Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244411 4.3 警告 AlstraSoft - AlstraSoft Affiliate Network Pro におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4081 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
244412 6.4 警告 AlstraSoft - AlstraSoft E-Friends の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4080 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
244413 4.3 警告 AlstraSoft - AlstraSoft SMS Text Messaging Enterprise におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4079 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
244414 4.3 警告 AlstraSoft - AlstraSoft Text Ads Enterprise におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4078 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
244415 4.3 警告 AlstraSoft - AlstraSoft Video Share Enterprise におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4077 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
244416 7.5 危険 ASP indir - Alisveris Sitesi Scripti の index.asp における SQL インジェクションの脆弱性 - CVE-2007-4076 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
244417 4.3 警告 ASP indir - Alisveris Sitesi Scripti の index.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4075 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
244418 10 危険 SUSE
centre for speech technology research		 - Gentoo Linux などの CSTR Festival のディフォルト設定における任意のコマンドを実行される脆弱性 CWE-16
環境設定 		CVE-2007-4074 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
244419 9.3 危険 clever components - Clever Internet ActiveX Suite の CLINETSUITEX6.OCX の clInetSuiteX6.clWebDav ActiveX コントロールにおける絶対パストラバーサルの脆弱性 - CVE-2007-4067 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
244420 4.3 警告 Drupal - Drupal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4064 2012-06-26 15:54 2007-07-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
321 - - - Integer overflow in the UEFI firmware for the Slim Bootloader may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable l… New CWE-190
 Integer Overflow or Wraparound 		CVE-2026-20753 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
322 - - - Out-of-bounds read for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow a denial of service. System software adversary wi… New CWE-125
Out-of-bounds Read 		CVE-2026-20751 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
323 - - - Untrusted pointer dereference for some Intel(R) QuickAssist Adapter 8960 software before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adve… New CWE-822
 Untrusted Pointer Dereference 		CVE-2026-20738 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
324 - - - Incorrect default permissions for some Intel(R) NPU Driver software installers before version 32.0.100.4511 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged softwar… New CWE-276
Incorrect Default Permissions  		CVE-2026-20718 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
325 - - - Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with a… New CWE-20
 Improper Input Validation  		CVE-2026-20717 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
326 - - - An issue in Open Source Kubectl MCP Server v1.1.1 allows attackers to execute arbitrary code on a victim system via user interaction with a crafted HTML page. New - CVE-2025-65719 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
327 - - - Uncontrolled search path for some AI Playground software before version 3.0.0 alpha within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an auth… New CWE-427
 Uncontrolled Search Path Element 		CVE-2025-36515 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
328 - - - Improper buffer restrictions for some Display Virtualization for Windows OS driver software within Ring 2: Device Drivers may allow a denial of service. Unprivileged software adversary with an authen… New CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2025-36510 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
329 - - - Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal OS may allow an information disclosure. System software adversary with a privileged user combined with … New CWE-665
 Improper Initialization 		CVE-2025-35991 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
330 - - - Improper input validation for some Intel Endpoint Management Assistant (EMA) software before version 1.14.5 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged softwar… New CWE-20
 Improper Input Validation  		CVE-2025-35990 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm