Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225671 7.5 危険 smart-plugs - smartplugs の showplugs.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1271 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
225672 7.5 危険 phpscripte24 - Multi Auktions Komplett System の auktion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1270 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
225673 7.5 危険 phpscripte24 - phpscripte24 Niedrig Gebote Pro Auktions System II の auktion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1269 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
225674 6.8 警告 stafford.uklinux - libESMTP の smtp-tls.c における信頼済み証明書を偽装される脆弱性 CWE-310
暗号の問題 		CVE-2010-1194 2012-12-20 19:29 2010-03-31 Show GitHub Exploit DB Packet Storm
225675 6.8 警告 stafford.uklinux - libESMTP における任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2010-1192 2012-12-20 19:29 2010-03-31 Show GitHub Exploit DB Packet Storm
225676 6.4 警告 sahanafoundation - Sahana 災害管理システムにおけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-1191 2012-12-20 19:29 2010-03-31 Show GitHub Exploit DB Packet Storm
225677 10 危険 SAP - SAP MaxDB の serv.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1185 2012-12-20 19:29 2010-03-29 Show GitHub Exploit DB Packet Storm
225678 3.3 注意 サン・マイクロシステムズ - Oracle Solaris の特定の patch-installation スクリプトにおける任意のファイルへのデータを追加される脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-1183 2012-12-20 19:29 2010-03-29 Show GitHub Exploit DB Packet Storm
225679 4.3 警告 phpmysite - phpMySite の contact.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1091 2012-12-20 19:29 2010-03-24 Show GitHub Exploit DB Packet Storm
225680 7.5 危険 phpmysite - phpMySite の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1090 2012-12-20 19:29 2010-03-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1481 6.7 MEDIUM
Local 		mediatek mt6765_firmware
mt6768_firmware
mt6789_firmware
mt6877_firmware
mt6897_firmware
mt6899_firmware
mt6989_firmware
mt6991_firmware
mt6993_firmware
mt8367_firmware
mt8766_fi… 		In geniezone, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege if a malicious actor has already obtained the System priv… CWE-280
Improper Handling of Insufficient Permissions or Privileges  		CVE-2026-20448 2026-05-7 21:43 2026-05-4 Show GitHub Exploit DB Packet Storm
1482 6.5 MEDIUM
Adjacent 		mediatek mt6763_firmware
mt6765_firmware
mt6767_firmware
mt6768_firmware
mt6769_firmware
mt6771_firmware
mt6779_firmware
mt6781_firmware
mt6783_firmware
mt6785_firmware
mt6789_fi… 		In Modem, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with n… CWE-120
Classic Buffer Overflow 		CVE-2026-20449 2026-05-7 21:43 2026-05-4 Show GitHub Exploit DB Packet Storm
1483 6.5 MEDIUM
Adjacent 		mediatek mt2735_firmware
mt2737_firmware
mt6833_firmware
mt6835_firmware
mt6853_firmware
mt6855_firmware
mt6858_firmware
mt6873_firmware
mt6875_firmware
mt6877_firmware
mt6878_fi… 		In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with… CWE-617
 Reachable Assertion 		CVE-2026-20450 2026-05-7 21:42 2026-05-4 Show GitHub Exploit DB Packet Storm
1484 6.7 MEDIUM
Local 		mediatek mt8115_firmware
mt8186_firmware
mt8188_firmware
mt8196_firmware
mt8365_firmware
mt8367_firmware
mt8370_firmware
mt8371_firmware
mt8390_firmware
mt8391_firmware
mt8395_fi… 		In slbc, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interacti… CWE-843
Type Confusion 		CVE-2026-20451 2026-05-7 21:42 2026-05-4 Show GitHub Exploit DB Packet Storm
1485 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io() The xfstests case "generic/107" and syzbot have both … CWE-416
 Use After Free 		CVE-2026-31715 2026-05-7 15:16 2026-05-1 Show GitHub Exploit DB Packet Storm
1486 8.8 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL before rewriting it in cifsacl build_sec_desc() and id_mode_to_cifs_acl() derive a DACL poin… NVD-CWE-noinfo
CVE-2026-31709 2026-05-7 15:16 2026-05-1 Show GitHub Exploit DB Packet Storm
1487 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: io_uring/net: fix slab-out-of-bounds read in io_bundle_nbufs() sqe->len is __u32 but gets stored into sr->len which is int. When … CWE-125
Out-of-bounds Read 		CVE-2026-31774 2026-05-7 11:29 2026-05-2 Show GitHub Exploit DB Packet Storm
1488 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initialization The recent refactoring of xfi driver changed the assignment of atc->da… NVD-CWE-noinfo
CVE-2026-31775 2026-05-7 11:28 2026-05-2 Show GitHub Exploit DB Packet Storm
1489 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Fix missing SPDIFI1 index handling SPDIF1 DAIO type isn't properly handled in daio_device_index() for hw20k2, and it… CWE-129
 Improper Validation of Array Index 		CVE-2026-31776 2026-05-7 11:27 2026-05-2 Show GitHub Exploit DB Packet Storm
1490 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Check the error for index mapping The ctxfi driver blindly assumed a proper value returned from daio_device_index(),… NVD-CWE-noinfo
CVE-2026-31777 2026-05-7 11:27 2026-05-2 Show GitHub Exploit DB Packet Storm