Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239351	7.5	危険	nukescripts	-	NukeSentinel の includes/nukesentinel.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5150	2012-09-25 16:59	2007-10-1	Show	GitHub Exploit DB Packet Storm

239352	6.8	警告	north country public radio	-	North Country PMM の NewsCMS/news/newstopic_inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5149	2012-09-25 16:59	2007-10-1	Show	GitHub Exploit DB Packet Storm

239353	4.3	警告	マイクロソフト	-	Microsoft Windows XP のシステム DLL ファイルにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5145	2012-09-25 16:59	2007-10-1	Show	GitHub Exploit DB Packet Storm

239354	4.3	警告	マイクロソフト	-	Windows Live Messenger の GDI engine におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5144	2012-09-25 16:59	2007-10-1	Show	GitHub Exploit DB Packet Storm

239355	6.8	警告	integramod	-	IntegraMOD Nederland の includes/archive/archive_topic.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5140	2012-09-25 16:59	2007-09-28	Show	GitHub Exploit DB Packet Storm

239356	6.8	警告	lustig	-	lustig.cms の forum/forum.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5138	2012-09-25 16:59	2007-09-28	Show	GitHub Exploit DB Packet Storm

239357	7.5	危険	interspire	-	Interspire ActiveKB NX の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5131	2012-09-25 16:59	2007-09-27	Show	GitHub Exploit DB Packet Storm

239358	4.3	警告	JSPWiki	-	JSPWiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5121	2012-09-25 16:59	2007-09-27	Show	GitHub Exploit DB Packet Storm

239359	4.3	警告	JSPWiki	-	JSPWiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5120	2012-09-25 16:59	2007-09-27	Show	GitHub Exploit DB Packet Storm

239360	4.3	警告	JSPWiki	-	JSPWiki における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2007-5119	2012-09-25 16:59	2007-09-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2911	-		-	-	In the Linux kernel, the following vulnerability has been resolved: media: rockchip: rkcif: Add missing MUST_CONNECT flag to pads The pads missed checks for connected devices which may a null deref…	-	CVE-2026-46222	2026-05-28 22:44	2026-05-28	Show	GitHub Exploit DB Packet Storm

2912	-		-	-	In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix bo leak in xe_dma_buf_init_obj() on allocation failure When drm_gpuvm_resv_object_alloc() fails, the pre-allocated st…	-	CVE-2026-46224	2026-05-28 22:44	2026-05-28	Show	GitHub Exploit DB Packet Storm

2913	-		-	-	In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on registration failure Make sure to disable and free the interrupts in case controller registra…	-	CVE-2026-46241	2026-05-28 22:44	2026-05-28	Show	GitHub Exploit DB Packet Storm

2914	-		-	-	In the Linux kernel, the following vulnerability has been resolved: cgroup: Defer css percpu_ref kill on rmdir until cgroup is depopulated A chain of commits going back to v7.0 reworked rmdir to sa…	-	CVE-2026-46223	2026-05-28 22:44	2026-05-28	Show	GitHub Exploit DB Packet Storm

2915	6.1	MEDIUM Network	mistune_project	mistune	Mistune is a Python Markdown parser with renderers and plugins. In 3.2.0 and realier, in src/mistune/directives/image.py, the render_figure() function concatenates figclass and figwidth options direc…	CWE-79 Cross-site Scripting	CVE-2026-44896	2026-05-28 22:43	2026-05-27	Show	GitHub Exploit DB Packet Storm

2916	6.1	MEDIUM Network	mistune_project	mistune	Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, HTMLRenderer.heading() builds the opening <hN> tag by string-concatenating the id attribute value directly into the HTM…	CWE-79 Cross-site Scripting	CVE-2026-44897	2026-05-28 22:42	2026-05-27	Show	GitHub Exploit DB Packet Storm

2917	6.1	MEDIUM Network	mistune_project	mistune	Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, render_toc_ul() builds a <ul> table-of-contents tree from a list of (level, id, text) tuples. Both the id value (used a…	CWE-79 Cross-site Scripting	CVE-2026-44898	2026-05-28 22:42	2026-05-27	Show	GitHub Exploit DB Packet Storm

2918	5.4	MEDIUM Network	apache	shiro	Apache Shiro’s Jakarta EE module used the HTTP Referer header in certain cases to issue redirect after a user login. In affected versions, insufficient validation of this client-controlled value coul…	CWE-601 Open Redirect	CVE-2026-48589	2026-05-28 22:38	2026-05-26	Show	GitHub Exploit DB Packet Storm

2919	6.1	MEDIUM Network	mistune_project	mistune	Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, the Image directive plugin validates the :width: and :height: options with a regex compiled as _num_re = re.compile(r"^…	CWE-79 Cross-site Scripting	CVE-2026-44899	2026-05-28 22:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

2920	8.8	HIGH Network	tanium	connect	Tanium addressed an unauthorized code execution vulnerability in Connect.	CWE-78 OS Command	CVE-2026-9207	2026-05-28 22:31	2026-05-27	Show	GitHub Exploit DB Packet Storm