Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248481 4.4 警告 Debian - Debian GNU/Linux 上で稼働する apache2 におけるクロスサイトスクリプティング (XSS) 攻撃を誘発される脆弱性 CWE-DesignError
CVE-2012-0216 2012-04-24 16:05 2012-04-15 Show GitHub Exploit DB Packet Storm
248482 4.3 警告 TeamPass - TeamPass の sources/users.queries.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2234 2012-04-24 15:59 2012-04-22 Show GitHub Exploit DB Packet Storm
248483 4.3 警告 WordPress.org - WordPress の wp-comments-post.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2404 2012-04-24 15:51 2012-04-21 Show GitHub Exploit DB Packet Storm
248484 4.3 警告 WordPress.org - WordPress の wp-includes/formatting.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2403 2012-04-24 15:49 2012-04-21 Show GitHub Exploit DB Packet Storm
248485 5.5 警告 WordPress.org - WordPress の wp-admin/plugins.php におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2402 2012-04-24 15:43 2012-04-21 Show GitHub Exploit DB Packet Storm
248486 5 警告 WordPress.org
Moxiecode Systems		 - WordPress および他の製品で使用される Plupload における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2401 2012-04-24 15:35 2012-04-21 Show GitHub Exploit DB Packet Storm
248487 10 危険 WordPress.org - WordPress の wp-includes/js/swfobject.js における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-2400 2012-04-24 15:27 2012-04-21 Show GitHub Exploit DB Packet Storm
248488 6.8 警告 ジャストシステム - 複数のジャストシステム製品における DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2012-1242 2012-04-24 12:00 2012-04-24 Show GitHub Exploit DB Packet Storm
248489 5 警告 CA Technologies - Windows 上で稼働する CA ARCserve Backup におけるサービス運用妨害 (サービスシャットダウン) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1662 2012-04-23 15:35 2012-03-20 Show GitHub Exploit DB Packet Storm
248490 6.5 警告 Ryan Walberg - PHP Gift Registry の users.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2236 2012-04-23 14:41 2012-04-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2091 5.5 MEDIUM
Local 		- - Illustrator versions 29.8.6, 30.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to d… CWE-125
Out-of-bounds Read 		CVE-2026-34663 2026-05-13 03:55 2026-05-13 Show GitHub Exploit DB Packet Storm
2092 7.8 HIGH
Local 		- - Substance3D - Painter versions 12.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o… CWE-787
 Out-of-bounds Write 		CVE-2026-34675 2026-05-13 03:55 2026-05-13 Show GitHub Exploit DB Packet Storm
2093 7.8 HIGH
Local 		- - Substance3D - Painter versions 12.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o… CWE-787
 Out-of-bounds Write 		CVE-2026-34676 2026-05-13 03:55 2026-05-13 Show GitHub Exploit DB Packet Storm
2094 7.8 HIGH
Local 		- - Illustrator versions 29.8.6, 30.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation… CWE-122
Heap-based Buffer Overflow 		CVE-2026-34687 2026-05-13 03:55 2026-05-13 Show GitHub Exploit DB Packet Storm
2095 7.5 HIGH
Network 		openjsf fast-uri fast-uri decoded percent-encoded path separators and dot segments before applying dot-segment removal in its normalize() and equal() functions. Encoded path data was treated like real slashes and par… CWE-22
Path Traversal 		CVE-2026-6321 2026-05-13 03:54 2026-05-5 Show GitHub Exploit DB Packet Storm
2096 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/sched: act_skbedit: fix divide-by-zero in tcf_skbedit_hash() Commit 38a6f0865796 ("net: sched: support hash selecting tx queu… CWE-369
 Divide By Zero 		CVE-2026-43238 2026-05-13 03:54 2026-05-6 Show GitHub Exploit DB Packet Storm
2097 8.8 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: smb: client: prevent races in ->query_interfaces() It was possible for two query interface works to be concurrently trying to upd… NVD-CWE-noinfo
CVE-2026-43239 2026-05-13 03:53 2026-05-6 Show GitHub Exploit DB Packet Storm
2098 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: udc: fix DMA and SG cleanup in _ep_nuke() The ChipIdea UDC driver can encounter "not page aligned sg buffer" error… CWE-787
 Out-of-bounds Write 		CVE-2026-43250 2026-05-13 03:51 2026-05-6 Show GitHub Exploit DB Packet Storm
2099 9.8 CRITICAL
Network 		paloaltonetworks
siemens 		pan-os
ruggedcom_ape1808_firmware 		A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code w… CWE-787
 Out-of-bounds Write 		CVE-2026-0300 2026-05-13 03:47 2026-05-7 Show GitHub Exploit DB Packet Storm
2100 7.5 HIGH
Network 		apple ipados
iphone_os
macos
tvos
visionos
watchos 		The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2026-28990 2026-05-13 03:46 2026-05-12 Show GitHub Exploit DB Packet Storm