Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251241 4.3 警告 マイクロソフト - Microsoft Internet Explorer におけるコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-3404 2011-12-16 11:52 2011-12-13 Show GitHub Exploit DB Packet Storm
251242 9.3 危険 マイクロソフト - Windows 2008 および Windows 7 上で稼働する Microsoft Internet Explorer 9 における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-2019 2011-12-16 11:50 2011-12-13 Show GitHub Exploit DB Packet Storm
251243 7.2 危険 マイクロソフト - 複数の Microsoft Windows のカーネルにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2018 2011-12-16 11:49 2011-12-13 Show GitHub Exploit DB Packet Storm
251244 4.3 警告 マイクロソフト - Microsoft Internet Explorer 8 の XSS フィルタにおけるコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-1992 2011-12-16 11:48 2011-12-13 Show GitHub Exploit DB Packet Storm
251245 9.3 危険 マイクロソフト - Microsoft Excel および Office における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3403 2011-12-16 11:40 2011-12-13 Show GitHub Exploit DB Packet Storm
251246 9 危険 マイクロソフト - Microsoft Windows におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3406 2011-12-16 11:38 2011-12-13 Show GitHub Exploit DB Packet Storm
251247 9.3 危険 マイクロソフト - 複数の Microsoft PowerPoint 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3413 2011-12-16 11:37 2011-12-13 Show GitHub Exploit DB Packet Storm
251248 9.3 危険 マイクロソフト - Microsoft PowerPoint 2007 および 2010 における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-3396 2011-12-16 11:36 2011-12-13 Show GitHub Exploit DB Packet Storm
251249 9.3 危険 マイクロソフト - Microsoft Windows XP および Windows Server 2003 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3400 2011-12-16 11:35 2011-12-13 Show GitHub Exploit DB Packet Storm
251250 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品の ENCDEC.DLL における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3401 2011-12-16 11:34 2011-12-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3431 5.3 MEDIUM
Network 		- - Out-of-bounds Read vulnerability in mod_proxy_ajp of Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the… CWE-125
Out-of-bounds Read 		CVE-2026-33857 2026-05-5 03:16 2026-05-4 Show GitHub Exploit DB Packet Storm
3432 6.5 MEDIUM
Network 		- - HTTP response splitting vulnerability in multiple Apache HTTP Server modules with untrusted or compromised backend servers. This issue affects Apache HTTP Server: from through 2.4.66. Users are rec… CWE-443
 DEPRECATED: HTTP response splitting 		CVE-2026-33523 2026-05-5 03:16 2026-05-5 Show GitHub Exploit DB Packet Storm
3433 5.3 MEDIUM
Network 		- - A NULL pointer dereference in the mod_authn_socache in Apache HTTP Server 2.4.66 and earlier allows an unauthenticated remote user to crash a child process in a caching forward proxy configuration. … CWE-476
 NULL Pointer Dereference 		CVE-2026-33007 2026-05-5 03:16 2026-05-5 Show GitHub Exploit DB Packet Storm
3434 - - - A timing attack against mod_auth_digest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes th… CWE-208
 Information Exposure Through Timing Discrepancy 		CVE-2026-33006 2026-05-5 03:16 2026-05-5 Show GitHub Exploit DB Packet Storm
3435 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… - CVE-2026-2828 2026-05-5 03:16 2026-05-5 Show GitHub Exploit DB Packet Storm
3436 - - - An escalation of privilege bug in various modules in Apache HTTP 2.4.66 and earlier allows local .htaccess authors to read files with the privileges of the httpd user. Users are recommended to upgra… CWE-269
 Improper Privilege Management 		CVE-2026-24072 2026-05-5 03:16 2026-05-4 Show GitHub Exploit DB Packet Storm
3437 8.8 HIGH
Network 		- - Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol. This issue affects Apache HTTP Server: 2.4.66. Users are recommended to upgrade to version 2.4.67, which f… CWE-415
 Double Free 		CVE-2026-23918 2026-05-5 03:16 2026-05-5 Show GitHub Exploit DB Packet Storm
3438 7.5 HIGH
Network 		- - Assertion failure vulnerability in the PCO (Protocol Configuration Options) parser in the SMF (Session Management Function) component of Open5GS before v2.7.5 allows remote attackers to cause denial … CWE-617
 Reachable Assertion 		CVE-2025-56568 2026-05-5 03:16 2026-05-1 Show GitHub Exploit DB Packet Storm
3439 7.5 HIGH
Network 		- - An issue in open5gs v.2.7.3 allows a remote attacker to cause a denial of service via a crafted PDU Session Modification Request CWE-20
CWE-400
 Improper Input Validation 
 Uncontrolled Resource Consumption 		CVE-2025-46115 2026-05-5 03:16 2026-05-1 Show GitHub Exploit DB Packet Storm
3440 9.8 CRITICAL
Network 		cpanel cpanel
whm
wp_squared 		cPanel and WHM versions after 11.40 contain an authentication bypass vulnerability in the login flow that allows unauthenticated remote attackers to gain unauthorized access to the control panel. CWE-306
Missing Authentication for Critical Function 		CVE-2026-41940 2026-05-5 03:09 2026-04-30 Show GitHub Exploit DB Packet Storm