Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248051 9.3 危険 IBM - IBM IDS の oninit におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1033 2012-03-27 18:43 2011-02-15 Show GitHub Exploit DB Packet Storm
248052 3.3 注意 daniel friesel - feh の feh_unique_filename 関数における任意のファイルを作成される脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-1031 2012-03-27 18:43 2011-02-14 Show GitHub Exploit DB Packet Storm
248053 4.3 警告 IBM - IBM Lotus Connections の Wikis コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1030 2012-03-27 18:43 2011-02-14 Show GitHub Exploit DB Packet Storm
248054 4.3 警告 IBM - IBM Rational Build Forge の UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1034 2012-03-27 18:43 2010-01-14 Show GitHub Exploit DB Packet Storm
248055 6.8 警告 IBM - IBM Lotus Connections における内部ログインモジュールへのアクセスを適切に制限しない脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1032 2012-03-27 18:43 2007-10-11 Show GitHub Exploit DB Packet Storm
248056 5 警告 Lars Hjemli - cgit の convert_query_hexchar 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2011-1027 2012-03-27 18:43 2011-03-19 Show GitHub Exploit DB Packet Storm
248057 6.8 警告 Apache Software Foundation - Apache Archiva におけるクロスサイトフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-1026 2012-03-27 18:43 2011-06-2 Show GitHub Exploit DB Packet Storm
248058 7.2 危険 Linux - Linux kernel の ldm_frag_add 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1017 2012-03-27 18:43 2011-03-1 Show GitHub Exploit DB Packet Storm
248059 4.9 警告 Linux - Linux kernel の ldm_parse_vmdb 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1012 2012-03-27 18:43 2011-03-1 Show GitHub Exploit DB Packet Storm
248060 4 警告 Best Practical Solutions - Best Practical Solutions RT の Scrips_Overlay.pm における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1008 2012-03-27 18:43 2011-02-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1261 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: validate connector number in ucsi_notify_common() The connector number extracted from CCI via UCSI_CCI_CONNECTO… CWE-129
 Improper Validation of Array Index 		CVE-2026-31729 2026-05-8 01:02 2026-05-2 Show GitHub Exploit DB Packet Storm
1262 8.1 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.14 contains an authorization context reuse vulnerability in collect-mode queue batches that allows messages from different senders to inherit the final sender's authorization c… CWE-266
 Incorrect Privilege Assignment 		CVE-2026-43535 2026-05-8 01:01 2026-05-5 Show GitHub Exploit DB Packet Storm
1263 8.8 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.9 contains an environment variable injection vulnerability allowing malicious workspace .env files to set runtime-control variables. Attackers can inject variables affecting up… CWE-15
 External Control of System or Configuration Setting 		CVE-2026-43531 2026-05-8 00:59 2026-05-5 Show GitHub Exploit DB Packet Storm
1264 8.8 HIGH
Network 		openclaw openclaw OpenClaw versions 2026.2.23 before 2026.4.12 contain a weakened exec approval binding vulnerability in busybox and toybox applet execution that allows attackers to obscure which applet would actually… CWE-863
 Incorrect Authorization 		CVE-2026-43530 2026-05-8 00:57 2026-05-5 Show GitHub Exploit DB Packet Storm
1265 6.9 MEDIUM
Network 		- - Cross-Site Scripting (XSS) in V2Board thru 1.7.4. The custom_html field in theme configuration is rendered using Blade unescaped output in public/theme/v2board/dashboard.blade.php. An admin can injec… CWE-79
Cross-site Scripting 		CVE-2026-37503 2026-05-8 00:53 2026-05-2 Show GitHub Exploit DB Packet Storm
1266 5.3 MEDIUM
Network 		- - Sensitive server_token exposed via GET parameter in V2Board thru 1.7.4. In app/Http/Controllers/Server/UniProxyController.php, the server authentication token is accepted via GET parameter transmissi… CWE-598
Information Exposure Through Query Strings in GET Request  		CVE-2026-37504 2026-05-8 00:53 2026-05-2 Show GitHub Exploit DB Packet Storm
1267 4.9 MEDIUM
Network 		- - SQL Injection via ORDER BY clause in V2Board thru 1.7.4. In app/Http/Controllers/Admin/UserController.php, the sort parameter from user input is passed directly to User::orderBy($sort, $sortType) wit… CWE-89
SQL Injection 		CVE-2026-37505 2026-05-8 00:53 2026-05-2 Show GitHub Exploit DB Packet Storm
1268 8.4 HIGH
Local 		- - Unsafe deserialization vulnerability in MixPHP Framework 2.x thru 2.2.17. The sync-invoke TCP server (Server.php:87) receives data from a TCP socket, passes it directly to Opis\Closure\unserialize(),… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-37552 2026-05-8 00:53 2026-05-2 Show GitHub Exploit DB Packet Storm
1269 6.5 MEDIUM
Network 		- - SQL injection vulnerability in MixPHP Framework 2.x thru 2.2.17 via crafted `on` array to the joinOn function in BuildHelper.php. CWE-89
SQL Injection 		CVE-2026-42475 2026-05-8 00:53 2026-05-2 Show GitHub Exploit DB Packet Storm
1270 5.5 MEDIUM
Local 		- - A stack-based out-of-bounds read vulnerability in VrmlData_Scene::ReadLine in the VRML parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 allows attackers to cause a denial of service via a crafted … CWE-125
Out-of-bounds Read 		CVE-2026-42480 2026-05-8 00:53 2026-05-2 Show GitHub Exploit DB Packet Storm