Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
234241 3 注意 オラクル - Siebel Product Suite の Highly Interactive Client コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1981 2012-09-25 17:27 2009-07-14 Show GitHub Exploit DB Packet Storm
234242 6 警告 オラクル - Oracle E-Business Suite の Oracle Application Object Library コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1980 2012-09-25 17:27 2009-07-14 Show GitHub Exploit DB Packet Storm
234243 9 危険 オラクル - Oracle Secure Backup の Oracle Secure Backup コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1978 2012-09-25 17:27 2009-07-14 Show GitHub Exploit DB Packet Storm
234244 10 危険 オラクル - Oracle Secure Backup の Oracle Secure Backup コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1977 2012-09-25 17:27 2009-07-14 Show GitHub Exploit DB Packet Storm
234245 1.9 注意 Linux - Linux kernel の fs/ocfs2/file.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2009-1961 2012-09-25 17:27 2009-04-6 Show GitHub Exploit DB Packet Storm
234246 5 警告 Irssi - irssi の fe-common/irc/fe-events.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-1959 2012-09-25 17:27 2009-06-7 Show GitHub Exploit DB Packet Storm
234247 7.8 危険 IBM - IBM AIX の portmapper におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-1954 2012-09-25 17:27 2009-06-7 Show GitHub Exploit DB Packet Storm
234248 4.6 警告 IBM
オラクル		 - IBM WAS などで使用される IBM FileNet Content Manager におけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1953 2012-09-25 17:27 2009-06-4 Show GitHub Exploit DB Packet Storm
234249 7.5 危険 newsboard - UNB の unb_lib/database.lib.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1947 2012-09-25 17:27 2009-06-5 Show GitHub Exploit DB Packet Storm
234250 4.3 警告 Joomla! - Joomla! 用の com_users コアコンポーネントにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1940 2012-09-25 17:27 2009-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1221 5.0 MEDIUM
Network 		linuxcontainers incus Incus is an open source container and virtual machine manager. In versions prior to 7.0.0, the image import flow issues an outbound HEAD request to a user-supplied URL before validating the request a… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-35527 2026-05-8 02:06 2026-05-6 Show GitHub Exploit DB Packet Storm
1222 8.3 HIGH
Network 		hcltech bigfix_service_management HCL BigFix Service Management (SX) is affected by a Broken Access Control vulnerability leading to privilege escalation. This could allow unauthorized users to gain elevated privileges, bypassing in… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-30151 2026-05-8 02:06 2026-05-7 Show GitHub Exploit DB Packet Storm
1223 5.3 MEDIUM
Network 		hcltech bigfix_service_management HCL BigFix Service Management (SM) is vulnerable to information exposure due to improper error handling within its reporting module. It was observed that supplying an invalid or out-of-range value to… CWE-209
Information Exposure Through an Error Message 		CVE-2025-31960 2026-05-8 02:05 2026-05-7 Show GitHub Exploit DB Packet Storm
1224 8.8 HIGH
Network 		google chrome Out of bounds write in Media in Google Chrome on Mac, iOS prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a cr… CWE-787
 Out-of-bounds Write 		CVE-2026-7957 2026-05-8 02:04 2026-05-7 Show GitHub Exploit DB Packet Storm
1225 6.5 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.4.10 contains an insufficient access control vulnerability in Nostr plugin HTTP profile routes that allows operators with write permissions to persist profile configuration witho… CWE-862
 Missing Authorization 		CVE-2026-43579 2026-05-8 02:04 2026-05-7 Show GitHub Exploit DB Packet Storm
1226 9.1 CRITICAL
Network 		openclaw openclaw OpenClaw versions 2026.3.31 before 2026.4.10 contain a privilege escalation vulnerability where heartbeat owner downgrade detection misses local background async exec completion events. Attackers can… CWE-184
 Incomplete Blacklist 		CVE-2026-43578 2026-05-8 02:04 2026-05-7 Show GitHub Exploit DB Packet Storm
1227 6.5 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.4.9 contains a file read vulnerability allowing attackers to bypass navigation guards through browser act/evaluate interactions. Attackers can pivot into the local CDP origin and… CWE-862
 Missing Authorization 		CVE-2026-43577 2026-05-8 02:04 2026-05-7 Show GitHub Exploit DB Packet Storm
1228 7.7 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.5 contains a server-side request forgery vulnerability in the CDP /json/version WebSocket endpoint that allows attackers to pivot to untrusted second-hop targets. The webSocket… CWE-601
CWE-918
Open Redirect
Server-Side Request Forgery (SSRF)  		CVE-2026-43576 2026-05-8 02:04 2026-05-7 Show GitHub Exploit DB Packet Storm
1229 9.8 CRITICAL
Network 		openclaw openclaw OpenClaw versions 2026.2.21 before 2026.4.10 contain an authentication bypass vulnerability in the sandbox noVNC helper route that exposes interactive browser session credentials. Attackers can acces… CWE-862
 Missing Authorization 		CVE-2026-43575 2026-05-8 02:03 2026-05-7 Show GitHub Exploit DB Packet Storm
1230 6.5 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.4.12 contains an improper authorization vulnerability in helper-backed channels where empty resolved approver lists are interpreted as explicit approval authorization. Attackers … CWE-183
 Permissive List of Allowed Inputs 		CVE-2026-43574 2026-05-8 02:03 2026-05-5 Show GitHub Exploit DB Packet Storm