Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
237851	6.8	警告	SilverStripe	-	SilverStripe の code/sitefeatures/PageCommentInterface.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-4962	2012-09-20 10:54	2011-10-17	Show	GitHub Exploit DB Packet Storm

237852	6	警告	SilverStripe	-	SilverStripe における管理者権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4961	2012-09-20 10:51	2011-10-17	Show	GitHub Exploit DB Packet Storm

237853	7.5	危険	SilverStripe	-	SilverStripe の Folder::findOrMake メソッドにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4960	2012-09-20 10:47	2011-10-17	Show	GitHub Exploit DB Packet Storm

237854	6.8	警告	SilverStripe	-	SilverStripe の addslashes メソッドにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4959	2012-09-20 10:47	2011-10-17	Show	GitHub Exploit DB Packet Storm

237855	5	警告	SilverStripe	-	SilverStripe におけるアクセス制限を回避される脆弱性	CWE-310 暗号の問題	CVE-2010-5079	2012-09-20 10:45	2010-12-21	Show	GitHub Exploit DB Packet Storm

237856	5	警告	SilverStripe	-	SilverStripe におけるバージョン情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-5078	2012-09-20 10:40	2010-12-21	Show	GitHub Exploit DB Packet Storm

237857	6.8	警告	SilverStripe	-	SilverStripe の core/model/Translatable.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4824	2012-09-20 10:38	2010-12-21	Show	GitHub Exploit DB Packet Storm

237858	4.3	警告	SilverStripe	-	SilverStripe におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4823	2012-09-20 10:35	2010-12-21	Show	GitHub Exploit DB Packet Storm

237859	4.3	警告	SilverStripe	-	SilverStripe の core/model/MySQLDatabase.php におけるページへの SQL クエリを取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4822	2012-09-20 10:31	2010-12-21	Show	GitHub Exploit DB Packet Storm

237860	6.4	警告	Sami Kiminki	-	Drupal 用 Redirecting click bouncer モジュールにおけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2012-2062	2012-09-19 16:43	2012-03-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
941	-		-	-	A critical IDOR vulnerability has been discovered in Comet Backup affecting all versions from 20.11.0 to 26.1.1 and 26.2.1. The vulnerability allows a tenant administrator to impersonate any end-user…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-29200	2026-05-4 16:16	2026-05-4	Show	GitHub Exploit DB Packet Storm

942	-		-	-	phpBB before 3.3.16 is vulnerable to Host Header Injection that can lead to password rest link poisoning. When force_server_vars is disabled, the servers hostname may be extracted from the HTTP Host …	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2026-29199	2026-05-4 16:15	2026-05-4	Show	GitHub Exploit DB Packet Storm

943	6.5	MEDIUM Network	-	-	A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constrai…	CWE-178 Improper Handling of Case Sensitivity	CVE-2026-3833	2026-05-4 05:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

944	3.7	LOW Network	-	-	A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a lo…	CWE-179 Incorrect Behavior Order: Early Validation	CVE-2026-3832	2026-05-4 05:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

945	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: net: mana: fix use-after-free in add_adev() error path If auxiliary_device_add() fails, add_adev() jumps to add_fail and calls au…	-	CVE-2026-43056	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

946	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: target: file: Use kzalloc_flex for aio_cmd The target_core_file doesn't initialize the aio_cmd->iocb for the ki_write_strea…	-	CVE-2026-43055	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

947	8.1	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq The wacom_intuos_bt_irq() function processes Bluetooth HID reports with…	-	CVE-2026-43051	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

948	8.8	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: core: Mitigate potential OOB by removing bogus memset() The memset() in hid_report_raw_event() has the good intention of cle…	-	CVE-2026-43048	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

949	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Check to ensure report responses match the request It is possible for a malicious (or clumsy) device to respond …	-	CVE-2026-43047	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

950	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix DMA corruption on long hmac keys When a key longer than block size is supplied, it is copied and then hashed i…	-	CVE-2026-43044	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm