Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227821 7.5 危険 Xerox - Xerox Fiery Webtools の summary.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3913 2012-12-20 19:28 2009-11-9 Show GitHub Exploit DB Packet Storm
227822 5 警告 tftgallery - TFTgallery の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3912 2012-12-20 19:28 2009-11-9 Show GitHub Exploit DB Packet Storm
227823 4.3 警告 tftgallery - TFTgallery の settings.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3911 2012-12-20 19:28 2009-11-9 Show GitHub Exploit DB Packet Storm
227824 3.5 注意 WordPress.org - WordPress の wp-admin/press-this.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3891 2012-12-20 19:28 2009-11-12 Show GitHub Exploit DB Packet Storm
227825 6 警告 WordPress.org - WordPress の wp-includes/functions.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3890 2012-12-20 19:28 2009-11-12 Show GitHub Exploit DB Packet Storm
227826 9.3 危険 サン・マイクロシステムズ - Sun Java System Web Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3878 2012-12-20 19:28 2009-11-5 Show GitHub Exploit DB Packet Storm
227827 6.9 警告 SafeNet, Inc - SafeNet SoftRemote におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3861 2012-12-20 19:28 2009-11-4 Show GitHub Exploit DB Packet Storm
227828 4.3 警告 Softonic - Softonic International SciTE におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3857 2012-12-20 19:28 2009-11-4 Show GitHub Exploit DB Packet Storm
227829 4.3 警告 Strata Technologies - Twilight CMS の news/ のデフォルト URI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3856 2012-12-20 19:28 2009-11-4 Show GitHub Exploit DB Packet Storm
227830 9.3 危険 Pegasus Mail - PMail におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3838 2012-12-20 19:28 2009-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1981 7.8 HIGH
Local 		pengutronix barebox barebox version prior to 2026.04.0 contains multiple memory-safety vulnerabilities in the EFI PE loader in efi/loader/pe.c where integer overflow in virtual image size computation using 32-bit arithm… CWE-190
 Integer Overflow or Wraparound 		CVE-2026-34963 2026-05-14 04:44 2026-05-12 Show GitHub Exploit DB Packet Storm
1982 7.8 HIGH
Local 		adobe after_effects After Effects versions 26.0, 25.6.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitat… CWE-121
Stack-based Buffer Overflow 		CVE-2026-34690 2026-05-14 04:42 2026-05-13 Show GitHub Exploit DB Packet Storm
1983 7.8 HIGH
Local 		adobe substance_3d_designer Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation … CWE-787
 Out-of-bounds Write 		CVE-2026-34682 2026-05-14 04:40 2026-05-13 Show GitHub Exploit DB Packet Storm
1984 7.8 HIGH
Local 		adobe substance_3d_designer Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation … CWE-787
 Out-of-bounds Write 		CVE-2026-34681 2026-05-14 04:40 2026-05-13 Show GitHub Exploit DB Packet Storm
1985 6.3 MEDIUM
Local 		adobe substance_3d_designer Substance3D - Designer versions 15.1.0 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to arbitrary file sy… CWE-22
Path Traversal 		CVE-2026-34664 2026-05-14 04:40 2026-05-13 Show GitHub Exploit DB Packet Storm
1986 9.3 CRITICAL
Network 		adobe connect_desktop_application Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. An … CWE-863
 Incorrect Authorization 		CVE-2026-34660 2026-05-14 04:39 2026-05-13 Show GitHub Exploit DB Packet Storm
1987 9.6 CRITICAL
Network 		adobe connect_desktop_application Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current … CWE-502
 Deserialization of Untrusted Data 		CVE-2026-34659 2026-05-14 04:38 2026-05-13 Show GitHub Exploit DB Packet Storm
1988 5.5 MEDIUM
Local 		imagemagick imagemagick ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-21 and 6.9.13-46, a malicious MIFF file could trigger an overflow when a user opens it in… CWE-121
Stack-based Buffer Overflow 		CVE-2026-42050 2026-05-14 04:38 2026-05-12 Show GitHub Exploit DB Packet Storm
1989 7.8 HIGH
Local 		adobe media_encoder Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o… CWE-787
 Out-of-bounds Write 		CVE-2026-34639 2026-05-14 04:36 2026-05-13 Show GitHub Exploit DB Packet Storm
1990 7.8 HIGH
Local 		adobe media_encoder Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exp… CWE-190
 Integer Overflow or Wraparound 		CVE-2026-34640 2026-05-14 04:36 2026-05-13 Show GitHub Exploit DB Packet Storm