Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
238011 5 警告 netref - Netref の script/cat_for_aff.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5618 2012-09-25 15:36 2006-10-30 Show GitHub Exploit DB Packet Storm
238012 10 危険 openpbs
SUSE		 - SUSE Linux で使用される OpenPBS における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2006-5616 2012-09-25 15:36 2006-10-30 Show GitHub Exploit DB Packet Storm
238013 2.6 注意 マイクロソフト - Microsoft Windows NAT Helper コンポーネント におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5614 2012-09-25 15:36 2006-10-30 Show GitHub Exploit DB Packet Storm
238014 7.5 危険 mp3 streaming downsampler - mp3SDS の Core/core.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5613 2012-09-25 15:36 2006-10-30 Show GitHub Exploit DB Packet Storm
238015 4.3 警告 オラクル - Oracle Application Express におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5599 2012-09-25 15:36 2006-10-17 Show GitHub Exploit DB Packet Storm
238016 7.5 危険 minihttp - MiniHTTP Web Forum & File Server PowerPack における任意のユーザアカウントを追加される脆弱性 - CVE-2006-5597 2012-09-25 15:36 2006-10-27 Show GitHub Exploit DB Packet Storm
238017 7.5 危険 pacos drivers - PacPoll の Admin/check.asp における認証を回避される脆弱性 - CVE-2006-5592 2012-09-25 15:36 2006-10-27 Show GitHub Exploit DB Packet Storm
238018 5 警告 pacos drivers - PacPoll の Admin/check.asp における SQL インジェクションの脆弱性 - CVE-2006-5591 2012-09-25 15:36 2006-10-27 Show GitHub Exploit DB Packet Storm
238019 7.5 危険 LedgerSMB - LSMB における SQL インジェクションの脆弱性 - CVE-2006-5589 2012-09-25 15:36 2006-10-27 Show GitHub Exploit DB Packet Storm
238020 7.5 危険 mdweb - MDweb における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5587 2012-09-25 15:36 2006-10-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1091 7.2 HIGH
Network 		- - The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via POST parameter key names in the submit_nex_form() function in versions up to,… Update CWE-79
Cross-site Scripting 		CVE-2026-5063 2026-05-6 04:13 2026-05-3 Show GitHub Exploit DB Packet Storm
1092 4.3 MEDIUM
Network 		- - A weakness has been identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown function of the file backend/webserver/api/datasets.py of the component Data Endpoint. Executing a manipu… Update CWE-22
Path Traversal 		CVE-2026-7680 2026-05-6 04:13 2026-05-3 Show GitHub Exploit DB Packet Storm
1093 6.5 MEDIUM
Network 		- - A security vulnerability has been detected in jsbroks COCO Annotator up to 0.11.1. Affected by this vulnerability is an unknown functionality of the file backend/webserver/api/datasets.py of the comp… Update CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-7681 2026-05-6 04:13 2026-05-3 Show GitHub Exploit DB Packet Storm
1094 5.3 MEDIUM
Network 		- - A vulnerability was found in eyeo Adblock Plus up to 4.36.2 on Chrome. Affected by this vulnerability is the function postMessage of the file premium.preload.js of the component Legacy Premium Activa… Update CWE-266
CWE-284
 Incorrect Privilege Assignment
Improper Access Control 		CVE-2026-7686 2026-05-6 04:13 2026-05-3 Show GitHub Exploit DB Packet Storm
1095 6.3 MEDIUM
Network 		- - A vulnerability was determined in langflow-ai langflow up to 1.8.4. Affected by this issue is the function CodeParser.parse_callable_details of the file src/lfx/src/lfx/custom/code_parser/code_parser… Update CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7687 2026-05-6 04:13 2026-05-3 Show GitHub Exploit DB Packet Storm
1096 7.3 HIGH
Network 		- - A flaw has been found in Acrel Electrical ECEMS Enterprise Microgrid Energy Efficiency Management System 1.3.0. The impacted element is an unknown function of the file /SubstationWEBV2/main/elecMaxMi… Update CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7694 2026-05-6 04:13 2026-05-3 Show GitHub Exploit DB Packet Storm
1097 7.3 HIGH
Network 		- - A flaw has been found in AV Stumpfl Pixera Two Media Server up to 25.2 R2. Impacted is an unknown function of the component Websocket API. This manipulation causes code injection. The attack can be i… Update CWE-74
CWE-94
Injection
Code Injection 		CVE-2026-7703 2026-05-6 04:13 2026-05-4 Show GitHub Exploit DB Packet Storm
1098 4.3 MEDIUM
Adjacent 		- - A vulnerability has been found in AV Stumpfl Pixera Two Media Server up to 25.1 R2. The affected element is an unknown function of the component Service Port 1338. Such manipulation leads to path tra… Update CWE-22
Path Traversal 		CVE-2026-7704 2026-05-6 04:13 2026-05-4 Show GitHub Exploit DB Packet Storm
1099 4.3 MEDIUM
Network 		- - A vulnerability has been found in Open5GS up to 2.7.7. This issue affects the function gmm_handle_service_request of the file /src/amf/gmm-handler.c of the component AMF. The manipulation leads to de… Update CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-7706 2026-05-6 04:13 2026-05-4 Show GitHub Exploit DB Packet Storm
1100 4.3 MEDIUM
Network 		- - A vulnerability was determined in Open5GS up to 2.7.7. The affected element is the function ogs_dbi_subscription_data in the library /lib/dbi/subscription.c of the component UDR. This manipulation of… Update CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-7708 2026-05-6 04:13 2026-05-4 Show GitHub Exploit DB Packet Storm