Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
237091 6.8 警告 justjoomla - Joomla! 用の jjgallery コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6027 2012-09-25 16:59 2007-11-19 Show GitHub Exploit DB Packet Storm
237092 5 警告 KDE project - KDE Konqueror におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-6000 2012-09-25 16:59 2007-11-15 Show GitHub Exploit DB Packet Storm
237093 7.8 危険 justin hagstrom - Justin Hagstrom AutoIndex PHP Scrpit の classes/Url.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5984 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
237094 4.3 警告 justin hagstrom - Justin Hagstrom AutoIndex PHP Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5983 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
237095 3.3 注意 Lantronix, Inc. - Lantronix SCS3200 におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2007-5981 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
237096 7.5 危険 jportal - JPortal の mailer.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5974 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
237097 7.5 危険 jportal - JPortal の articles.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5973 2012-09-25 16:59 2007-11-14 Show GitHub Exploit DB Packet Storm
237098 9 危険 MIT Kerberos - krb5 の lib/kdb/kdb_default.c におけるメモリ二重解放の脆弱性 CWE-119
バッファエラー 		CVE-2007-5972 2012-09-25 16:59 2007-12-5 Show GitHub Exploit DB Packet Storm
237099 5.8 警告 MySQL AB - MySQL における任意のテーブルの権限を取得される脆弱性 CWE-DesignError
CVE-2007-5970 2012-09-25 16:59 2007-12-10 Show GitHub Exploit DB Packet Storm
237100 4.7 警告 KDE project - kdebase におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-5963 2012-09-25 16:59 2007-12-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1191 - - - An untrusted pointer dereference in the ionic cloud driver for VMWare ESXi could allow an attacker with an unprivileged VM to read kernel memory or co-located guest VM memory, potentially resulting i… New CWE-822
 Untrusted Pointer Dereference 		CVE-2025-62627 2026-05-13 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm
1192 6.3 MEDIUM
Network 		- - A vulnerability has been found in CodeAstro Online Catering Ordering System 1.0. This affects an unknown function of the file /deleteorder.php. The manipulation of the argument ID leads to sql inject… Update CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8231 2026-05-13 23:48 2026-05-10 Show GitHub Exploit DB Packet Storm
1193 7.3 HIGH
Network 		- - A vulnerability was detected in OpenClaw up to 2026.1.24. The impacted element is the function handleBlueBubblesWebhookRequest of the file extensions/bluebubbles/src/monitor.ts of the component blueb… Update CWE-287
Improper Authentication 		CVE-2026-8305 2026-05-13 23:48 2026-05-12 Show GitHub Exploit DB Packet Storm
1194 6.5 MEDIUM
Adjacent 		zyxel wre6505_firmware ** UNSUPPORTED WHEN ASSIGNED ** An improper restriction of excessive authentication attempts vulnerability in the web management interface of Zyxel WRE6505 v2 firmware version V1.00(ABDV.3)C0 could a… New CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-7255 2026-05-13 23:48 2026-05-12 Show GitHub Exploit DB Packet Storm
1195 5.3 MEDIUM
Local 		- - A flaw has been found in Squirrel up to 3.2. Impacted is the function validate_format in the library sqstdlib/sqstdstring.cpp. Executing a manipulation can lead to stack-based buffer overflow. The at… Update CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-8258 2026-05-13 23:47 2026-05-11 Show GitHub Exploit DB Packet Storm
1196 5.9 MEDIUM
Local 		- - A vulnerability was determined in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation causes heap-based buffer overflow. The attac… Update CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2026-8261 2026-05-13 23:47 2026-05-11 Show GitHub Exploit DB Packet Storm
1197 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via regular expression backtracking in the Content-Disposition filename parameter parser. A crafted multipart upload with a lon… New CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2026-8159 2026-05-13 23:44 2026-05-12 Show GitHub Exploit DB Packet Storm
1198 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. By sending a multipart/form-data request with a field name that collides with an inherited Object.proto… New CWE-248
CWE-1321
 Uncaught Exception
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2026-8161 2026-05-13 23:43 2026-05-12 Show GitHub Exploit DB Packet Storm
1199 7.5 HIGH
Network 		pillarjs multiparty multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. By sending a multipart/form-data request with a Content-Disposition header whose filename* parameter co… New CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2026-8162 2026-05-13 23:43 2026-05-12 Show GitHub Exploit DB Packet Storm
1200 7.5 HIGH
Network 		- - The Court Reservation – Manage Your Court Bookings Online plugin for WordPress is vulnerable to generic SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.10.11 due to insuf… New CWE-89
SQL Injection 		CVE-2026-1250 2026-05-13 23:43 2026-05-13 Show GitHub Exploit DB Packet Storm