:09 2026-05-10 Show GitHub Exploit DB Packet Storm
2254 8.8 HIGH
Network 		wavlink wl-nu516u1_firmware A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wifi_password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl_channel/wl_Pass/Encryp… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8188 2026-05-14 01:09 2026-05-10 Show GitHub Exploit DB Packet Storm
2255 7.5 HIGH
Network 		open5gs open5gs A vulnerability was detected in Open5GS up to 2.7.7. This affects the function ogs_sbi_client_send_via_scp_or_sepp in the library lib/sbi/client.c of the component NF. Performing a manipulation resul… CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error') 
Out-of-bounds Read 		CVE-2026-8186 2026-05-14 01:09 2026-05-9 Show GitHub Exploit DB Packet Storm
2256 7.5 HIGH
Network 		open5gs open5gs A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component UPF. Executing a manipulation can lead to resource consumption… CWE-400
CWE-404
 Uncontrolled Resource Consumption
 Improper Resource Shutdown or Release 		CVE-2026-8187 2026-05-14 01:08 2026-05-9 Show GitHub Exploit DB Packet Storm
2257 5.4 MEDIUM
Network 		- - The form plugin for Grav adds the ability to create and use forms. Prior to 9.1.0, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Grav CMS Form plugin's select field template. Taxono… CWE-79
Cross-site Scripting 		CVE-2026-42842 2026-05-14 01:04 2026-05-12 Show GitHub Exploit DB Packet Storm
2258 - - - grav-plugin-admin is the admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. Prior to 1.10.49.5, the application fails… CWE-79
Cross-site Scripting 		CVE-2026-44737 2026-05-14 01:04 2026-05-12 Show GitHub Exploit DB Packet Storm
2259 8.8 HIGH
Network 		- - Grav API Plugin is a RESTful API for Grav CMS that provides full headless access to your site's content, media, configuration, users, and system management. Prior to 1.0.0-beta.15, an insecure direct… CWE-863
 Incorrect Authorization 		CVE-2026-42843 2026-05-14 01:04 2026-05-12 Show GitHub Exploit DB Packet Storm
2260 - - - pupnp is an SDK for development of UPnP device and control point applications. Prior to version 1.18.5, pupnp is vulnerable to SRRF port confusion due to port truncation via atoi() cast in parse_uri(… CWE-195
CWE-918
 Signed to Unsigned Conversion Error
Server-Side Request Forgery (SSRF)  		CVE-2026-41682 2026-05-14 01:01 2026-05-9 Show GitHub Exploit DB Packet Storm