Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3231 7.5 重要
Network 		Vatilon PA4 Firmware VatilonのPA4 Firmwareにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-67160 2026-02-2 19:30 2026-01-2 Show GitHub Exploit DB Packet Storm
3232 6.5 警告
Network 		Abacre Limited Abacre Retail Point of Sale (POS) Abacre LimitedのAbacre Retail Point of Sale (POS)におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-67261 2026-02-2 19:30 2026-01-20 Show GitHub Exploit DB Packet Storm
3233 6.1 警告
Network 		Abacre Limited Abacre Retail Point of Sale (POS) Abacre LimitedのAbacre Retail Point of Sale (POS)におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-67263 2026-02-2 19:30 2026-01-20 Show GitHub Exploit DB Packet Storm
3234 7.5 重要
Network 		comfy ComfyUI Manager comfyのComfyUI Managerにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2025-67303 2026-02-2 19:30 2026-01-5 Show GitHub Exploit DB Packet Storm
3235 9.8 緊急
Network 		Qode Interactive Wilmer Qode InteractiveのWordPress用WilmerにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-67515 2026-02-2 19:30 2025-12-9 Show GitHub Exploit DB Packet Storm
3236 9.8 緊急
Network 		yunjie.xiao openvpn-cms-flask yunjie.xiaoのopenvpn-cms-flaskにおける複数の脆弱性 CWE-74
CWE-77
CWE-77
CVE-2025-6775 2026-02-2 19:30 2025-06-27 Show GitHub Exploit DB Packet Storm
3237 9.8 緊急
Network 		yunjie.xiao openvpn-cms-flask yunjie.xiaoのopenvpn-cms-flaskにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-6776 2026-02-2 19:30 2025-06-27 Show GitHub Exploit DB Packet Storm
3238 8.1 重要
Network 		Qode Interactive Optimize Qode InteractiveのWordPress用OptimizeにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-67935 2026-02-2 19:30 2026-01-8 Show GitHub Exploit DB Packet Storm
3239 8.1 重要
Network 		Qode Interactive Curly Qode InteractiveのWordPress用CurlyにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-67936 2026-02-2 19:30 2026-01-8 Show GitHub Exploit DB Packet Storm
3240 8.1 重要
Network 		Qode Interactive Hendon Qode InteractiveのWordPress用HendonにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-67937 2026-02-2 19:30 2026-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
261 - - - In the Linux kernel, the following vulnerability has been resolved: md/bitmap: fix GPF in write_page caused by resize race A General Protection Fault occurs in write_page() during array resize: RIP… New - CVE-2026-43163 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm
262 - - - In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin When calling of_parse_phandle_with_args(), the caller is respon… New - CVE-2026-43165 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm
263 - - - In the Linux kernel, the following vulnerability has been resolved: xfs: fix freemap adjustments when adding xattrs to leaf blocks xfs/592 and xfs/794 both trip this assertion in the leaf block fre… New - CVE-2026-43158 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm
264 - - - In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode PCIe endpoints with ATS enabled and passed th… New - CVE-2026-43161 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm
265 - - - In the Linux kernel, the following vulnerability has been resolved: erofs: fix interlaced plain identification for encoded extents Only plain data whose start position and on-disk physical length a… New - CVE-2026-43166 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm
266 - - - In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix reflink preserve cleanup issue commit c06c303832ec ("ocfs2: fix xattr array entry __counted_by error") doesn't handle … New - CVE-2026-43168 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm
267 - - - In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Move vbus draw to workqueue context Currently dwc3_gadget_vbus_draw() can be called from atomic context, which… New - CVE-2026-43170 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm
268 - - - In the Linux kernel, the following vulnerability has been resolved: udplite: Fix null-ptr-deref in __udp_enqueue_schedule_skb(). syzbot reported null-ptr-deref of udp_sk(sk)->udp_prod_queue. [0] S… New - CVE-2026-43164 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm
269 - - - In the Linux kernel, the following vulnerability has been resolved: xfrm: always flush state and policy upon NETDEV_UNREGISTER event syzbot is reporting that "struct xfrm_state" refcount is leaking… New - CVE-2026-43167 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm
270 - - - In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't dump the entire memory region The current logic at cper_print_fw_err() doesn't check if the error record length i… New - CVE-2026-43171 2026-05-6 22:07 2026-05-6 Show GitHub Exploit DB Packet Storm