Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
234891 4.3 警告 omnisoftsol - VidSharePro の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1735 2012-09-25 17:27 2009-05-20 Show GitHub Exploit DB Packet Storm
234892 7.5 危険 omnisoftsol - VidSharePro の listing_video.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1734 2012-09-25 17:27 2009-05-20 Show GitHub Exploit DB Packet Storm
234893 7.5 危険 mlffat - MLFFAT の panel/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1731 2012-09-25 17:27 2009-05-20 Show GitHub Exploit DB Packet Storm
234894 10 危険 NetMechanica - NetMechanica NetDecision TFTP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1730 2012-09-25 17:27 2009-05-20 Show GitHub Exploit DB Packet Storm
234895 9.3 危険 microchip - Microchip MPLAB IDE におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1674 2012-09-25 17:27 2009-05-18 Show GitHub Exploit DB Packet Storm
234896 9.3 危険 Mini-stream Software - Mini-stream CastRipper におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1667 2012-09-25 17:27 2009-05-18 Show GitHub Exploit DB Packet Storm
234897 6.8 警告 Intelliants - eLitius の admin/uploadimage.php における任意のファイルを実行される脆弱性 CWE-Other
その他 		CVE-2009-1659 2012-09-25 17:27 2009-05-18 Show GitHub Exploit DB Packet Storm
234898 9.3 危険 Mini-stream Software - Mini-stream RM Downloader におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1646 2012-09-25 17:27 2009-05-15 Show GitHub Exploit DB Packet Storm
234899 9.3 危険 Mini-stream Software - Mini-stream Easy RM-MP3 Converter におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1645 2012-09-25 17:27 2009-05-15 Show GitHub Exploit DB Packet Storm
234900 9.3 危険 Mini-stream Software - Mini-stream ASX to MP3 Converter におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1642 2012-09-25 17:27 2009-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1771 9.8 CRITICAL
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the PDO Firebird driver improperly handles NUL bytes when preparing SQL queries. During token-by… CWE-89
SQL Injection 		CVE-2025-14179 2026-05-13 02:48 2026-05-10 Show GitHub Exploit DB Packet Storm
1772 9.8 CRITICAL
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOAP extension's object deduplication mechanism stores pointers to PHP objects in a global m… CWE-416
 Use After Free 		CVE-2026-6722 2026-05-13 02:48 2026-05-10 Show GitHub Exploit DB Packet Storm
1773 6.1 MEDIUM
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, 8.5.* before 8.5.6, due to improper sanitation of user data, it allows an attacker to compose an URL, which will cause t… CWE-79
Cross-site Scripting 		CVE-2026-6735 2026-05-13 02:43 2026-05-10 Show GitHub Exploit DB Packet Storm
1774 7.5 HIGH
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, some functions, including urldecode(), pass signed char to ctype functions (like isxdigit()). On… CWE-125
Out-of-bounds Read 		CVE-2026-7258 2026-05-13 02:41 2026-05-10 Show GitHub Exploit DB Packet Storm
1775 6.5 MEDIUM
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, a mismatch between encoding lists in Oniguruma and mbfl leads to  a NULL pointer dereference, re… CWE-476
 NULL Pointer Dereference 		CVE-2026-7259 2026-05-13 02:40 2026-05-10 Show GitHub Exploit DB Packet Storm
1776 9.8 CRITICAL
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when SoapServer is configured with SOAP_PERSISTENCE_SESSION, the handler object is persisted acr… CWE-416
 Use After Free 		CVE-2026-7261 2026-05-13 02:40 2026-05-10 Show GitHub Exploit DB Packet Storm
1777 7.5 HIGH
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when a SOAP server has a typemap configured, the decoding process contains a mistake which check… CWE-476
 NULL Pointer Dereference 		CVE-2026-7262 2026-05-13 02:39 2026-05-10 Show GitHub Exploit DB Packet Storm
1778 7.5 HIGH
Network 		php php In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the metaphone() function in ext/standard/metaphone.c uses a signed int variable to track the cur… CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2026-7568 2026-05-13 02:38 2026-05-10 Show GitHub Exploit DB Packet Storm
1779 7.5 HIGH
Network 		open5gs open5gs A vulnerability was identified in Open5GS up to 2.7.7. This affects the function pcf_npcf_smpolicycontrol_handle_delete of the file src/pcf/sm-sm.c of the component delete Endpoint. The manipulation … CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8225 2026-05-13 02:38 2026-05-10 Show GitHub Exploit DB Packet Storm
1780 7.5 HIGH
Network 		open5gs open5gs A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogs_pcc_rule_install_flow_from_media in the library /lib/proto/types.c. The manipulation results in… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8226 2026-05-13 02:38 2026-05-10 Show GitHub Exploit DB Packet Storm