Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226421 5 警告 tuxfamily - Chrony の chronyd におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0294 2012-12-20 19:28 2010-02-8 Show GitHub Exploit DB Packet Storm
226422 5 警告 tuxfamily - Chrony の chronyd のクライアント記録機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0293 2012-12-20 19:28 2010-02-8 Show GitHub Exploit DB Packet Storm
226423 5 警告 tuxfamily - Chrony の chronyd におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0292 2012-12-20 19:28 2010-02-8 Show GitHub Exploit DB Packet Storm
226424 5.1 警告 TYPO3 Association - TYPO3 用の OpenID Identity Authentication エクステンションにおける認証を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0286 2012-12-20 19:28 2010-02-22 Show GitHub Exploit DB Packet Storm
226425 4.6 警告 サン・マイクロシステムズ - Sun OpenSolaris の hald における HAL 仕様をサポートする接続デバイスへの変更の検出を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0271 2012-12-20 19:28 2010-01-4 Show GitHub Exploit DB Packet Storm
226426 7.5 危険 SUSE - SUSE Linux Enterprise および openSUSE におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0230 2012-12-20 19:28 2010-01-22 Show GitHub Exploit DB Packet Storm
226427 4.6 警告 verbatim - Verbatim Corporate Secure および Corporate Secure FIPS Edition USB フラッシュドライブにおける平文のデータコンテンツにアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0229 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
226428 4.6 警告 verbatim - Verbatim Corporate Secure および Corporate Secure FIPS Edition USB フラッシュドライブにおけるデータを変更される脆弱性 CWE-310
暗号の問題 		CVE-2010-0228 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
226429 4.6 警告 verbatim - Verbatim Corporate Secure および Corporate Secure FIPS Edition USB フラッシュドライブにおける平文のドライブコンテンツにアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0227 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
226430 4.6 警告 SanDisk - SanDisk Cruzer Enterprise USB フラッシュドライブにおける平文のドライブコンテンツへアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0226 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1771 9.8 CRITICAL
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the PDO Firebird driver improperly handles NUL bytes when preparing SQL queries. During token-by… CWE-89
SQL Injection 		CVE-2025-14179 2026-05-13 02:48 2026-05-10 Show GitHub Exploit DB Packet Storm
1772 9.8 CRITICAL
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOAP extension's object deduplication mechanism stores pointers to PHP objects in a global m… CWE-416
 Use After Free 		CVE-2026-6722 2026-05-13 02:48 2026-05-10 Show GitHub Exploit DB Packet Storm
1773 6.1 MEDIUM
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, 8.5.* before 8.5.6, due to improper sanitation of user data, it allows an attacker to compose an URL, which will cause t… CWE-79
Cross-site Scripting 		CVE-2026-6735 2026-05-13 02:43 2026-05-10 Show GitHub Exploit DB Packet Storm
1774 7.5 HIGH
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, some functions, including urldecode(), pass signed char to ctype functions (like isxdigit()). On… CWE-125
Out-of-bounds Read 		CVE-2026-7258 2026-05-13 02:41 2026-05-10 Show GitHub Exploit DB Packet Storm
1775 6.5 MEDIUM
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, a mismatch between encoding lists in Oniguruma and mbfl leads to  a NULL pointer dereference, re… CWE-476
 NULL Pointer Dereference 		CVE-2026-7259 2026-05-13 02:40 2026-05-10 Show GitHub Exploit DB Packet Storm
1776 9.8 CRITICAL
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when SoapServer is configured with SOAP_PERSISTENCE_SESSION, the handler object is persisted acr… CWE-416
 Use After Free 		CVE-2026-7261 2026-05-13 02:40 2026-05-10 Show GitHub Exploit DB Packet Storm
1777 7.5 HIGH
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when a SOAP server has a typemap configured, the decoding process contains a mistake which check… CWE-476
 NULL Pointer Dereference 		CVE-2026-7262 2026-05-13 02:39 2026-05-10 Show GitHub Exploit DB Packet Storm
1778 7.5 HIGH
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the metaphone() function in ext/standard/metaphone.c uses a signed int variable to track the cur… CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2026-7568 2026-05-13 02:38 2026-05-10 Show GitHub Exploit DB Packet Storm
1779 7.5 HIGH
Network 		open5gs open5gs A vulnerability was identified in Open5GS up to 2.7.7. This affects the function pcf_npcf_smpolicycontrol_handle_delete of the file src/pcf/sm-sm.c of the component delete Endpoint. The manipulation … CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8225 2026-05-13 02:38 2026-05-10 Show GitHub Exploit DB Packet Storm
1780 7.5 HIGH
Network 		open5gs open5gs A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogs_pcc_rule_install_flow_from_media in the library /lib/proto/types.c. The manipulation results in… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8226 2026-05-13 02:38 2026-05-10 Show GitHub Exploit DB Packet Storm