Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239151	10	危険	オラクル	-	Oracle HTTP Server における脆弱性	-	CVE-2006-5349	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

239152	5	警告	morian	-	Album Photo Sans Nom の getimg.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5320	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

239153	7.6	危険	マカフィー	-	McAfee ePolicy Orchestrator における整数オーバーフローの脆弱性	-	CVE-2006-5274	2012-09-25 15:36	2007-07-11	Show	GitHub Exploit DB Packet Storm

239154	7.6	危険	マカフィー	-	McAfee ePolicy Orchestrator などにおけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2006-5273	2012-09-25 15:36	2007-07-11	Show	GitHub Exploit DB Packet Storm

239155	7.5	危険	マカフィー	-	McAfee ePolicy Orchestrator などにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-5272	2012-09-25 15:36	2007-07-11	Show	GitHub Exploit DB Packet Storm

239156	7.6	危険	マカフィー	-	McAfee ePolicy Orchestrator における整数アンダーフローの脆弱性	-	CVE-2006-5271	2012-09-25 15:36	2007-07-11	Show	GitHub Exploit DB Packet Storm

239157	7.5	危険	nayco	-	Nayco JASmine の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5318	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

239158	7.5	危険	jhjgubbels	-	eboli の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5317	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

239159	6.5	警告	Hastymail	-	Hastymail における任意の SMTP コマンドを送信される脆弱性	CWE-20 不適切な入力確認	CVE-2006-5313	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

239160	6.8	警告	j-pierre dezelus phpmyconferences	-	J-Pierre DEZELUS Les Visiteursにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5310	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1281	6.2	MEDIUM Local	apple	ipados iphone_os macos tvos visionos watchos	An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, mac… New	CWE-787 Out-of-bounds Write	CVE-2026-43666	2026-05-13 23:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1282	7.5	HIGH Network	apple	ipados iphone_os macos tvos visionos watchos	A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS T… New	CWE-416 Use After Free	CVE-2026-43668	2026-05-13 23:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1283	8.6	HIGH Network	inngest	inngest	Inngest is a platform for running event-driven and scheduled background functions with queueing, retries, and step orchestration. Versions 3.22.0 through 3.53.1 contain a vulnerability that allows un… Update	CWE-200 CWE-497 Information Exposure Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2026-42047	2026-05-13 23:06	2026-05-8	Show	GitHub Exploit DB Packet Storm

1284	6.5	MEDIUM Network	apache	apache-airflow-providers-opensearch	The OpenSearch logging provider, when configured with a `host` URL that embeds credentials (for example `https://user:password@server.example.com:9200`), wrote the full host URL — including the embed… Update	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2026-43826	2026-05-13 23:05	2026-05-11	Show	GitHub Exploit DB Packet Storm

1285	7.5	HIGH Network	apple	ipados iphone_os	A resource exhaustion issue was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.4 and iPadOS 26.4. A remote attacker may be able to cause a denia… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-28872	2026-05-13 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

1286	7.5	HIGH Network	apple	ipados iphone_os macos visionos	This issue was addressed through improved state management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5,… New	CWE-359 Exposure of Private Personal Information to an Unauthorized Actor	CVE-2026-28906	2026-05-13 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

1287	3.3	LOW Local	apple	macos	This issue was addressed with improved permissions checking. This issue is fixed in macOS Tahoe 26.4. A malicious app may be able to access arbitrary files. New	CWE-284 Improper Access Control	CVE-2026-28910	2026-05-13 23:02	2026-05-12	Show	GitHub Exploit DB Packet Storm

1288	5.4	MEDIUM Network	apple	ipados iphone_os macos	An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may … New	CWE-787 Out-of-bounds Write	CVE-2026-28819	2026-05-13 23:00	2026-05-12	Show	GitHub Exploit DB Packet Storm

1289	6.5	MEDIUM Network	apple	ipados iphone_os macos tvos visionos watchos	An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Parsing a malicio… New	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2026-28918	2026-05-13 22:57	2026-05-12	Show	GitHub Exploit DB Packet Storm

1290	9.8	CRITICAL Network	gnu redhat	gnutls hardened_images openshift_container_platform enterprise_linux	A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacke… Update	CWE-626 Null Byte Interaction Error (Poison Null Byte)	CVE-2026-42010	2026-05-13 22:54	2026-05-7	Show	GitHub Exploit DB Packet Storm