Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
235711 7.8 危険 kernel.org - Linux DC++ の client/NmdcHub.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2954 2012-09-25 17:17 2008-07-1 Show GitHub Exploit DB Packet Storm
235712 5 警告 kernel.org - Linux DC++ におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2953 2012-09-25 17:17 2008-07-1 Show GitHub Exploit DB Packet Storm
235713 6 警告 IBM - IBM TDS におけるメモリ二重解放の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-2943 2012-09-25 17:17 2008-06-30 Show GitHub Exploit DB Packet Storm
235714 6.8 警告 Mercurial - Mercurial の patch.py におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2942 2012-09-25 17:17 2008-06-30 Show GitHub Exploit DB Packet Storm
235715 4.3 警告 Lyris - Lyris ListManager の read/search/results におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2923 2012-09-25 17:17 2008-06-30 Show GitHub Exploit DB Packet Storm
235716 9.3 危険 muvee - DXTTextOutEffect ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2910 2012-09-25 17:17 2008-06-30 Show GitHub Exploit DB Packet Storm
235717 9.3 危険 Novell - Novell iPrint Client の ienipp.ocx におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2908 2012-09-25 17:17 2008-06-12 Show GitHub Exploit DB Packet Storm
235718 6.8 警告 Mambo Foundation - Mambo の Cache_Lite パッケージにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2905 2012-09-25 17:17 2008-06-30 Show GitHub Exploit DB Packet Storm
235719 6.5 警告 Haudenschilt - Haudenschilt FCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2901 2012-09-25 17:17 2008-06-30 Show GitHub Exploit DB Packet Storm
235720 10 危険 j00lean-cms - j00lean-CMS の includes/classes/page.php における脆弱性 CWE-noinfo
情報不足 		CVE-2008-2899 2012-09-25 17:17 2008-06-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1031 - - - MinIO is a high-performance object storage system. From RELEASE.2022-07-24T01-54-52Z to before RELEASE.2026-04-14T21-32-45Z, A path traversal vulnerability in MinIO's ReadMultiple internode storage-R… New CWE-22
Path Traversal 		CVE-2026-42600 2026-05-12 07:22 2026-05-12 Show GitHub Exploit DB Packet Storm
1032 8.2 HIGH
Network 		- - jotty·page is a self-hosted app for your checklists and notes. Prior to 1.22.0, an unauthenticated path traversal vulnerability exists in /api/app-icons/[filename]. The filename route parameter is jo… New CWE-22
CWE-200
Path Traversal
Information Exposure 		CVE-2026-42564 2026-05-12 07:22 2026-05-12 Show GitHub Exploit DB Packet Storm
1033 2.4 LOW
Network 		- - Geyser is a bridge between Minecraft: Bedrock Edition and Minecraft: Java Edition. Prior to 2.9.3, a server-side request forgery (SSRF) vulnerability exists in Geyser’s handling of Bedrock player hea… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-42188 2026-05-12 07:22 2026-05-12 Show GitHub Exploit DB Packet Storm
1034 6.2 MEDIUM
Local 		- - barebox prior to version 2026.04.0 contains out-of-bounds read vulnerabilities in ext4 extent parsing due to missing validation of the eh_entries field against buffer capacity in fs/ext4/ext4_common.… New CWE-125
Out-of-bounds Read 		CVE-2026-34961 2026-05-12 07:22 2026-05-12 Show GitHub Exploit DB Packet Storm
1035 6.5 MEDIUM
Adjacent 		- - barebox prior to version 2026.04.0 contains an out-of-bounds read vulnerability in DHCP option parsing within the dhcp_message_type() function that fails to verify the options pointer remains within … New CWE-125
Out-of-bounds Read 		CVE-2026-34960 2026-05-12 07:22 2026-05-12 Show GitHub Exploit DB Packet Storm
1036 6.8 MEDIUM
Network 		- - WeGIA is a web manager for charitable institutions. In versions prior to 3.7.3, a Stored Cross-Site Scripting (XSS) vulnerability allows an authenticated user to inject malicious JavaScript into the … New CWE-79
Cross-site Scripting 		CVE-2026-45025 2026-05-12 06:19 2026-05-12 Show GitHub Exploit DB Packet Storm
1037 - - - WeGIA is a web manager for charitable institutions. In versions prior to 3.7.0, a Stored Cross-Site Scripting (XSS) flaw was identified at the following endpoint: funcionario/profile_funcionario.php?… New CWE-79
Cross-site Scripting 		CVE-2026-42870 2026-05-12 06:19 2026-05-12 Show GitHub Exploit DB Packet Storm
1038 7.5 HIGH
Network 		postfix postfix Postfix before 3.8.16, 3.9 before 3.9.10, and 3.10 before 3.10.9 sometimes allows a buffer over-read and process crash via an enhanced status code that lacks text after the third number. Update CWE-193
 Off-by-one Error 		CVE-2026-43964 2026-05-12 06:17 2026-05-5 Show GitHub Exploit DB Packet Storm
1039 7.5 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using it Before using the data buffer to send back the response message, zero it completely.… Update NVD-CWE-noinfo
CVE-2026-43184 2026-05-12 05:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1040 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: media: cx25821: Fix a resource leak in cx25821_dev_setup() Add release_mem_region() if ioremap() fails to release the memory regi… Update CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-43183 2026-05-12 05:55 2026-05-6 Show GitHub Exploit DB Packet Storm