Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249041 5 警告 LIGHTTPD - lighttpd の base64_decode 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-4362 2012-04-20 15:28 2011-11-29 Show GitHub Exploit DB Packet Storm
249042 5 警告 Quagga - Quagga の BGP デーモンにおけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-Other
その他 		CVE-2009-1572 2012-04-20 15:08 2009-05-6 Show GitHub Exploit DB Packet Storm
249043 4.3 警告 Demand Media - Pluck SiteLife にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0253 2012-04-20 14:07 2012-04-11 Show GitHub Exploit DB Packet Storm
249044 5 警告 OpenSSL Project - OpenSSL の mime_hdr_cmp 関数におけるサービス運用妨害 (NULL ポインタデリファレンスおよびアプリケーションクラッシュ) の脆弱性 CWE-Other
その他 		CVE-2006-7250 2012-04-20 12:14 2012-02-23 Show GitHub Exploit DB Packet Storm
249045 9.3 危険 7-Technologies - 7-Technologies AQUIS における権限を取得される脆弱性 CWE-Other
その他 		CVE-2012-0224 2012-04-20 12:12 2011-02-21 Show GitHub Exploit DB Packet Storm
249046 2.6 注意 StudioHitori - TwitRocker2 (Android 版) における WebView クラスに関する脆弱性 CWE-Other
その他 		CVE-2012-1243 2012-04-20 12:01 2012-04-20 Show GitHub Exploit DB Packet Storm
249047 7.8 危険 シーメンス - Siemens Scalance X Industrial Ethernet スイッチにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1802 2012-04-19 16:42 2012-04-5 Show GitHub Exploit DB Packet Storm
249048 6.1 警告 シーメンス - 複数の Siemens Scalance S Security Module ファイアウォールのファームウェアにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1800 2012-04-19 16:38 2012-04-5 Show GitHub Exploit DB Packet Storm
249049 10 危険 シーメンス - 複数の Siemens Scalance S Security Module ファイアウォールのファームウェアの Web サーバにおけるアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2012-1799 2012-04-19 16:36 2012-04-5 Show GitHub Exploit DB Packet Storm
249050 7.7 危険 ABB - 複数の ABB 製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1801 2012-04-19 16:02 2012-04-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2691 6.4 MEDIUM
Network 		- - Powie's WHOIS Domain Check 0.9.31 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject arbitrary JavaScript by exploiting unsanitized input fields in… CWE-79
Cross-site Scripting 		CVE-2020-37225 2026-05-14 02:07 2026-05-14 Show GitHub Exploit DB Packet Storm
2692 7.1 HIGH
Network 		- - Joomla J2 JOBS 1.3.0 contains an authenticated SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'sortby' parameter. Att… CWE-89
SQL Injection 		CVE-2020-37226 2026-05-14 02:07 2026-05-14 Show GitHub Exploit DB Packet Storm
2693 5.5 MEDIUM
Local 		jqlang jq jq is a command-line JSON processor. In 1.8.2rc1 and earlier, the ordinary module loader recurses without cycle detection when two otherwise valid modules include each other. CWE-674
 Uncontrolled Recursion 		CVE-2026-44777 2026-05-14 02:05 2026-05-12 Show GitHub Exploit DB Packet Storm
2694 - - - WeGIA is a web manager for charitable institutions. In versions prior to 3.7.0, atendido/familiar_docfamiliar.php displays an overly descriptive error message, including database-related details. Thi… CWE-200
Information Exposure 		CVE-2026-42871 2026-05-14 02:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2695 - - - WeGIA is a web manager for charitable institutions. In versions prior to 3.7.0, a Stored Cross-Site Scripting (XSS) flaw was identified at the following endpoint: funcionario/profile_funcionario.php?… CWE-79
Cross-site Scripting 		CVE-2026-42870 2026-05-14 02:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2696 6.1 MEDIUM
Network 		- - WeGIA is a web manager for charitable institutions. In versions prior to 3.7.0, a reflected Cross-Site Scripting (XSS) vulnerability exists in lista_arquivos_etapa.php due to improper handling of use… CWE-79
Cross-site Scripting 		CVE-2026-42872 2026-05-14 02:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2697 0.0 NONE
Network 		- - WeGIA is a web manager for charitable institutions. In versions prior to 3.6.10, when attempting to upload a file with malicious content to funcionario/docdependente_upload.php, the application respo… CWE-200
Information Exposure 		CVE-2026-42873 2026-05-14 02:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2698 6.8 MEDIUM
Network 		- - WeGIA is a web manager for charitable institutions. In versions prior to 3.7.3, a Stored Cross-Site Scripting (XSS) vulnerability allows an authenticated user to inject malicious JavaScript into the … CWE-79
Cross-site Scripting 		CVE-2026-45025 2026-05-14 02:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2699 6.8 MEDIUM
Network 		- - WeGIA is a web manager for charitable institutions. In versions prior to 3.7.3, a Stored Cross-Site Scripting (XSS) vulnerability allows an authenticated user to inject malicious JavaScript into the … CWE-79
Cross-site Scripting 		CVE-2026-45026 2026-05-14 02:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2700 3.0 LOW
Local 		- - ciguard is a static security auditor for CI/CD pipelines. From 0.1.0 to 0.8.1, the published ghcr.io/jo-jo98/ciguard container image inherits the default root user because the Dockerfile lacks a USER… CWE-269
 Improper Privilege Management 		CVE-2026-44218 2026-05-14 02:02 2026-05-13 Show GitHub Exploit DB Packet Storm